pfsense 2.4.5 vmxnet3 with Snort 4.1.2_2 inline mode
-
Hi all,
pfsense 2.4.5 vmxnet3 with Snort 4.1.2_2 inline mode seems not support yet?
Anyway to get this working?E100E can work, but seem not work best for 10G internet
-
No, that interface is not supported for native netmap operation. It would run in emulated mode and that would be painfully slow (compared to native mode). If you want to use Inline IPS mode (which uses the FreeBSD netmap kernel device), then you will need to use the e1000 virtual hardware NIC in your virtual machine.
-
@bmeeks thanks! got ya , but e1000e just can 1Gbps ~~ !!
-
@xayumi said in pfsense 2.4.5 vmxnet3 with Snort 4.1.2_2 inline mode:
@bmeeks thanks! got ya , but e1000e just can 1Gbps ~~ !!
Understand, but with Inline IPS you will never get anything even close to approaching 10G throughput. In fact, a little over 1G is about the best you can expect even with a fully tuned system and a minimal rule set.
-
@bmeeks got ya !!