[Discussion] Suricata Packets Per Second metric
Dan Groen
akajui at hotmail.com
Thu Jan 2 16:37:30 UTC 2014
Good questions. Yes, I have compiled with '--enable-profiling' as well as without. stats.log and packet_stats.log are both enabled in the suricata.yaml file. These two files give me a good breakdown of the number and type of packets which have been processed, but I have not found any information about performance or packets per second.Just for background: I am trying to optimize packet processing through the GPU. To test, I am pushing a large packet capture through the system. I can derive a rough estimate of packets per second but it would be easier if there were an internal statistic which gave me Suricata's opinion.Thanks.
From: cdevoe57 at nycap.rr.com
To: akajui at hotmail.com; discussion at lists.openinfosecfoundation.org
Subject: RE: [Discussion] Suricata Packets Per Second metric
Date: Mon, 23 Dec 2013 20:10:38 -0500
Did you enable the stats file in the suricata.yaml? Also when you build suricata use this flag --enable-profiling (I think this is the one I used) From: discussion-bounces at lists.openinfosecfoundation.org [mailto:discussion-bounces at lists.openinfosecfoundation.org] On Behalf Of Dan Groen
Sent: Monday, December 23, 2013 12:44 PM
To: Discussion at lists.openinfosecfoundation.org
Subject: Re: [Discussion] Suricata Packets Per Second metric I am interested in looking at the number of packets per second that Suricata has processed but have not found this metric listed in its output. I have checked the log files, alert files, etc. There are multiple papers online which list pps or packets/second, so my suspicion is that i am missing something obvious. Could someone direct me to the appropriate data set? Thanks.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openinfosecfoundation.org/pipermail/discussion/attachments/20140102/a560c661/attachment.html>
More information about the Discussion
mailing list