Hi, I just updated to 0.74.6 and got a problem while loading the rules: (Don't know if the problem was there before...)
----- Aug 10 09:36:07 192.xxx.xxx.xxx php: There were error(s) loading the rules: [...] syntax error pfctl: Syntax error in config file: pf rules not loaded - The line in question reads [175]: pass quick on dc1 proto esp from 212.xxx.xxx.xxx to keep state label "IPSEC: esp proto" ----- IPSec passthru was diabled before. But the rule with empty "to" remains. However, this is not the real problem, I simply deleted the configuration... The real problem is: If there is a syntax error in the rules file and the rules can't be loaded, the firewall will be open! Normaly a firewall is closed by default (maybe with ssh open from LAN...), and then load the rules - if anything goes wrong, the firewall will stay closed. Perhaps an init script which loads the default policy will be a solution? Regards, Michael
