[Oisf-users] Massive kernel drops with HTTP traffic

Peter Manev petermanev at gmail.com
Mon Aug 20 13:56:03 UTC 2018



> On 20 Aug 2018, at 07:48, Michael Stone <mstone at mathom.us> wrote:
> 
>> On Mon, Aug 20, 2018 at 07:43:43AM -0600, you wrote:
>> If not mistaken this is filestore v1 , correct ?
>> Is this the case with filestore v2 as well ?
>> Can you please post a bug report describing all the findings including Suricata version you are using (latest git if not mistaken?)
> 
> Filestore has nothing to do with it, magic by itself in suricata will kill high speed monitoring and always has.

Yes that is good to know - just having the filestore switch enabled in the config (with 0 rules )  triggers the issue - is what I am after trying to confirm (regardless of v1/v2 with latest git)


> 
> Mike Stone
> _______________________________________________
> Suricata IDS Users mailing list: oisf-users at openinfosecfoundation.org
> Site: http://suricata-ids.org | Support: http://suricata-ids.org/support/
> List: https://lists.openinfosecfoundation.org/mailman/listinfo/oisf-users
> 
> Conference: https://suricon.net
> Trainings: https://suricata-ids.org/training/


More information about the Oisf-users mailing list