Suricata V3.0 and traffic Shaper

IDS/IPS
Log in to reply
  • G

    Gentlemen:

    The new version of Suricata V3.0 with the Inline Mode works fine by itself but if traffic shaping is employed to reduce bufferbloat the traffic shaper does not work correctly. When I returned to the legacy mode all is well. This must have something to do with the interaction between Inline Mode and traffic shaping. I would love to get this working but don't know how to proceed. The network card is an Intel I350T2V2. The card works fine with Suricata V3.0 Inline Mode. Did the traffic shaper change in some way from previous versions when we moved to Pfsense 2.3?

    Best Regards,

    G. Howard Krauss

    0
  • jimp
    Rebel Alliance Developer Netgate

    Traffic shaper didn't change at all, but it's probably putting the traffic through a different path that bypasses ALTQ in the driver somehow then.

    0
  • G

    Thanks for the update. Is this something that might be examined during the development or in a subsequent release? Is there something I can configure locally?

    Best Regards,

    Howard

    0

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

© 2020 Rubicon Communications, LLC | Privacy Policy