Suricata IPS inline mode problem
-
Suricata IPS inline mode cause lan net to have NO internet connection BUT if I change it to legacy mode, then there is internet connection.
I have already disabled the Hardware TCP Segmentation Offloading and Hardware Large Receive Offloading.
Any thoughts ?
-
Suricata IPS inline mode cause lan net to have NO internet connection BUT if I change it to legacy mode, then there is internet connection.
I have already disabled the Hardware TCP Segmentation Offloading and Hardware Large Receive Offloading.
Any thoughts ?
What is the interface named in pfsense for which you internet traffic is not working "em0" ?
-
re0
-
re0
I had the same issue as you but for em interfaces.
I have only 2 interfaces, em0 and igb0. Inline mode only worked for igb0 interfaces.
Your ETH cards are Realtek, please check the chipset compatibility here, if you didn't to that already:
https://www.freebsd.org/cgi/man.cgi?query=re&apropos=0&sektion=4&manpath=FreeBSD+10.3-RELEASE+and+Ports&arch=default&format=html
I have Intel chipsets, so I don't know what advice to give you. Try to switch interfaces by assign a different one, although as I read on different forums, I tried to buy only ETH cards with Intel chipsets, because Realtek ones, tend to cause issues.