Quote from: seed on January 30, 2024, 06:46:34 pmQuote from: seed on January 30, 2024, 06:36:47 pmI must report the same issues.Having suricata running breaks the connection.When connected to the opnsense console i can ping 1.1 through the igb interface. But not to lan (lacp lagg with ixl interfaces)Adding:Code: [Select]stream.midstream-policy: ignorehttp2: enabled: yesquic: enabled: yesto /usr/local/opnsense/service/templates/OPNsense/IDS/custom.yaml fixed the issue as described in the upper post.Looks like a little hotfix must be released.Even with the fix applied i have problems reaching my servers by http/https.I disabled suricata for now.
Quote from: seed on January 30, 2024, 06:36:47 pmI must report the same issues.Having suricata running breaks the connection.When connected to the opnsense console i can ping 1.1 through the igb interface. But not to lan (lacp lagg with ixl interfaces)Adding:Code: [Select]stream.midstream-policy: ignorehttp2: enabled: yesquic: enabled: yesto /usr/local/opnsense/service/templates/OPNsense/IDS/custom.yaml fixed the issue as described in the upper post.Looks like a little hotfix must be released.
I must report the same issues.Having suricata running breaks the connection.When connected to the opnsense console i can ping 1.1 through the igb interface. But not to lan (lacp lagg with ixl interfaces)
stream.midstream-policy: ignorehttp2: enabled: yesquic: enabled: yes
Meanwhile Suricata has been rolled back from 7 to 6 anyway.
I never had Suricata installed, but it seems that 24.1_1 forced the package to install. Was this intended behavior?