Intrusion Detection abuse.ch

Started by Julien, October 08, 2017, 08:31:22 PM

Previous topic - Next topic
Hi Guys,
I am on a hardware OPNsense 17.7.5-amd64 with a kill configuration 16GB Memory and I5/64 SSD disk.
when I enable the abuse.ch on the abuse.ch Intrusion Detection the speed drops from 900MB to 40MB.

is there is a way to get this tweaked ?

Thank you
DEC4240 – OPNsense Owner

Do you have an interface assigned in the Intrusion Detection settings which is a VLAN-interface?

They don't work well and increase firewall load by a lot - thus decreasing throughput performance.

Keep in mind that tweaking ID-settings with a VLAN interface might crash the firweall.

Can you try to load the list via URL table in Firewall rulesets and do it as a rule?

Quote from: aniwon on October 17, 2017, 09:35:27 AM
Do you have an interface assigned in the Intrusion Detection settings which is a VLAN-interface?

They don't work well and increase firewall load by a lot - thus decreasing throughput performance.

Keep in mind that tweaking ID-settings with a VLAN interface might crash the firweall.
Thank you for your answer,
the interface I have is the WAN and LAN and no VLAN really.
DEC4240 – OPNsense Owner

Quote from: mimugmail on October 17, 2017, 05:36:34 PM
Can you try to load the list via URL table in Firewall rulesets and do it as a rule?
I am not sure I can follow, can you please explain more ?
DEC4240 – OPNsense Owner