[Oisf-users] What do these errors imply?
James Moe
jimoe at sohnen-moe.com
Wed Jun 8 19:30:56 UTC 2016
Suricata 3.0.1
opensuse 42.1
linux 4.1.20-11-default x86_64
After the daily ruleset update and suricata restart, these errors were
emitted:
8/6/2016 -- 04:59:19 - <Error> - [ERRCODE: SC_ERR_NFQ_CREATE_QUEUE(72)]
- nfq_create_queue failed
8/6/2016 -- 04:59:19 - <Error> - [ERRCODE: SC_ERR_NFQ_THREAD_INIT(78)] -
nfq thread failed to initialize
What are the implications of these errors?
Suricata continues to detect possible intrusions.
$ /usr/sbin/iptables -S INPUT
-P INPUT DROP
-A INPUT -j NFQUEUE --queue-num 0
-A INPUT -i lo -j ACCEPT
-A INPUT -m conntrack --ctstate ESTABLISHED -j ACCEPT
-A INPUT -p icmp -m conntrack --ctstate RELATED -j ACCEPT
-A INPUT -j input_ext
-A INPUT -m limit --limit 3/min -j LOG --log-prefix "SFW2-IN-ILL-TARGET
" --log-tcp-options --log-ip-options
-A INPUT -j DROP
$ /usr/sbin/iptables -S OUTPUT
-P OUTPUT ACCEPT
-A OUTPUT -j NFQUEUE --queue-num 0
-A OUTPUT -o lo -j ACCEPT
--
James Moe
moe dot james at sohnen-moe dot com
520.743.3936
More information about the Oisf-users
mailing list