[Oisf-users] How to turn off appending stats.log?
Victor Julien
lists at inliniac.net
Wed Mar 2 10:36:59 UTC 2016
On 02-03-16 11:32, Ващенков Алексей wrote:
> How can I turn off appending statistics in stats.log?
>
>
>
> I have configurated suricata.yaml
>
> # Stats.log contains data from various counters of the suricata engine.
>
> - stats:
>
> enabled: yes
>
> filename: stats.log
>
> totals: no # stats for all threads merged together
>
> threads: yes # per thread stats
>
> append: no
>
> interval: 60
>
> #null-values: yes # print counters that have value 0
>
>
>
> But after restart log-file contains statistics for every minute. And I
> need always only summarized statistic for all time until last minute.
> How can I do it?
It may be more interesting for you to use output to unix socket:
See an example of how you can use that here:
https://redmine.openinfosecfoundation.org/projects/suricata/wiki/Upgrading_Suricata_20_to_Suricata_30#Removed-Fuctionality
--
---------------------------------------------
Victor Julien
http://www.inliniac.net/
PGP: http://www.inliniac.net/victorjulien.asc
---------------------------------------------
More information about the Oisf-users
mailing list