OPNsense Forum

English Forums => General Discussion => Topic started by: wusikijeronii on March 06, 2022, 01:35:14 pm

Title: NAT doesn'r work if IPS mode is enabled in suricata settings
Post by: wusikijeronii on March 06, 2022, 01:35:14 pm

Hello.
When I enable IPS mode in suricata settings NAT stops work. I get a timeout error using external network and error `no route to host` via LAN. I have tried to disable all hw offloading in advanced network but it didn't help. I also tried to disable all rules in suricata but I also get a same error. In firewall log I don't see any problems. How can I solve this issue?
I have two interfaces:

• Phhysical interface with untagged VLAN
• VLAN interface with tagged VLAN