No Outbound Traffic Reporting

[Psychic49]

The "Out (bps)" does not appear to be populated with any data. Interestingly enough, the "Top hosts out (bps)" graph is populated.

Sensei is running on Guest and LAN interfaces.
Suricata is running on WAN interface.

[franco]

Is this 21.1-RC1 or final 21.1?

Sensei and IPS mode mess with the kernel accounting pre-21.1 (also on the RC).

And if this is a final 21.1 at least try without Sensei and IPS mode to see if that brings the graph back. We are working through FreeBSD iflib issues here, maybe not all of them found yet.


Cheers,
Franco

[Psychic49]

Hi franco, really appreciate the reply. I did the update today as soon as I saw the news. The changelog says "21.1 (installed)", so I'd assume final 21.1. I'm not sure exactly what 21.1-RC1 is.

I've had problems with Sensei and IPS causing this data not to be reported in previous versions, but this latest version seems to have fixed most of those issues. Now it appears to just be the "Out (bps)".

Disabling IDS populated the WAN portion of the graph (IDS is configured only on WAN).
Disabling Sensei populated the LAN and Guest portion (Sensei is only configured on these).

I'd love to help in any way I can 

[Mr.Goodcat]

I'm observing similar behavior, with the distinction that aside from "top hosts" no traffic is shown at all.
My setup doesn't use any IPS/IPD or Sensei and is based on Mellanox ConnectX-3 NICs.

[franco]

Thanks for the details. I have reopened https://github.com/opnsense/src/issues/103 for Stephan to give it another look.


Cheers,
Franco

[tuto2]

Hi all,

It seems I'm unable to reproduce the issue in a VM, which is configured to use the e1000 NIC.

I do know however, that Mellanox cards are not updated to use the new interface library 'iflib' in FreeBSD. The changes to fix the traffic graph in IDS/IPS mode are related to this generic library.

The "Out (bps)" does not appear to be populated with any data. Interestingly enough, the "Top hosts out (bps)" graph is populated.

Sensei is running on Guest and LAN interfaces.
Suricata is running on WAN interface.

What type of NIC are you using?

I will mention that traffic data is the responsibility of the driver, which might explain why I'm seeing varying results. I'll take a look to confirm.

Stephan

[Mr.Goodcat]

I do know however, that Mellanox cards are not updated to use the new interface library 'iflib' in FreeBSD. The changes to fix the traffic graph in IDS/IPS mode are related to this generic library.

Does this mean there is another issue on Mellanox cards causing the same behavior? Having no traffic graph is really annoying :'(

[Psychic49]

Hi all,

It seems I'm unable to reproduce the issue in a VM, which is configured to use the e1000 NIC.

I do know however, that Mellanox cards are not updated to use the new interface library 'iflib' in FreeBSD. The changes to fix the traffic graph in IDS/IPS mode are related to this generic library.

The "Out (bps)" does not appear to be populated with any data. Interestingly enough, the "Top hosts out (bps)" graph is populated.

Sensei is running on Guest and LAN interfaces.
Suricata is running on WAN interface.

What type of NIC are you using?

I will mention that traffic data is the responsibility of the driver, which might explain why I'm seeing varying results. I'll take a look to confirm.

Stephan

Dell Intel PRO/1000 VT Quad Port Server Adapter
https://www.amazon.com/gp/product/B002JLKNIW/ref=ppx_yo_dt_b_search_asin_title?ie=UTF8&psc=1
Went with this because it was recommended for having the best compatibility.

[Mr.Goodcat]

This issue is still affecting my setup (mlx4 driver, mellanox connectx-3 card).
Is there anything I can do to help in getting to the bottom of this?