[Oisf-users] Suricata in IPS inline mode: nfq_handle_packet error
Vieri
rentorbuy at yahoo.com
Thu Feb 2 21:59:03 UTC 2017
----- Original Message -----
From: Andreas Herz <andi at geekosphere.org>
> please provide more details about your setup, how you run suricata in
> that case etc.
I'm running it on 5 queues (NFQUEUE balance 0:5 bypass) with "-q 0 -q 1 -q 2 -q 3 -q 4 -q 5".
>> <Warning> - [ERRCODE: SC_ERR_NFQ_HANDLE_PKT(76)] - nfq_handle_packet error -1
> You could look if you see any other log message in your syslog/journal.
Nothing in syslog.
> Maybe the NFQUEUE itself has an issue (queue full or so).
I stopped Suricata, made sure the process was terminated, and started it again.
The warning/error didn't come back up in the log.
No news, good news.
Thanks,
Vieri
More information about the Oisf-users
mailing list