OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • Archive »
  • 17.7 Legacy Series »
  • Intrusion Detection abuse.ch
« previous next »
  • Print
Pages: [1]

Author Topic: Intrusion Detection abuse.ch  (Read 3497 times)

Julien

  • Hero Member
  • *****
  • Posts: 665
  • Karma: 32
    • View Profile
Intrusion Detection abuse.ch
« on: October 08, 2017, 08:31:22 pm »
Hi Guys,
I am on a hardware OPNsense 17.7.5-amd64 with a kill configuration 16GB Memory and I5/64 SSD disk.
when I enable the abuse.ch on the abuse.ch Intrusion Detection the speed drops from 900MB to 40MB.

is there is a way to get this tweaked ?

Thank you
Logged
OPNsense 23.1.7_3-amd64
FreeBSD 13.1-RELEASE-p7
OpenSSL 1.1.1t 7 Feb 2023

aniwon

  • Newbie
  • *
  • Posts: 3
  • Karma: 0
    • View Profile
Re: Intrusion Detection abuse.ch
« Reply #1 on: October 17, 2017, 09:35:27 am »
Do you have an interface assigned in the Intrusion Detection settings which is a VLAN-interface?

They don't work well and increase firewall load by a lot - thus decreasing throughput performance.

Keep in mind that tweaking ID-settings with a VLAN interface might crash the firweall.
Logged

mimugmail

  • Hero Member
  • *****
  • Posts: 6479
  • Karma: 449
    • View Profile
Re: Intrusion Detection abuse.ch
« Reply #2 on: October 17, 2017, 05:36:34 pm »
Can you try to load the list via URL table in Firewall rulesets and do it as a rule?
Logged
Twitter: mimu_muc
WWW: www.routerperformance.net
Support plans: https://www.max-it.de/en/it-services/opnsense/
Commercial Plugins (German): https://opnsense.max-it.de/

Julien

  • Hero Member
  • *****
  • Posts: 665
  • Karma: 32
    • View Profile
Re: Intrusion Detection abuse.ch
« Reply #3 on: October 18, 2017, 11:32:50 pm »
Quote from: aniwon on October 17, 2017, 09:35:27 am
Do you have an interface assigned in the Intrusion Detection settings which is a VLAN-interface?

They don't work well and increase firewall load by a lot - thus decreasing throughput performance.

Keep in mind that tweaking ID-settings with a VLAN interface might crash the firweall.
Thank you for your answer,
the interface I have is the WAN and LAN and no VLAN really.
Logged
OPNsense 23.1.7_3-amd64
FreeBSD 13.1-RELEASE-p7
OpenSSL 1.1.1t 7 Feb 2023

Julien

  • Hero Member
  • *****
  • Posts: 665
  • Karma: 32
    • View Profile
Re: Intrusion Detection abuse.ch
« Reply #4 on: October 18, 2017, 11:33:13 pm »
Quote from: mimugmail on October 17, 2017, 05:36:34 pm
Can you try to load the list via URL table in Firewall rulesets and do it as a rule?
I am not sure I can follow, can you please explain more ?
Logged
OPNsense 23.1.7_3-amd64
FreeBSD 13.1-RELEASE-p7
OpenSSL 1.1.1t 7 Feb 2023

  • Print
Pages: [1]
« previous next »
  • OPNsense Forum »
  • Archive »
  • 17.7 Legacy Series »
  • Intrusion Detection abuse.ch
 

OPNsense is an OSS project © Deciso B.V. 2015 - 2023 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy
    | XHTML | RSS | WAP2