[Oisf-users] Configuration strategy for TCP segment pools/chunk pool
Cooper F. Nelson
cnelson at ucsd.edu
Sun Nov 26 17:39:49 UTC 2017
Hi all,
I'm trying to get suricata 4.0 to produce these statistics on exit,
however the '-v' flag doesn't seem to be enough.
Is there a setting in the yaml file that is necessary as well?
-Coop
On 5/25/2014 2:26 AM, Darren Spruell wrote:
> Suricata 2.0 REL, Linux 3.10.40, AF_PACKET autofp runmode, 64 GB RAM.
>
> I'm gimping through some Suricata tuning and dealing with high (66%!)
> rates of packet loss. I have a number of limits set fairly high and am
> looking for signs of what else may be contributing to packet drop.
> Wondering currently about this type of output:
>
> 25/5/2014 -- 00:36:29 - <Info> - TCP segment pool of size 4 had a peak
> use of 2041 segments, more than the prealloc setting of 256
--
Cooper Nelson
Network Security Analyst
UCSD ITS Security Team
cnelson at ucsd.edu x41042
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: OpenPGP digital signature
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20171126/f609c805/attachment.sig>
More information about the Oisf-users
mailing list