On 1/7/07, S t i n g r a y <[EMAIL PROTECTED]> wrote:
Thanks Stuart really appriciate your help
now the config file i have written keeps giving syntax
error on the following line can you help me sort this
as well , i cant seem to find anything wrong with this
..
pass in on $int_if proto tcp route-to { ($ext_if1
$ext_gw1) } from \
$lan_net port {$ports} flags S/SA keep state
Here is my new pf.conf
thanks again ..
lan_net = "10.0.0.0/16"
int_if = "epic0"
ext_if1 = "pcn0"
ext_if2 = "fxp0"
ext_gw1 = "192.168.0.1"
ext_gw2 = "203.81.235.1"
chadd = "10.0.0.1"
ports = "21 22 25 53 80 110 119 123 143 443 465 554
900 995 1755 1863 1999 2090 2091 2095 3000 3020 2020
3389 5000 5001 5050 5100 5190 6667
When you give a list inside a macro do like this
ports = "{ 21, 22, 25, 53 }"
http://www.openbsd.org/faq/pf/macros.html
or use tables
http://www.openbsd.org/faq/pf/tables.html
tables are recommended for a list that has more than 10 entries or so..
Kind Regards
--Siju
