Hi all
Until last week, I running suricata with af-packet and I collect capture.kernel_packets and capture.kernel_drops to performance analysis.
Now I running suricata with --dpdk, I checked stats.log, but capture.kernel_packets and capture.kernel_drops not in this file.
Is this normal? If not, how should I evaluate packet loss?
Hi there, yes, it is normal DPDK mode uses a bit different counters (similar name though)
Thank you for your reply. I have just started with suticata and DPDK. After using DPDK, I cannot get the bytes-in or packets-in of nic device by read “/proc/net/dev”. Which counters should I monitor to detect packet loss?