[Oisf-users] Configuration strategy for TCP segment pools/chunk pool

Cooper F. Nelson cnelson at ucsd.edu
Sun Nov 26 18:34:50 UTC 2017

I'm specifically trying to get metrics for peak usage of the tcp
segments pool, like this:
> 25/5/2014 -- 00:36:29 - <Info> - TCP segment pool of size 4 had a peak
> use of 2041 segments, more than the prealloc setting of 256

The -vvv flag provides more data, but not this information unfortunately.


On 11/26/2017 10:18 AM, Peter Manev wrote:
> In general running in the command line with “-vvv” with a default suricata.yaml will produce quite a verbose output - is that what you are after ? (Or you need more verbose suricata.log?)

Cooper Nelson
Network Security Analyst
UCSD ITS Security Team
cnelson at ucsd.edu x41042

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: OpenPGP digital signature
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20171126/616df4f3/attachment-0002.sig>

More information about the Oisf-users mailing list