[Oisf-users] High CPU usage without any rules
Andreas Herz
andi at geekosphere.org
Thu Nov 19 10:23:53 UTC 2015
On 18/11/15 at 23:24, Satish Patel wrote:
> I am new user and just playing with IDS. I have install suricata-2.0.9
> without any PF_RING or any other special flags etc.
You did compile it by yourself?
Can you post "suricata --build-info"?
> I am running it on DL360 G8 with 4GB memory. following command i am using
> to run on command line.
>
> ./suricata -c suricata.yaml -i eth1
Please add -vv and post the output, so we can see if any relevant infos
are logged.
> on top command it is showing 200% CPU usage without any single rules (if i
> load all rules it touch 350% CPU). my traffic rate would be 150mbps
> around. ( I am using standard suricata.yaml config file without any
> modification )
You could use strace to see what happens.
Does this happen without traffic, too?
--
Andreas Herz
More information about the Oisf-users
mailing list