OK,my tests (both Lab and Production) confirm this.I run suricata on each VLAN and leave promiscuous mode on, and IPS works. I have tested with igb and ixl interfaces.Thanks,Frank
Meanwhile, I am a bit confused... As I wrote in my previous posts I had to run IPS on my VLAN Interfaces, but not on the physical interface. Otherwise I would not get DHCP leases on my VLAN Subnets an I could not connect to the internet.Then the world turned upside down... A few days ago I had to perform several reboots after some issues with power supply. After that I was not able to get a DHCP lease with the exact config that used to work before. So I played around a bit. After configuring IPS running on the physical LAN interface, but not on the VLAN interfaces anymore I immediately got DHCP Leases on all of my VLAN Subnets. This seems to be stable so far. I have no idea why the system's behaviour changed after the reboots. From my point of view this seems to be quite strange...
Quote from: GaardenZwerch on October 16, 2019, 04:13:55 pmOK,my tests (both Lab and Production) confirm this.I run suricata on each VLAN and leave promiscuous mode on, and IPS works. I have tested with igb and ixl interfaces.Thanks,FrankHi Frank.Thanks for testing this. Just to clarify: was this on the VLANs only or also the physical LAN interface?
Hey Cajuba. Did you upgrade to 19.7.5_5 per chance?
