Project

General

Profile

Actions

Feature #4408

open

definitive log count mode for qa purposes

Added by Peter Manev over 3 years ago. Updated 6 months ago.

Status:
New
Priority:
Normal
Assignee:
Target version:
Effort:
Difficulty:
Label:

Description

Often enough it happens that the count of alert and other logs may have slight variations when reading large/big pcaps.
This could be due to many reasons like flow timeouts/randomization of windows etc.
It would be nice to have some sort of a definitive count QA run mode to compare diff QA/branches runs and be able to easier spot regressions.

Actions #1

Updated by Philippe Antoine 6 months ago

  • Assignee set to OISF Dev
  • Target version set to TBD
Actions

Also available in: Atom PDF