Existing WAF solutions often become performance bottlenecks when handling large-scale traffic. We discovered ModSecurity's limitations in high-concurrency scenarios within our commercial product, leading us to build a truly high-performance WAF engine from the ground up.
Test Case: CRS v4.3.0 without TCMalloc
- ModSecurity: 4,010 QPS
- WGE: 17,560 QPS
- Performance Gain: 4.38x
Test Case: CRS v4.3.0 with TCMalloc
- ModSecurity: 4,927 QPS
- WGE: 18,864 QPS
- Performance Gain: 3.83x
