No more Internet when I use Zenarmor or Intrusion detection on OPNsense

Comments

3 comments

  • Matt

    Hi Lucian Popa, thanks for reaching out. 

    I see that you're experiencing the same problem with both Suricata and Zenarmor. This is most likely due to a netmap problem. Both applications utilize the same packet interface: netmap. This might not play well with your ethernet adapter. 

    What does pciconf -lvv tell you about your ethernet card?

    1
    Comment actions Permalink
  • Lucian Popa

    Hi @Matt! This is the report for my inquary. The card is a Realtek Semiconductor Co., Ltd.'
        device     = 'RTL8111/8168/8411 PCI Express Gigabit Ethernet Controller'

    hostb0@pci0:0:0:0:      class=0x060000 rev=0x06 hdr=0x00 vendor=0x8086 device=0x                                31f0 subvendor=0x1849 subdevice=0x0000
        vendor     = 'Intel Corporation'
        device     = 'Gemini Lake Host Bridge'
        class      = bridge
        subclass   = HOST-PCI
    none0@pci0:0:0:1:       class=0x118000 rev=0x06 hdr=0x00 vendor=0x8086 device=0x                                318c subvendor=0x1849 subdevice=0x318c
        vendor     = 'Intel Corporation'
        device     = 'Celeron/Pentium Silver Processor Dynamic Platform and Thermal                                 Framework Processor Participant'
        class      = dasp
    vgapci0@pci0:0:2:0:     class=0x030000 rev=0x06 hdr=0x00 vendor=0x8086 device=0x                                3184 subvendor=0x1849 subdevice=0x2212
        vendor     = 'Intel Corporation'
        device     = 'GeminiLake [UHD Graphics 605]'
        class      = display
        subclass   = VGA
    hdac0@pci0:0:14:0:      class=0x040300 rev=0x06 hdr=0x00 vendor=0x8086 device=0x                                3198 subvendor=0x1849 subdevice=0xf892
        vendor     = 'Intel Corporation'
        device     = 'Celeron/Pentium Silver Processor High Definition Audio'
        class      = multimedia
        subclass   = HDA
    none1@pci0:0:15:0:      class=0x078000 rev=0x06 hdr=0x00 vendor=0x8086 device=0x                                319a subvendor=0x1849 subdevice=0x319a
        vendor     = 'Intel Corporation'
        device     = 'Celeron/Pentium Silver Processor Trusted Execution Engine Inte                                rface'
        class      = simple comms
    ahci0@pci0:0:18:0:      class=0x010601 rev=0x06 hdr=0x00 vendor=0x8086 device=0x                                31e3 subvendor=0x1849 subdevice=0x31e3
        vendor     = 'Intel Corporation'
        device     = 'Celeron/Pentium Silver Processor SATA Controller'
        class      = mass storage
        subclass   = SATA
    pcib1@pci0:0:19:0:      class=0x060400 rev=0xf6 hdr=0x01 vendor=0x8086 device=0x                                31d8 subvendor=0x1849 subdevice=0x31d8
        vendor     = 'Intel Corporation'
        device     = 'Gemini Lake PCI Express Root Port'
        class      = bridge
        subclass   = PCI-PCI
    pcib7@pci0:0:19:1:      class=0x060400 rev=0xf6 hdr=0x01 vendor=0x8086 device=0x                                31d9 subvendor=0x1849 subdevice=0x31d9
        vendor     = 'Intel Corporation'
        device     = 'Gemini Lake PCI Express Root Port'
        class      = bridge
        subclass   = PCI-PCI
    pcib8@pci0:0:19:2:      class=0x060400 rev=0xf6 hdr=0x01 vendor=0x8086 device=0x                                31da subvendor=0x1849 subdevice=0x31da
        vendor     = 'Intel Corporation'
        device     = 'Gemini Lake PCI Express Root Port'
        class      = bridge
        subclass   = PCI-PCI
    pcib9@pci0:0:19:3:      class=0x060400 rev=0xf6 hdr=0x01 vendor=0x8086 device=0x                                31db subvendor=0x1849 subdevice=0x31db
        vendor     = 'Intel Corporation'
        device     = 'Gemini Lake PCI Express Root Port'
        class      = bridge
        subclass   = PCI-PCI
    xhci0@pci0:0:21:0:      class=0x0c0330 rev=0x06 hdr=0x00 vendor=0x8086 device=0x                                31a8 subvendor=0x1849 subdevice=0x31a8
        vendor     = 'Intel Corporation'
        device     = 'Celeron/Pentium Silver Processor USB 3.0 xHCI Controller'
        class      = serial bus
        subclass   = USB
    isab0@pci0:0:31:0:      class=0x060100 rev=0x06 hdr=0x00 vendor=0x8086 device=0x                                31e8 subvendor=0x1849 subdevice=0x31e8
        vendor     = 'Intel Corporation'
        device     = 'Celeron/Pentium Silver Processor LPC Controller'
        class      = bridge
        subclass   = PCI-ISA
    ichsmb0@pci0:0:31:1:    class=0x0c0500 rev=0x06 hdr=0x00 vendor=0x8086 device=0x                                31d4 subvendor=0x1849 subdevice=0x31d4
        vendor     = 'Intel Corporation'
        device     = 'Celeron/Pentium Silver Processor Gaussian Mixture Model'
        class      = serial bus
        subclass   = SMBus
    pcib2@pci0:1:0:0:       class=0x060400 rev=0x00 hdr=0x01 vendor=0x1b21 device=0x                                1184 subvendor=0x1b21 subdevice=0x118f
        vendor     = 'ASMedia Technology Inc.'
        device     = 'ASM1184e 4-Port PCIe x1 Gen2 Packet Switch'
        class      = bridge
        subclass   = PCI-PCI
    pcib3@pci0:2:1:0:       class=0x060400 rev=0x00 hdr=0x01 vendor=0x1b21 device=0x                                1184 subvendor=0x1b21 subdevice=0x118f
        vendor     = 'ASMedia Technology Inc.'
        device     = 'ASM1184e 4-Port PCIe x1 Gen2 Packet Switch'
        class      = bridge
        subclass   = PCI-PCI
    pcib4@pci0:2:3:0:       class=0x060400 rev=0x00 hdr=0x01 vendor=0x1b21 device=0x                                1184 subvendor=0x1b21 subdevice=0x118f
        vendor     = 'ASMedia Technology Inc.'
        device     = 'ASM1184e 4-Port PCIe x1 Gen2 Packet Switch'
        class      = bridge
        subclass   = PCI-PCI
    pcib5@pci0:2:5:0:       class=0x060400 rev=0x00 hdr=0x01 vendor=0x1b21 device=0x                                1184 subvendor=0x1b21 subdevice=0x118f
        vendor     = 'ASMedia Technology Inc.'
        device     = 'ASM1184e 4-Port PCIe x1 Gen2 Packet Switch'
        class      = bridge
        subclass   = PCI-PCI
    pcib6@pci0:2:7:0:       class=0x060400 rev=0x00 hdr=0x01 vendor=0x1b21 device=0x                                1184 subvendor=0x1b21 subdevice=0x118f
        vendor     = 'ASMedia Technology Inc.'
        device     = 'ASM1184e 4-Port PCIe x1 Gen2 Packet Switch'
        class      = bridge
        subclass   = PCI-PCI
    re0@pci0:3:0:0: class=0x020000 rev=0x07 hdr=0x00 vendor=0x10ec device=0x8168 sub                                vendor=0x10ec subdevice=0x0123
        vendor     = 'Realtek Semiconductor Co., Ltd.'
        device     = 'RTL8111/8168/8411 PCI Express Gigabit Ethernet Controller'
        class      = network
        subclass   = ethernet
    re1@pci0:4:0:0: class=0x020000 rev=0x07 hdr=0x00 vendor=0x10ec device=0x8168 sub                                vendor=0x10ec subdevice=0x0123
        vendor     = 'Realtek Semiconductor Co., Ltd.'
        device     = 'RTL8111/8168/8411 PCI Express Gigabit Ethernet Controller'
        class      = network
        subclass   = ethernet
    re2@pci0:5:0:0: class=0x020000 rev=0x07 hdr=0x00 vendor=0x10ec device=0x8168 sub                                vendor=0x10ec subdevice=0x0123
        vendor     = 'Realtek Semiconductor Co., Ltd.'
        device     = 'RTL8111/8168/8411 PCI Express Gigabit Ethernet Controller'
        class      = network
        subclass   = ethernet
    re3@pci0:6:0:0: class=0x020000 rev=0x07 hdr=0x00 vendor=0x10ec device=0x8168 sub                                vendor=0x10ec subdevice=0x0123
        vendor     = 'Realtek Semiconductor Co., Ltd.'
        device     = 'RTL8111/8168/8411 PCI Express Gigabit Ethernet Controller'
        class      = network
        subclass   = ethernet
    re4@pci0:8:0:0: class=0x020000 rev=0x15 hdr=0x00 vendor=0x10ec device=0x8168 sub                                vendor=0x1849 subdevice=0x8168
        vendor     = 'Realtek Semiconductor Co., Ltd.'
        device     = 'RTL8111/8168/8411 PCI Express Gigabit Ethernet Controller'
        class      = network
        subclass   = ethernet
    ahci1@pci0:9:0:0:       class=0x010601 rev=0x02 hdr=0x00 vendor=0x1b21 device=0x                                0612 subvendor=0x1849 subdevice=0x0612
        vendor     = 'ASMedia Technology Inc.'
        device     = 'ASM1062 Serial ATA Controller'
        class      = mass storage
        subclass   = SATA
    [admin@xrism ~]$ hostb0@pci0:0:0:0:      class=0x060000 rev=0x06 hdr=0x00 vendor=0x8086 device=0x                                31f0 subvendor=0x1849 subdevice=0x0000
        vendor     = 'Intel Corporation'
        device     = 'Gemini Lake Host Bridge'
        class      = bridge
        subclass   = HOST-PCI
    none0@pci0:0:0:1:       class=0x118000 rev=0x06 hdr=0x00 vendor=0x8086 device=0x                                318c subvendor=0x1849 subdevice=0x318c
        vendor     = 'Intel Corporation'
        device     = 'Celeron/Pentium Silver Processor Dynamic Platform and Thermal                                 Framework Processor Participant'
        class      = dasp
    vgapci0@pci0:0:2:0:     class=0x030000 rev=0x06 hdr=0x00 vendor=0x8086 device=0x                                3184 subvendor=0x1849 subdevice=0x2212
        vendor     = 'Intel Corporation'
        device     = 'GeminiLake [UHD Graphics 605]'
        class      = display
        subclass   = VGA
    hdac0@pci0:0:14:0:      class=0x040300 rev=0x06 hdr=0x00 vendor=0x8086 device=0x                                3198 subvendor=0x1849 subdevice=0xf892
        vendor     = 'Intel Corporation'
        device     = 'Celeron/Pentium Silver Processor High Definition Audio'
        class      = multimedia
        subclass   = HDA
    none1@pci0:0:15:0:      class=0x078000 rev=0x06 hdr=0x00 vendor=0x8086 device=0x                                319a subvendor=0x1849 subdevice=0x319a
        vendor     = 'Intel Corporation'
        device     = 'Celeron/Pentium Silver Processor Trusted Execution Engine Inte                                rface'
        class      = simple comms
    ahci0@pci0:0:18:0:      class=0x010601 rev=0x06 hdr=0x00 vendor=0x8086 device=0x                                31e3 subvendor=0x1849 subdevice=0x31e3
        vendor     = 'Intel Corporation'
        device     = 'Celeron/Pentium Silver Processor SATA Controller'
        class      = mass storage
        subclass   = SATA
    pcib1@pci0:0:19:0:      class=0x060400 rev=0xf6 hdr=0x01 vendor=0x8086 device=0x                                31d8 subvendor=0x1849 subdevice=0x31d8
        vendor     = 'Intel Corporation'
        device     = 'Gemini Lake PCI Express Root Port'
        class      = bridge
        subclass   = PCI-PCI
    pcib7@pci0:0:19:1:      class=0x060400 rev=0xf6 hdr=0x01 vendor=0x8086 device=0x                                31d9 subvendor=0x1849 subdevice=0x31d9
        vendor     = 'Intel Corporation'
        device     = 'Gemini Lake PCI Express Root Port'
        class      = bridge
        subclass   = PCI-PCI
    pcib8@pci0:0:19:2:      class=0x060400 rev=0xf6 hdr=0x01 vendor=0x8086 device=0x                                31da subvendor=0x1849 subdevice=0x31da
        vendor     = 'Intel Corporation'
        device     = 'Gemini Lake PCI Express Root Port'
        class      = bridge
        subclass   = PCI-PCI
    pcib9@pci0:0:19:3:      class=0x060400 rev=0xf6 hdr=0x01 vendor=0x8086 device=0x                                31db subvendor=0x1849 subdevice=0x31db
    ^C  subclass   = SATA storageial ATA Controller'hdr=0x00 vendor=0x1b21 device=0x
    [admin@xrism ~]$

    0
    Comment actions Permalink
  • Garett Black

    Interfaces: Settings - Disable ALL hardware offload?

    1
    Comment actions Permalink

Please sign in to leave a comment.

Powered by Zendesk