[pfSense Support] Block rule creates syntax error
I all of a sudden am getting syntax errors in the logs which I don't recall seeing before with respect to a few generic block rules I have on an opt interface. Action: Reject Interface: OPT2 Protocol: Any Source: Any Destination: LAN Subnet I use this to block anything destined to the LAN interface? Is this not the right way to do this? Thanks! jlc - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] Block rule creates syntax error
On Thu, Oct 8, 2009 at 6:58 PM, Joseph L. Casale jcas...@activenetwerx.com wrote: I all of a sudden am getting syntax errors in the logs which I don't recall seeing before with respect to a few generic block rules I have on an opt interface. Action: Reject Interface: OPT2 Protocol: Any Source: Any Destination: LAN Subnet I use this to block anything destined to the LAN interface? Is this not the right way to do this? Please switch to raw logs and show us the entry text and syntax error from the alert. Sanitize before-hand if you want. Scott - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
RE: [pfSense Support] Block rule creates syntax error
Please switch to raw logs and show us the entry text and syntax error from the alert. Sanitize before-hand if you want. I am not sure if this is what you want, but: php: : There were error(s) loading the rules: /tmp/rules.debug:256: syntax error pfctl: Syntax error in config file: pf rules not loaded - The line in question reads [256]: block return in quick on $OPT2 proto tcp from any to /32 flags S/SA label USER_RULE: Vendor Restrictions Raw is enabled, but this what I see in the System log, not sure there was anything in the Firewall Log relevant. Thanks! jlc - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] Block rule creates syntax error
On Thu, Oct 8, 2009 at 7:09 PM, Joseph L. Casale jcas...@activenetwerx.com wrote: Please switch to raw logs and show us the entry text and syntax error from the alert. Sanitize before-hand if you want. I am not sure if this is what you want, but: php: : There were error(s) loading the rules: /tmp/rules.debug:256: syntax error pfctl: Syntax error in config file: pf rules not loaded - The line in question reads [256]: block return in quick on $OPT2 proto tcp from any to /32 flags S/SA label USER_RULE: Vendor Restrictions That's what happens when you have a rule with an interface that is deleted and you don't remove the rule, though that should never be the case for LAN. Email me a backup of your config. - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
