Error(s) loading the rules: /tmp/rules.debug:18: cannot define table bogonsv6
-
I keep seeing these errors in the notification.
I've googled a bit and have already performed the following- System-Advanced-Firewall&NAT-Firewall Maximum Table Entries=1000000
- Updated the bogon rules: /etc/rc.update_bogons.sh
There were error(s) loading the rules: /tmp/rules.debug:18: cannot define table bogonsv6: too many elements. - The line in question reads [18]: table <bogonsv6> persist file "/etc/bogonsv6"
@ 2020-01-29 09:19:11Anyone have any ideas?
-
@yaminb said in Error(s) loading the rules: /tmp/rules.debug:18: cannot define table bogonsv6:
Anyone have any ideas?
Yes !
Your question is recurrent.
So is the answer ^^ -
Can I ask for the recurrent answer
My googling has only resulted in the two things I have already tried.
-
When you execute this command :
wc /etc/bogonsv6it says
116056 116065 1876941 /etc/bogonsv6This means it loaded, is 17 Mbyts in size and has 116056 lines ( == IP addresses and networks).
This should be on the default (== empty) which means 4 million entries.
You've set it 4 times smaller ..... (1 million).
So your system complains.Why did you took it from default - and made it smaller ?
Btw : 4 steps :
edit : for your defense ^^ you could have inherited and old "Firewall Maximum Table Entries" value that wasn't changed during an upgrade.
Tip : when upgrading pfSense, checkout this forum during a couple of days to see if there are any returns from users. Issues like this are spotted right away, and and "soluted". -
I've tried it.
I've tried setting it to various values. 400000, 1000000, 400000.
I've tried Status > Filter Reload
I've tried cold rebooting.I don't have the pfBlocker.
I do have squidguard, but I'm trying to uninstall that as in another thread, but that is failing (https://forum.netgate.com/topic/150076/cannot-uninstall-package-squidguard/3) -
What does this show?
grep table-entries /tmp/rules.debugAnd what does this show?
pfctl -sm -
@jimp said in Error(s) loading the rules: /tmp/rules.debug:18: cannot define table bogonsv6:
grep table-entries /tmp/rules.debug
2.4.5-RC][root@pfSense.localdomain]/root: grep table-entries /tmp/rules.debug set limit table-entries 1000000[2.4.5-RC][root@pfSense.localdomain]/root: pfctl -sm states hard limit 202000 src-nodes hard limit 202000 frags hard limit 5000 table-entries hard limit 1000000 [2.4.5-RC][root@pfSense.localdomain]/root: -
That should be more than enough table entries then. But given what's happening in your other thread, I suspect there is a more general issue with 2.4.5-RC on your device that may be contributing to the problem.
-
Just to be sure : free disk space and memory is ok, right ?
-
Hello everyone, Just an update info as of today Feb.2022.
i bring up this topic because it has to do with the same error :
There were error(s) loading the rules: /tmp/rules.debug:48: cannot define table pfB_SAmerica_v6: Cannot allocate memory - The line in question reads [48]: table <pfB_SAmerica_v6> persist file "/var/db/aliastables/pfB_SAmerica_v6.txt"
@ 2022-02-23 08:18:23I'm using pfSense CE 2.5.2 with overpower hardware.
The default value of max table entries was 400000. Increase that to 800000 and seems the error is ok now.Maybe default value has to be changed in later versions.
-
@bambos said in Error(s) loading the rules: /tmp/rules.debug:18: cannot define table bogonsv6:
pfB_SAmerica
Since you are running pfBlocker, my notes for pfBlocker setup from a few years back, based on what I had read here, are:
"in System/Advanced/Firewall & NAT, double the default Firewall Maximum Table Entries (minimum 2 million)"
Note there is a bug where "On this system the default size is: " lists whatever number is currently set. I think it's supposed to be dependent on the installed RAM.
-
@steveits Oh Really ?? thanks a lot. I have upgrade the Ram to 8GB so i can go 2 million. Thanks a lot.