M. Kohn wrote:
Hi,
I just updated to 0.74.6 and got a problem while loading
the rules: (Don't know if the problem was there before...)
-----
Aug 10 09:36:07 192.xxx.xxx.xxx php: There were error(s)
loading the rules: [...] syntax error pfctl: Syntax error
in config file: pf rules not loaded - The line in question
reads [175]: pass quick on dc1 proto esp from 212.xxx.xxx.xxx
to keep state label "IPSEC: esp proto"
-----
I had this problem horribly on 0.74.4 too - ended up having to comment
out the entire section of /etc/inc/filter.inc that dealt with IPsec
before the filters would correctly set up and allow me out of my
network. That really sucked.
In the GUI, it seems like there's a partial IPsec tunnel defined - the
entire line is empty except for 'WAN' in the 'Remote Interface GW'.
When I tried to edit it, I just got a new tunnel. Ergh.
RB
