[Oisf-users] problem with suricata3 stats logs
Andreas Moe
moe.andreas at gmail.com
Wed Nov 16 18:51:00 UTC 2016
Shouldnt suricata logging (suricata.log if enabled, and not sure of what
verbose level needed) indicate what acquisition method is used?
Den ons. 16. nov. 2016, 19:45 skrev erik clark <philosnef at gmail.com>:
> Ok, so I can't tell if either pfring or afpacket is actually being used by
> suricata. Previous versions of suricata had AFPacket in the stats.log
> indicating one or the other is loaded. Now, all it says:
>
> (stat) | W#12-em3 | (value)
>
> How can I tell that either afpacket or pfring is _actually_ being used as
> expected, when nothing in the stats.log file indicates that this is the
> case? Thanks!
>
> _______________________________________________
> Suricata IDS Users mailing list: oisf-users at openinfosecfoundation.org
> Site: http://suricata-ids.org | Support: http://suricata-ids.org/support/
> List: https://lists.openinfosecfoundation.org/mailman/listinfo/oisf-users
> Suricata User Conference November 9-11 in Washington, DC:
> http://suricon.net
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20161116/735642d8/attachment-0002.html>
More information about the Oisf-users
mailing list