My Suricata found a lot of records with event_type=flow for destination port 25, but zero for smtp.
Hi,
Some things that would help us determine what might be happening:
- Suricata version in use
- Suricata configuration file (by default is named
suricata.yaml) - A pcap that demonstrates the issue
These items will help us get started and by posting them here, others in the community can offer help