Project

General

Profile

Actions
Copy link

Support #1580

closed

HTTP not processed when used on Debian 8 Stable Jessie

Added by Sean Whalen over 8 years ago. Updated about 8 years ago.

Status:
Closed
Priority:
Normal
Assignee:
-
Affected Versions:
Label:

Description

After I moved migrated a server from Ubuntu LTS to Debain 8 Stable Jessie, I noticed that HTTP traffic was not being recorded in the logs at all witg Suricata 2.1beta4. At first I assumed I hand built it wrong, since this is my first time building Suricata, but then I found this outstanding Debian bug repord describing the same problem with Suricata 2.0.7 from the Debian repository https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=783660

Apparently there is some incompatibility with Debain Jessie and Suricata?

Here's how I built it:

$ sudo apt-get -y install libpcre3 libpcre3-dbg libpcre3-dev \
build-essential autoconf automake libtool libpcap-dev libnet1-dev \
libyaml-0-2 libyaml-dev zlib1g zlib1g-dev libmagic-dev libcap-ng-dev \
libhtp1-dev lib-geoip libluajit-5.1-dev libnss3-dev libjansson-dev \
pkg-config

$ wget http://www.openinfosecfoundation.org/download/suricata-2.1beta4.tar.gz
$ tar -xzf suricata-2.1beta4.tar.gz
$ cd suricata-2.1beta4
$ ./configure --prefix=/usr --sysconfdir=/etc --localstatedir=/var --enable-nss --enable-luajit --enable-geoip
$ make
$ sudo checkinstall --fstrans=no install-full

Actions
Copy link
 #1

Updated by Victor Julien over 8 years ago

This could be related to various nic offloading settings. Can you check the hints here https://redmine.openinfosecfoundation.org/projects/suricata/wiki/Self_Help_Diagrams

Actions
Copy link
 #2

Updated by Victor Julien over 8 years ago

  • Tracker changed from Bug to Support
Actions
Copy link
 #3

Updated by Victor Julien about 8 years ago

  • Status changed from New to Closed

Timeout.

Actions
Copy link

Also available in: Atom PDF