This afternoon pfctl started spitting out this message every time we
reload the rule set. So far as I can tell nothing substantial changed
at this point. Perhaps a new table was created or an IP added to an
existing table. (the ruleset is built from a database and there have
been quite a few changes this afternoon and by the time I noticed the
error all the old versions had been overwritten -- I keep 20 old
versions :( )
The rule set loads OK and appears to work fine.
From some limited googling it appears that the issue is related to
anchors but I can't figure out how.
Our rule set has this structure
<lots of table defs>
anchor *ftpsesame
<some hand crafted rules>
anchor table_rules
<all the rules that use the tables>
anchor other_rules
<other rules that don't involve tables>
The last two anchors are completely redundant and I could remove them.
I did a grep on the rule set and came up with 156 tables (not 170).
Can someone shed some light on what is going on?
Russell.
