VPN WAN and Snort question



  • Setup pfsense, with vpn interface. All trafic goes over this vpn interface unless the vpn server goed down.

    Snort is enabled on both interfaces. The cpu load because of this is great. If i disable the WAN interface in snort the cpu load is much more acceptable. But is this safe?

    In affect in only want to use the internet over the VPN connection. Is there a way i can block the WAN connection completly and still use my VPN or something like that?