Hi Victor,
You made my day! Thank you!
While the option looks obvious, I could not see it neither in man page nor in the output of “suricata --help” cli options output. Hence, did not try what was not spotted as available option.
Starting the program as follows:
“/usr/bin/suricata -D --nflog -c /etc/suricata/suricata.yaml --pidfile /run/suricata.pid”
forces Suricata to listen to the configured nflog group and treat the packets respectively.
Rg,
Nick.