Project

General

Profile

Bug #3889

Support interfaces with MTU > 1500

Added by Oded Lazar 10 months ago. Updated 10 months ago.

Status:
In Review
Priority:
Normal
Assignee:
Target version:
Affected Versions:
Effort:
low
Difficulty:
low
Label:
Beginner

Description

Suricata currently doesn't support interfaces with MTU set under 1500.
the default block size is 32768 on most machines (pagesize ^ order --> 4096 ^ 3),
thus suricata splits the payload to 32768 / 1500 -> 22.

If an interface has a bigger MTU, such as localhost which defaults to 65536, the block size is too small.

#1

Updated by Victor Julien 10 months ago

  • Status changed from New to In Review
  • Assignee set to Oded Lazar
  • Target version set to 6.0.0rc1
#2

Updated by Victor Julien 10 months ago

  • Affected Versions 6.0.0beta1 added
  • Affected Versions deleted (6.0.0)
#3

Updated by Victor Julien 10 months ago

  • Target version changed from 6.0.0rc1 to 7.0rc1

Setting later target for now. Waiting for github discussion to settle/reach a conclusion.

Also available in: Atom PDF