[Oisf-users] af_packet vs pfring
Peter Bates
peter.bates at ucl.ac.uk
Mon Jul 29 13:29:24 UTC 2013
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hello all
On 29/07/2013 14:04, Peter Manev wrote:
>> That is a loaded question. There are numerous dependencies - what type of traffic is predominant , what type of HW, how much traffic , how much HW resources are available , how many rules, which rule set (VRT/ET/ETPro) ....
I have between 3-4Gbps of traffic, 32 cores, 64Gb of RAM
and was testing with no rules.
However possibly the 'out of the box' suricata.yaml is not tuned/tweaked
to our requirements.
I'll revisit this shortly - in the meantime is it more sensible to
be testing against the stable 1.4.x branch or 2.x/GIT?
- --
Peter Bates
Senior Information Security Officer Phone: +44(0)2076792049
Information Services Division Internal Ext: 32049
University College London
London WC1E 6BT
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.13 (MingW32)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
iQEcBAEBAgAGBQJR9m40AAoJELhVoVpEMS6RlQoH/3FE1RkikQqnu/th7dPah5Ah
fLxMQT3ZnkIMRVTBJ2NrLwsR54HtgdWuWjWjmkM5iM+T4SmlnZqEehmAhFr4IwP5
mSMbru+OV91KpfTpBI8bjcL4etEthOPoifXB/MJpxhgdSiJ+TKNBsed7wX88AOqg
sfQuwaY83Ry+aDTgnUbQjkMVvEpBDKDsVXJ2XFtzuM3uPDZ1/ESQHTORGcLq8qTb
pMlXPM5ZOdhtwR5za0qKlT/CN+c/IZw9e5FWmJCWOfGshbkvbqqsD/Xrh6POITka
iPXgavs9H7KC8ipD2Kjuc6rk8sA15OBBd61qxoVRO/xyi106oL5As7GhE83Ird4=
=XJsy
-----END PGP SIGNATURE-----
More information about the Oisf-users
mailing list