[SOLVED] Suricata and port 443

Started by miroco, September 16, 2017, 03:51:24 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
September 16, 2017, 03:51:24 PM Last Edit: September 22, 2017, 12:51:12 PM by miroco
Suricata and port 443

As soon as I enable IPS mode under Intrusion Detection, the No-IP DynamicDNS update fails. This also makes my OpenVPN Server to fail. It's a road warrior style configuration using port 443.

I sat out to try the abuse.ch ruleset and IPS. The ruleset does not seem to play a part in this, but IPS definitely does. The mandatory 3x hardware offloading is disabled.

Sep 14 20:38:348         opnsense:/usr/local/etc/rc.dyndns: curl error occurred: Failed to connect to dynupdate.no-ip.com port 443: Operation timed out

If I uncheck IPS mode, the problem goes away and I can connect to my OpenVPN server.

Sep 14 20:47:36         opnsense:/usr/local/etc/rc.bootup: DynamicDNS (xxxxxxxxxxxx.ddns.net): (Success) DNS hostname update successful.

I'm on OPNsense ver. 17.7.2


Perhaps a related issue.

https://forum.opnsense.org/index.php?topic=4727.0

Miroco
September 22, 2017, 12:49:05 PM #1 Last Edit: September 22, 2017, 12:51:32 PM by miroco
The root to the problem was that the 3 x hardware offload was already disabled by default. That gave the impression of a false dubble negative that confused me.

Both the DDNS service updating and OpenVPN are now working.


Miroco
September 22, 2017, 07:32:28 PM #2
Hi Miroco,

Thanks for the follow up. :)


Cheers,
Franco
Print
Go Up Pages1
User actions