diff --git a/src/opnsense/service/templates/OPNsense/IDS/rc.conf.d b/src/opnsense/service/templates/OPNsense/IDS/rc.conf.d
index 66f68b9c3..d13d21a42 100644
--- a/src/opnsense/service/templates/OPNsense/IDS/rc.conf.d
+++ b/src/opnsense/service/templates/OPNsense/IDS/rc.conf.d
@@ -1,6 +1,19 @@
-{% set addFlags=[] %}
 {% if helpers.exists('OPNsense.IDS.general') and OPNsense.IDS.general.enabled|default("0") == "1" %}
 suricata_enable="YES"
+
+{% if OPNsense.IDS.general.ips|default("0") == "1" %}
+# IPS mode, switch to netmap
+
+{% for intfName in OPNsense.IDS.general.interfaces.split(',') %}
+{%   if loop.index == 1 %}
+suricata_startup_flags="--netmap  --pidfile /var/run/suricata_{{helpers.getNodeByTag('interfaces.'+intfName).if}}.pid"
+{%   endif %}
+{% endfor %}
+
+{% else %}
+
+# IDS mode, pcap live mode
+{% set addFlags=[] %}
 {% for intfName in OPNsense.IDS.general.interfaces.split(',') %}
 {%   if loop.index == 1 %}
 {# enable first interface #}
@@ -15,6 +28,9 @@ suricata_flags="-D {%
    for intf in addFlags
 %} -i {{ intf }}  {% endfor
 %} "
+
+{% endif %}
+
 {% else %}
 suricata_enable="NO"
 {% endif %}