I was experimenting with Suricata. When I tried to turn it off, the Apply Button hung up. After that, I have a VLAN with a DHCP server and simple routing rules to the internet. This interface quit responding. I tried the following.
1. Simplify the routing rules even further.
2. I checked the interface traffic with tcpdump. I can see the packets coming in (ICMP host to 1.1.1.1) to the interface, routing to the WAN, packets coming back from 1.1.1.1; but nothing gets routed back to the interface. The VLAN interface does not send any packets out, it only receives them.
3. Rebooting
Is it possible that Suricata made some changes with netmap, and those did not get reversed properly when I disabled it?
Can I run a CLI command manually disable Suricata?
Are you still having issues?
No because I did a complete reinstall of OPNSense.
I tried many things including a reset to factory defaults. I wonder if between netmap and my hardware, there is a bug. I was beginning to wonder if I actually had a hardware failure, but the full reinstall fixed it. I am hesitant to try it out again.