My security onion load is too high after the upgrade from 2.4.120 to 2.4.140 #14467
Replies: 1 comment
-
|
Can you pull up your influxdb metrics? What kind of eps are you showing over a given period of time? 4k EPS doesn't seem accurate for the hardware setup you're describing. How are you ingesting data? What script are you referring to that deletes all data? https://docs.securityonion.net/en/2.4/elasticsearch.html#index-management ? You can run something like |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
Uh oh!
There was an error while loading. Please reload this page.
-
Hello Team,
I have installed SO in Rocky 9 with 256 root volume and 4vcpu and 16gb ram and with 2 NIC (standalone). And in so-status all process are running
day before yesterday i have upgraded my security onion from 2.4.120 to 2.4.140. From that the load was too high IDK what to do and how to reduce the load
yesterday a script of deleting all the index was ran automatically i lost all my data in the index. But still the load was not reduce. I'm unable to find which is the unwanted process to kill
Please help me to solve this!
Thanks in advance!
Beta Was this translation helpful? Give feedback.
All reactions