[root@idstest suricata]# tail -f /var/log/suricata/stats.log ~2800 Rules Loaded ------------------------------------------------------------------------------------ Date: 10/19/2018 -- 09:17:36 (uptime: 0d, 00h 05m 03s) ------------------------------------------------------------------------------------ Counter | TM Name | Value ------------------------------------------------------------------------------------ capture.kernel_packets | Total | 63961281 capture.kernel_drops | Total | 13228398 decoder.pkts | Total | 49545099 decoder.bytes | Total | 32914012277 decoder.ipv4 | Total | 49542593 decoder.ipv6 | Total | 266 decoder.ethernet | Total | 49545099 decoder.tcp | Total | 31251790 decoder.udp | Total | 18121390 decoder.icmpv4 | Total | 13021 decoder.icmpv6 | Total | 10 decoder.gre | Total | 50 decoder.teredo | Total | 244 decoder.avg_pkt_size | Total | 664 decoder.max_pkt_size | Total | 3772 flow.tcp | Total | 257688 flow.udp | Total | 147184 flow.icmpv4 | Total | 629 flow.icmpv6 | Total | 4 tcp.sessions | Total | 254031 tcp.pseudo | Total | 381042 tcp.syn | Total | 322830 tcp.synack | Total | 202044 tcp.rst | Total | 100083 tcp.midstream_pickups | Total | 59032 tcp.stream_depth_reached | Total | 1124 tcp.reassembly_gap | Total | 15447 tcp.overlap | Total | 5009049 app_layer.flow.http | Total | 102321 app_layer.tx.http | Total | 168531 app_layer.flow.ftp | Total | 6 app_layer.flow.smtp | Total | 1969 app_layer.tx.smtp | Total | 2833 app_layer.flow.tls | Total | 30877 app_layer.flow.ssh | Total | 217 app_layer.flow.dcerpc_tcp | Total | 827 app_layer.flow.dns_tcp | Total | 126 app_layer.tx.dns_tcp | Total | 253 app_layer.flow.ikev2 | Total | 80 app_layer.flow.krb5_tcp | Total | 799 app_layer.tx.krb5_tcp | Total | 792 app_layer.flow.dhcp | Total | 115 app_layer.flow.failed_tcp | Total | 42493 app_layer.flow.dcerpc_udp | Total | 4 app_layer.flow.dns_udp | Total | 126655 app_layer.tx.dns_udp | Total | 354557 app_layer.tx.ikev2 | Total | 245 app_layer.flow.krb5_udp | Total | 335 app_layer.tx.krb5_udp | Total | 327 app_layer.tx.dhcp | Total | 47254 app_layer.flow.failed_udp | Total | 19995 flow_mgr.closed_pruned | Total | 133550 flow_mgr.new_pruned | Total | 42442 flow.spare | Total | 11345 flow.tcp_reuse | Total | 1240 flow_mgr.flows_checked | Total | 15160 flow_mgr.flows_notimeout | Total | 14146 flow_mgr.flows_timeout | Total | 1014 flow_mgr.flows_timeout_inuse | Total | 156 flow_mgr.flows_removed | Total | 858 flow_mgr.rows_checked | Total | 65536 flow_mgr.rows_skipped | Total | 62096 flow_mgr.rows_empty | Total | 17 flow_mgr.rows_maxlen | Total | 12 tcp.memuse | Total | 35489776 tcp.reassembly_memuse | Total | 597054400 http.memuse | Total | 94922455 ftp.memuse | Total | 422 app_layer.expectations | Total | 5 flow.memuse | Total | 79357088