Re: optimize MYSQL + ACID

[Erick Mechler <emechler () techometer net>]

:: I have seen a lot of traffic on this mailing list about creating
:: additional indexes to speed up ACID et. al.  The problem is I cannot
:: find out what syntax to use to create the indexes.
:: 
:: I know about the need to create an index for tcphdr.tcp_sport,
:: tcphdr.tcp_dport and acid_ag_alert.ag_sid + acid_ag_alert.ag_cid.   What
:: is the command line to do it?

Pete, please see the message I posted earlier today regarding
optimizations.  These indexes aren't needed if you're running a recent
version of the DB schemas.  Despite what the ACID FAQ says, these indexes
*are* created for you on install.  Also note, the second index (for
acid_ag_alert) is only useful if you use alert groups.  If you don't, this
index will matter not.

You can verify that these indexes are created on a given table by running, 
for example, the following command:

  SHOW INDEX FROM tcphdr;

On a standard snort install, you should see several indexes listed, 
including ones for tcp_sport and tcp_dport already.

Cheers - Erick


-------------------------------------------------------
This SF.net email is sponsored by: SlickEdit Inc. Develop an edge.
The most comprehensive and flexible code editor you can use.
Code faster. C/C++, C#, Java, HTML, XML, many more. FREE 30-Day Trial.
www.slickedit.com/sourceforge
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users