OPNsense Forum

Archive => 17.7 Legacy Series => Topic started by: Julien on October 08, 2017, 08:31:22 pm

Title: Intrusion Detection abuse.ch
Post by: Julien on October 08, 2017, 08:31:22 pm: Hi Guys,
I am on a hardware OPNsense 17.7.5-amd64 with a kill configuration 16GB Memory and I5/64 SSD disk.
when I enable the abuse.ch on the abuse.ch Intrusion Detection the speed drops from 900MB to 40MB.

is there is a way to get this tweaked ?

Thank you
Title: Re: Intrusion Detection abuse.ch
Post by: aniwon on October 17, 2017, 09:35:27 am: Do you have an interface assigned in the Intrusion Detection settings which is a VLAN-interface?

They don't work well and increase firewall load by a lot - thus decreasing throughput performance.

Keep in mind that tweaking ID-settings with a VLAN interface might crash the firweall.
Title: Re: Intrusion Detection abuse.ch
Post by: mimugmail on October 17, 2017, 05:36:34 pm: Can you try to load the list via URL table in Firewall rulesets and do it as a rule?
Title: Re: Intrusion Detection abuse.ch
Post by: Julien on October 18, 2017, 11:32:50 pm: Quote from: aniwon on October 17, 2017, 09:35:27 am
Do you have an interface assigned in the Intrusion Detection settings which is a VLAN-interface?

They don't work well and increase firewall load by a lot - thus decreasing throughput performance.

Keep in mind that tweaking ID-settings with a VLAN interface might crash the firweall.
Thank you for your answer,
the interface I have is the WAN and LAN and no VLAN really.
Title: Re: Intrusion Detection abuse.ch
Post by: Julien on October 18, 2017, 11:33:13 pm: Quote from: mimugmail on October 17, 2017, 05:36:34 pm
Can you try to load the list via URL table in Firewall rulesets and do it as a rule?
I am not sure I can follow, can you please explain more ?