Both of those are the same crap just a different smell. Not that they are crap, just an expression, but it is essentially the same thing. Some vote snort, some suricata, but i am still to understand the greatnes between one or the other. Snort is the older, suricata the newer but the rules are compatible. I suppose there are small differences but nothing that makes me draw a clear winner.
They are ids not ips though. For ips functionality, the easiest way is snort on pfsense. It adds the blocking filters.