[Oisf-users] Question about drop.log

Fernando Ortiz fernando.ortiz.f at gmail.com
Fri Jul 29 22:19:04 UTC 2011

Hello, please help me with something. What exactly is logged in drop.log?
Refering to documentation:
*11 Drop.log, a line based information for dropped packets*
If Suricata works in IPS mode, it can drop packets based on rules. Packets
that are being dropped are saved in the drop.log file, a Netfilter log

It says that only packets dropped because of a DROP action in a rule are
logged. But I have no drop actions in any rules and still get dropped
packets. So, where exactly this information is taken? Thanks in advance
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20110729/97db96e8/attachment-0002.html>

More information about the Oisf-users mailing list