Bug #12607: Instability with Snort Inline with AWS Instances - pfSense Plus - pfSense bugtracker

Actions

Copy link

Bug #12607

closed

Instability with Snort Inline with AWS Instances

Added by Kris Phillips over 2 years ago. Updated almost 2 years ago.

Status:

Closed

Priority:

Normal

Assignee:

Category:

Hardware / Drivers

Target version:

Start date:

Due date:

% Done:

Estimated time:

Release Notes:

Default

Affected Plus Version:

Affected Architecture:

amd64

Description

The ena driver seems to have instability when enabling inline snort. Because AWS is behind NAT Legacy mode is not viable, so utilizing inline is necessary. The ena driver recently added support for inline mode, but it appears that when you enable it the interface flaps up and down.

Nov 29 08:36:14 pfSense kernel: ena0: device is going DOWN
Nov 29 08:36:14 pfSense kernel: ena0: device is going UP
Nov 29 08:36:14 pfSense kernel: ena0: Creating 2 IO queues. Rx queue size: 1024, Tx queue size: 1024, LLQ is DISABLED
Nov 29 08:36:14 pfSense kernel: ena0: device is going DOWN
Nov 29 08:36:14 pfSense kernel: ena0: device is going UP

As soon as you put snort into IDS mode and disable blocking the issues go away.

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

pfSense » pfSense Plus

Custom queries

Bug #12607

Instability with Snort Inline with AWS Instances

Updated by Viktor Gurov over 2 years ago

Updated by Marcos M over 2 years ago

Updated by Kris Phillips almost 2 years ago

Updated by Jim Pingle almost 2 years ago