Hi.
The drop stats gave upon running Suricata via --af-packet are the drops on Suricata or the network interface?
Hi Nuno, maybe your question has been already answered elsewhere, but, according to Suricata documentation, these are for the kernel, only:
“Usually, this is not the complete story though. These are kernel drop stats, but the NIC may also have dropped packets. Use ethtool to get to those:”
Source: 9.6. Statistics — Suricata 6.0.0 documentation