Project

General

Profile

Actions

Bug #5831

closed

af-packet/ips: excessive mtu log messages

Added by Victor Julien almost 2 years ago. Updated about 1 year ago.

Status:
Closed
Priority:
Normal
Target version:
Affected Versions:
Effort:
Difficulty:
Label:

Description

Notice: suricata: This is Suricata version 7.0.0-rc1 RELEASE running in SYSTEM mode
Info: cpu: CPUs/cores online: 8
Info: af-packet: Setting IPS mode
Info: ioctl: ens4f0: MTU 1500
Info: ioctl: ens4f1: MTU 1500
Info: suricata: No 'host-mode': suricata is in IPS mode, using default setting 'router'
Info: logopenfile: stats output device (regular) initialized: stats.log
Info: logopenfile: eve-log output device (regular) initialized: eve.json
Info: detect: 1 rule files processed. 2 rules successfully loaded, 0 rules failed
Info: threshold-config: Threshold config parsed: 0 rule(s) found
Info: detect: 2 signatures processed. 2 are IP-only rules, 0 are inspecting packet payload, 0 inspect application layer, 0 are decoder event only
Info: af-packet: ens4f0: AF_PACKET IPS mode activated ens4f0->ens4f1
Info: runmodes: ens4f0: creating 8 threads
Info: af-packet: ens4f1: AF_PACKET IPS mode activated ens4f1->ens4f0
Info: runmodes: ens4f1: creating 8 threads
Info: ioctl: ens4f1: MTU 1500
Info: ioctl: ens4f0: MTU 1500
Info: ioctl: ens4f1: MTU 1500
Info: ioctl: ens4f0: MTU 1500
Info: ioctl: ens4f1: MTU 1500
Info: ioctl: ens4f0: MTU 1500
Info: ioctl: ens4f1: MTU 1500
Info: ioctl: ens4f0: MTU 1500
Info: ioctl: ens4f1: MTU 1500
Info: ioctl: ens4f0: MTU 1500
Info: ioctl: ens4f1: MTU 1500
Info: ioctl: ens4f0: MTU 1500
Info: ioctl: ens4f1: MTU 1500
Info: ioctl: ens4f0: MTU 1500
Info: ioctl: ens4f1: MTU 1500
Info: ioctl: ens4f0: MTU 1500
Notice: threads: Threads created -> W: 16 FM: 1 FR: 1   Engine started.
Notice: suricata: Signal Received.  Stopping engine.
Info: suricata: time elapsed 7.180s
Info: counters: Alerts: 1
Notice: device: ens4f0: packets: 9, drops: 0 (0.00%), invalid chksum: 0
Notice: device: ens4f1: packets: 8, drops: 0 (0.00%), invalid chksum: 0
Actions #1

Updated by Victor Julien almost 2 years ago

  • Target version changed from 7.0.0-rc2 to 7.0.1
Actions #2

Updated by Victor Julien over 1 year ago

  • Status changed from New to Assigned
  • Assignee changed from OISF Dev to Shivani Bhardwaj

If the fix for this is too intrusive we may have to retarget to 8.

Actions #3

Updated by Shivani Bhardwaj over 1 year ago

  • Status changed from Assigned to In Review
Actions #4

Updated by Jason Ish about 1 year ago

  • Status changed from In Review to Assigned
  • Target version changed from 7.0.1 to 7.0.2

PR for review has been closed. As this is existing behvavior, pushing back to 7.0.2.

Actions #5

Updated by Philippe Antoine about 1 year ago

  • Status changed from Assigned to In Review
Actions #6

Updated by Jason Ish about 1 year ago

Philippe Antoine wrote in #note-5:

https://github.com/OISF/suricata/pull/9410 is open

Oops, missed on in the reference chain.

Actions #7

Updated by Shivani Bhardwaj about 1 year ago

  • Status changed from In Review to Closed
Actions

Also available in: Atom PDF