suricata --user sguil --group sguil -c /etc/nsm/securityonion-enp2s0/suricata.yaml --af-packet=enp2s0 -l /nsm/sensor_data/securityonion-enp2s0