Hi Everyone! Im running ipfire on a bare metal intel H610 motherboard and i3 12100 processor. Occasionally, IPfire will fail to pass packets and will crash. I can’t access 192.168.1.1:444 but there are lights on my NIC and my network connections is ok. Restarting the firewall fixes the issue. I dont see any errors coming from the Kernel but I believe (and Im speculating here) that Suracata may be the issue. Check out the logs below. I think one of the rule sets are causing the issue. Can I provide any other logs?
IPFire diagnostics
Section: suricata
Date: January 23, 2025
07:57:06 suricata: rule reload starting
07:57:06 suricata: Including configuration file /var/ipfire/suricata/suricata-homenet.yaml.
07:57:06 suricata: Including configuration file /var/ipfire/suricata/suricata-dns-servers.yaml.
07:57:06 suricata: Including configuration file /var/ipfire/suricata/suricata-http-ports.yaml.
07:57:06 suricata: Including configuration file /var/ipfire/suricata/suricata-used-rulesfiles.yaml.
07:57:06 suricata: 1 rule files specified, but no rules were loaded!
07:57:06 suricata: Threshold config parsed: 0 rule(s) found
07:57:06 suricata: 0 signatures processed. 0 are IP-only rules, 0 are inspecting packet payload, 0 inspect application layer, 0 are decoder event only
07:57:07 suricata: rule reload complete
19:57:10 suricata: rule reload starting
19:57:10 suricata: Including configuration file /var/ipfire/suricata/suricata-homenet.yaml.
19:57:10 suricata: Including configuration file /var/ipfire/suricata/suricata-dns-servers.yaml.
19:57:10 suricata: Including configuration file /var/ipfire/suricata/suricata-http-ports.yaml.
19:57:10 suricata: Including configuration file /var/ipfire/suricata/suricata-used-rulesfiles.yaml.
19:57:10 suricata: 1 rule files specified, but no rules were loaded!
19:57:10 suricata: Threshold config parsed: 0 rule(s) found
19:57:10 suricata: 0 signatures processed. 0 are IP-only rules, 0 are inspecting packet payload, 0 inspect application layer, 0 are decoder event only
19:57:11 suricata: rule reload complete
20:51:09 suricata: This is Suricata version 7.0.8 RELEASE running in SYSTEM mode
20:51:09 suricata: CPUs/cores online: 8
20:51:09 suricata: master exception-policy set to: pass-packet
20:51:09 suricata: HTTP memcap: 268435456
20:51:09 suricata: NFQ running in REPEAT mode with mark 2147483648/2147483648
20:51:09 suricata: dropped the caps for main thread
20:51:09 suricata: fast output device (regular) initialized: fast.log
20:51:09 suricata: Packets will start being processed before signatures are active.
20:51:09 suricata: binding this thread 0 to queue ‘0’
20:51:09 suricata: setting queue length to 4096
20:51:09 suricata: setting nfnl bufsize to 6144000
20:51:09 suricata: binding this thread 1 to queue ‘1’
20:51:09 suricata: setting queue length to 4096
20:51:09 suricata: setting nfnl bufsize to 6144000
20:51:09 suricata: binding this thread 2 to queue ‘2’
20:51:09 suricata: setting queue length to 4096
20:51:09 suricata: setting nfnl bufsize to 6144000
20:51:09 suricata: binding this thread 3 to queue ‘3’
20:51:09 suricata: setting queue length to 4096
20:51:09 suricata: setting nfnl bufsize to 6144000
20:51:09 suricata: binding this thread 4 to queue ‘4’
20:51:09 suricata: setting queue length to 4096
20:51:09 suricata: setting nfnl bufsize to 6144000
20:51:09 suricata: binding this thread 5 to queue ‘5’
20:51:09 suricata: setting queue length to 4096
20:51:09 suricata: setting nfnl bufsize to 6144000
20:51:09 suricata: binding this thread 6 to queue ‘6’
20:51:09 suricata: setting queue length to 4096
20:51:09 suricata: setting nfnl bufsize to 6144000
20:51:09 suricata: binding this thread 7 to queue ‘7’
20:51:09 suricata: setting queue length to 4096
20:51:09 suricata: setting nfnl bufsize to 6144000
20:51:09 suricata: Threads created → W: 8 FM: 1 FR: 1 Engine started.
20:51:09 suricata: rule reload starting
20:51:09 suricata: Including configuration file /var/ipfire/suricata/suricata-homenet.yaml.
20:51:09 suricata: Including configuration file /var/ipfire/suricata/suricata-dns-servers.yaml.
20:51:09 suricata: Including configuration file /var/ipfire/suricata/suricata-http-ports.yaml.
20:51:09 suricata: Including configuration file /var/ipfire/suricata/suricata-used-rulesfiles.yaml.
20:51:09 suricata: 1 rule files specified, but no rules were loaded!
20:51:09 suricata: Threshold config parsed: 0 rule(s) found
20:51:09 suricata: 0 signatures processed. 0 are IP-only rules, 0 are inspecting packet payload, 0 inspect application layer, 0 are decoder event only
20:51:11 suricata: rule reload complete
20:51:11 suricata: Signature(s) loaded, Detect