|
From: highclass99 <hig...@gm...> - 2018-09-24 07:35:53
|
Hello, I run a nginx <-> static files nginx <-> apache modsecurity proxy <-> nginx <-> dynamic files(fastcgi) configuration. So, apache is only 100% for WAF. In this case my theory was that since apache modsecurity is probably not io bound but cpu bound, I set the apache MPM as prefork. This apache instance handles thousands of requests/sec. I could not find any good information on whether this is optimal performance wise. Performance wise is this a better choice than worker or event MPM, when considering the apache is 100% only modsecurity requests? Also, I used the above model because nginx modsecurity was too buggy in the past, I am considering using modsecurity 3 with nginx. In that case would it be optimal to increase nginx worker instances since modsecurity would probably be cpu bound? |
