[BSD-INDIA] port only applies to tcp/udp
M E
manpages at yahoo.com
Fri Nov 20 23:52:03 PST 2009
In the below pf configuration and below is the error I got .
pf
prv_if="fxp0"
dmz_if="rl1"
ext_if="rl0"
rfcpriv_nets="{ 127.0.0.0/8, 10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16 }"
webserver="192.168.1.32"
#mailserver="192.168.2.125"
set skip on { lo0, $dmz_if }
nat on $ext_if from 192.168.1.0/24 to any -> ($ext_if)
nat on $ext_if from $dmz_if:network to any -> ($ext_if)
rdr on $ext_if from !$rfcpriv_nets to any port { 80, 443 } -> \
192.168.2.125 port { 80, 443 }
#rdr on $ext_if from !$rfcpriv_nets to any port { 25, 110 } -> \
#192.168.2.125 port { 25, 110 }
block in quick on $ext_if from $rfcpriv_nets to any
block out quick on $ext_if from any to $rfcpriv_nets
block in quick on $prv_if from $dmz_if:network to any
block all
pass in on $prv_if from
$prv_if:network to any
pass out on $prv_if from $prv_if to any
pass in on $ext_if from any port { 25, 80, 110, 443 } to any
pass out on $ext_if from any to any flags S/SA modulate state
error
====
pf.conf.dmz1:15: syntax error
pf.conf.dmz1:30: port only applies to tcp/udp
pf.conf.dmz1:30: skipping rule due to errors
pf.conf.dmz1:30: port only applies to tcp/udp
pf.conf.dmz1:30: skipping rule due to errors
pf.conf.dmz1:30: port only applies to tcp/udp
pf.conf.dmz1:30: skipping rule due to errors
pf.conf.dmz1:30: port only applies to tcp/udp
pf.conf.dmz1:30: skipping rule due to errors
pf.conf.dmz1:30: rule expands to no valid combination
pfctl: Syntax error in config file: pf rules not loaded
can anyone help me in fixing the error.
Thanks
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.bsd-india.org/pipermail/bsd-india/attachments/20091120/b64f1e3d/attachment.html>
More information about the bsd-india
mailing list