Looks like that section is part of your IPS settings, and it sure looks like an error that there's no counter in front of the ;$$ part. Just guessing from the name, it looks like it's one of your DCE-RPC settings on your IPS blade, but not sure on that part. Checking a fresh install on a box I have in the lab shows that particular block empty (meaning there's nothing between the braces in that section). Manually editing that section out sounds like something that will come back as soon as it re-writes the file, so if it works at all, the problem might recur. Might have been a bug in that update, or it might have just been a bad install when it applied on your particular box (usually it throws some error if it doesn't complete clean, but who knows).
I assume you don't have a DB revision from prior to doing the IPS update, so you couldn't just roll back and test. If that's the case, then my best guess would be to try a newer update (if there is one) to see if it clears up and rewrites that section properly, or open a ticket with CP to match up that code block to the specific IPS config setting so you can disable it until the next update comes out and you can test it again. -----Original Message----- From: Mailing list for discussion of Firewall-1 [mailto:FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM] On Behalf Of Peter Olsson Sent: Wednesday, May 22, 2013 05:07 To: FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM Subject: [FW-1] How solve syntax error in Standard.pf (R75) We run a combined management and gateway server, R75. Yesterday the fwm process stuck at 100% CPU, so we rebooted the server. Today we can't make changes to the rules, we just get this error when trying to install policy: Installation Targets Version Policy Type Details gate R75 Network Security Standard: gate R75 Network Security "/opt/CPsuite-R75/fw1/conf/Standard.pf", line 130467: ERROR: syntax error gate R75 Network Security Compilation failed. gate R75 Network Security Operation ended with errors. The "<;$$>," line below is causing the complaint: " #ifdef PROFILE_0 cmi_inspect_over_contexts_t = kbuf 1 { <104;$$>, <109;$$>, <110;$$>, <129;$$>, <181;$$>, <182;$$>, <183;$$>, <184;$$>, <;$$>, <2;$$>, <4;$$>, <13;$$>, <150;$$>, <156;$$>, <158;$438$>, <170;$1746$> }; #endif " Anyone know what we can do about this? One idea is to manually edit the Standard.pf file, and delete the complaining line, but is this possible and what are the consequences of manual edit? If there is no way to edit away this error, either manually or through the GUI, I guess we have to restore from backup? Thanks! -- Peter Olsson p...@leissner.se Email secured by Check Point ================================================= To set vacation, Out-Of-Office, or away messages, send an email to lists...@amadeus.us.checkpoint.com in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email fw-1-ow...@ts.checkpoint.com ================================================= *************************************************************************** The information contained in this communication is confidential, is intended only for the use of the recipient named above, and may be legally privileged. If the reader of this message is not the intended recipient, you are hereby notified that any dissemination, distribution or copying of this communication is strictly prohibited. If you have received this communication in error, please resend this communication to the sender and delete the original message or any copy of it from your computer system. Thank You. **************************************************************************** ================================================= To set vacation, Out-Of-Office, or away messages, send an email to lists...@amadeus.us.checkpoint.com in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email fw-1-ow...@ts.checkpoint.com =================================================
