ed wrote:
On Sat, 10 Dec 2005 16:43:50 -0500
Forrest Aldrich <[EMAIL PROTECTED]> wrote:
I had that before (with braces {}) and got a syntax error on these
lines as well, FYI.
ed wrote:
On Fri, 09 Dec 2005 16:14:25 -0500
Forrest Aldrich <[EMAIL PROTECTED]> wrote:
rdr on $ext_if proto tcp from !<geoip>, !<spammers>, !<abuse> any \
port { $tcp_services } tag INET_DMZ -> $server
rdr on $ext_if proto tcp from { !<geoip> , !<spammers>, !<abuse> }
to \ any port { $tcp_services } tag INET_DMZ -> $server
rdr on $ext_if proto tcp from !<abuse> any \
port 80 tag INET_DMZ -> $server
rdr on $ext_if proto tcp from !<abuse> any \
port 443 tag INET_DMZ -> $server
What does $ext_if/$tcp_services/$server expand to?
Chances are, one of those is missing a {}.
My variables are fine:
ext_if = "fxp0"
int_if = "em0"
dmz_if = "em1"
ext_ad = "24.xx.xx.xx/32"
int_net = "192.168.1.0/24"
dmz_net = "10.1.1.0/24"
server = "192.168.1.2/32"
tcp_services = "imap, imaps, smtp, smtps"
Since starting PF, I've tried several variances of pf.conf to get this
working - I've had a harder time with this than with ipfw2.
thanks.
