Skip to content
/ parser-benchmarks Public

Simple benchmarks for log parsers. Performance in events per second with synthetic logs.

License

MIT license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

u-siem/parser-benchmarks

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits
src
src
 
 
.gitignore
.gitignore
 
 
Cargo.toml
Cargo.toml
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

parser-benchmarks

Simple benchmarks for log parsers. Performance in events per second with synthetic logs.

Results:

(single-thread)

Log Source Events/second Date
OpnSense Firewall 474653 7/3/2021
Sonicwall 197425 7/3/2021
PaloAlto 290006 7/3/2021
DNS Server 702740 7/3/2021
Squid Proxy 452488 7/3/2021
Squid Guard 335705 7/3/2021
Apache2 287207 7/3/2021
Apache ModSecurity 90184 7/3/2021

DNS Server is the fastest because the logs are structured in a simple and easy to analyze way. On the contrary, Sonicwall has more modules (IPS, VPN, Tunnels, Firewall...) and they require more complex processing.

The Apache ModSecurity is not performing well, I should try to optimize its code.

About

Simple benchmarks for log parsers. Performance in events per second with synthetic logs.

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages