Date: Tue, 17 Jan 2006 01:20:02 -0600 From: Bill Marquette <bill.marquette@gmail.com> To: "derth@wbs.co.za" <derth@wbs.co.za> Cc: "freebsd-pf@freebsd.org" <freebsd-pf@freebsd.org> Subject: Re: PF + PPPoE Message-ID: <55e8a96c0601162320u43488aefqd6bb35c2fe689205@mail.gmail.com> In-Reply-To: <16246.196.2.148.70.1137479488.squirrel@webmail.wbs.co.za> References: <16246.196.2.148.70.1137479488.squirrel@webmail.wbs.co.za>
next in thread | previous in thread | raw e-mail | index | archive | help
On 1/17/06, derth@wbs.co.za <derth@wbs.co.za> wrote:
>
>
> >Without the ruleset it's going to be kind of difficult to help. This
> >does work, which means there's something wrong with your rules.
> >
> >--Bill
>
> My apologies, here is my pf.conf file:
>
> #define Macros
> ext_if =3D "tun0"
> int_if =3D "fxp0"
> tcp_services =3D "22"
> priv_net =3D "{ 127.0.0.0/8, 192.168.0.0/24, 172.16.0.0/12, 10.0.0.0/8 }"
> secure_mail =3D"196.*.*.*"
> tech_net =3D"196.*.*.*/24"
> admin_mweb =3D"196.*.*.*"
> allow_web =3D"{ 196.*.*.*, 196.*.*.*, 196.*.*.*, 196.*.*.*, tun0 }"
Interesting. After replacing the 196.* addresses with fake addresses,
pfctl parses this just fine on my FreeBSD 6 box. I did wrap tun0 in
the allow_web macro with paren's but pfctl -nf was happy with the
ruleset before and after and I've got no tun0. What's the error
you're getting?
--Bill
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?55e8a96c0601162320u43488aefqd6bb35c2fe689205>