[Oisf-users] suricata 3.2.0 for 10Gb performance
Cooper F. Nelson
cnelson at ucsd.edu
Fri Jan 20 22:28:42 UTC 2017
Look for log entries with "trunc_pkt" in the stats.log file to see if
you aren't capturing full packets.
You have to explicitly enable the tpacket-v3 setting in suricata.yaml to
make use of it.
-Coop
On 1/20/2017 2:11 PM, erik clark wrote:
> Interesting. I will doublecheck with RH on Monday regarding tpacket-v3 in
> RHEL7. I know that 6 isn't compliant though.
--
Cooper Nelson
Network Security Analyst
UCSD ITS Security Team
cnelson at ucsd.edu x41042
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: OpenPGP digital signature
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20170120/eb02715f/attachment-0002.sig>
More information about the Oisf-users
mailing list