System Crash after enabling Intrusion Prevention System

Started by mattiarainieri, September 25, 2023, 03:17:36 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
September 25, 2023, 03:17:36 PM
Hi everyone,
I'm trying to investigate about a curious problem that make my system crash every times that i enable the IPS. There is no still problem using IDS. The computer has two network cards: the 1Gbit motherboard one, and a 2 x 2.5Gbit Realtek installed on a pci slot. Enabling the IPS when only the motherboard one is installed works fine; when i install the Realtek, after a couple of second, it crash and the computer restarts.

The system reports the attached message.
September 25, 2023, 04:21:36 PM #1
very simple solution:

https://i.imgur.com/4RRxC2n.png
September 25, 2023, 09:08:09 PM #2
I've tried to copy your configuration, but the error persists. I've also tried to install the driver through "pkg install realtek-re-kmod" but this create also another problem.
This installation method require to add some lines in /boot/loader.conf file, witch are ofter overwritten.

I've read that os-realtek-re packet is still not needed, but without it Opnsense does not recognise the network card
???
September 25, 2023, 09:37:45 PM #3
Quote from: mattiarainieri on September 25, 2023, 09:08:09 PM
I've tried to copy your configuration, but the error persists. I've also tried to install the driver through "pkg install realtek-re-kmod" but this create also another problem.
This installation method require to add some lines in /boot/loader.conf file, witch are ofter overwritten.

And if you look at the first lines of /boot/loader.conf, there are two options to solve that problem:

Code Select

##############################################################
# This file was auto-generated using the rc.loader facility. #
# In order to deploy a custom change to this installation,   #
# please use /boot/loader.conf.local as it is not rewritten, #
# or better yet use System: Settings: Tunables from the GUI. #
##############################################################

Intel N100, 4 x I226-V, 16 GByte, 256 GByte NVME, ZTE F6005

1100 down / 440 up, Bufferbloat A+
September 25, 2023, 09:53:41 PM #4
I apologize but in my haste I didn't even read the first line
Now i've configure as follow. I'll ask you if it's right, because the documentation is not so detailed.


September 25, 2023, 11:07:58 PM #5
Yes, but you need another setting for if_re_load="YES".
Intel N100, 4 x I226-V, 16 GByte, 256 GByte NVME, ZTE F6005

1100 down / 440 up, Bufferbloat A+
September 26, 2023, 07:50:25 AM #6
Off course, i didn't attach the screenshot because the configuration schema was the same.
But, unfortunately, also with this driver, the problem persists  :-\
November 08, 2024, 10:05:56 AM #7
Quote from: mattiarainieri on September 26, 2023, 07:50:25 AM
Off course, i didn't attach the screenshot because the configuration schema was the same.
But, unfortunately, also with this driver, the problem persists  :-\
Did you solve it? I have the same issue.
November 12, 2024, 05:06:08 PM #8
Unfortunately not, the physical machine was changed and there the problem did not recur
Print
Go Up Pages1
User actions