[Oisf-users] Error running inline mode

Martin Spinassi martins.listz at gmail.com
Mon Jun 7 14:53:30 UTC 2010 

Hi list,

I' trying suricata for my first time, but I'm having some issues on
inline mode.

This is part of the output of 

root at server# suricata -c /etc/suricata/suricata-debian.yaml -q 0


<snip>
[11621] 7/6/2010 -- 11:47:40 - (stream-tcp.c:282) <Info>
(StreamTcpInitConfig) -- stream "max_sessions": 262144
[11621] 7/6/2010 -- 11:47:40 - (stream-tcp.c:294) <Info>
(StreamTcpInitConfig) -- stream "prealloc_sessions": 32768
[11621] 7/6/2010 -- 11:47:40 - (stream-tcp.c:302) <Info>
(StreamTcpInitConfig) -- stream "memcap": 67108864
[11621] 7/6/2010 -- 11:47:40 - (stream-tcp.c:309) <Info>
(StreamTcpInitConfig) -- stream "midstream" session pickups: disabled
[11621] 7/6/2010 -- 11:47:40 - (stream-tcp.c:317) <Info>
(StreamTcpInitConfig) -- stream "async_oneside": disabled
[11657] 7/6/2010 -- 11:47:40 - (tm-threads.c:734) <Info>
(TmThreadSetupOptions) -- Setting affinity for "Detect1" Module to
cpu/core 0, thread id 11657
[11658] 7/6/2010 -- 11:47:40 - (tm-threads.c:734) <Info>
(TmThreadSetupOptions) -- Setting affinity for "Verdict" Module to
cpu/core 0, thread id 11658
[11659] 7/6/2010 -- 11:47:40 - (tm-threads.c:734) <Info>
(TmThreadSetupOptions) -- Setting affinity for "RespondReject" Module to
cpu/core 0, thread id 11659
[11660] 7/6/2010 -- 11:47:40 - (tm-threads.c:734) <Info>
(TmThreadSetupOptions) -- Setting affinity for "Outputs" Module to
cpu/core 0, thread id 11660
[11656] 7/6/2010 -- 11:47:40 - (tm-threads.c:734) <Info>
(TmThreadSetupOptions) -- Setting affinity for "Stream1" Module to
cpu/core 0, thread id 11656
[11655] 7/6/2010 -- 11:47:40 - (tm-threads.c:734) <Info>
(TmThreadSetupOptions) -- Setting affinity for "Decode1" Module to
cpu/core 0, thread id 11655
[11654] 7/6/2010 -- 11:47:40 - (tm-threads.c:734) <Info>
(TmThreadSetupOptions) -- Setting affinity for "ReceiveNFQ" Module to
cpu/core 0, thread id 11654
[11654] 7/6/2010 -- 11:47:40 - (source-nfq.c:241) <Error>
(NFQInitThread) -- [ERRCODE: SC_ERR_NFQ_UNBIND(67)] - nfq_unbind_pf()
for AF_INET failed


I googled it for a while, but I don't get anything but source code of
suricata.


Any link/suggestion is very appreciated.
Thanks!

Martin

More information about the Oisf-users mailing list