Messages

1

Intrusion Detection and Prevention / Re: Error reconfiguring IDS: Error (1) / Hyperscan: Error installing ids rules (1)

« on: February 06, 2022, 01:54:43 am »

Running 22.1 on a Protectli Mini PC. I got the error as well upon enabling IPS. Didn't get the error when running in IDS mode. Rebooting the device seems to have fixed it for me and IPS is running normally.

I have the same exact setup and error.

2

21.7 Legacy Series / Re: Interfaces randomly go down/unroutable

« on: November 29, 2021, 10:48:10 pm »

I've had the exact same experience.

I updated to 21.7.6 yesterday in the evening, this morning hell broke loose on the most important interface (suricata in IPS mode running on a total of 3 interfaces). All of the sudden no internet connection, dhcp delivers addresses, but devices are not reachable on the same LAN.

I rebooted, changed the physical interface (network card), I moved the whole network to another 21.7.6 install, I changed ALL dumb switches on the network, it helps for an hour and then the terror starts again. I have no idea where to start, nothing remarkable in the system log, dhcp log, unbound log, suricata log.

dmesg appended....

3

21.7 Legacy Series / DHCPv4 deny unknown clients broken in 21.7.6

« on: November 26, 2021, 07:38:25 pm »

On two separate firewalls I have "deny unknown clients" enabled for all subnets. This has been working fine for a long time. With this new update after rebooting, firewall clients are connected for about 45 minutes then all are denied. Reboot and I get another roughly 45 minutes then denied. I have been forced to disable the setting.

Edit: The network still goes down but much less and seems to be related to using the site to site wireguard tunnel. When I hammer that network it tends to hang and need a reboot. It renamed the Wireguard firewall rules section to "Wireguard(group)", oddly.

edit: screw this, I'm reverting to previous version. Maybe don't push out updates over thanksgiving that break things.