performance hit in using too many if's

Anoop Alias anoopalias01 at
Sat Sep 24 08:58:27 UTC 2016


I was following some suggestions on blocking user agents,sql
injections etc as in the following URL

Just wanted to know what is the performance hit when using so many of
these if's ( in light of the if-is-evil policy ). Especially if the
server is having a lot of virtual hosts and the rules are matched for
each of them.

Is it like:

If the server is capable (beefy) it should be able to handle these URL ?


There is a huge performance penalty .Significantly more than
apache+mod_security as an example


The is a performance penalty but not as much as other security tools
or WAF's like naxsi or mod_security

Thanks in advance,

Anoop P Alias

More information about the nginx mailing list