[Oisf-users] IPS mode performance is very poor, why?
tingwei liu
tingw.liu at gmail.com
Wed Feb 29 10:57:29 UTC 2012
I have installed suricata-1.2.1 with enable nfqueue on fedora 15 system.
#>iptables -I FORWARD -j NFQUEUE --queue-num 3
#>suricata -c /etc/suricata/suricata.yaml -q 3 -D
Only emergency-ftp.rules loaded.
It works, but performance is very poor.
I test it by transfer files from ftp server.
Before running last two commands, the bandwidth is 100Mbps;
After nfqueue and suricata running, the bandwidth only 1Mbps.
Who can tell me which parameters should be changed ?
Thanks!
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20120229/cf825594/attachment-0002.html>
More information about the Oisf-users
mailing list