Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    There were error(s) loading the rules: /tmp/rules.debug:150: syntax error - The line in question reads [150]: rdr on $WAN proto ipv6 from any to any ->

    Scheduled Pinned Locked Moved NAT
    1 Posts 1 Posters 212 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J
      jpmchia
      last edited by

      Am receiving the following error when the rules are reloaded, but can't work out where or what is responsible for generating the rule so that I can resolve it:

      There were error(s) loading the rules: /tmp/rules.debug:148: syntax error - The line in question reads [148]: rdr on $WANG proto ipv6 from any to any ->
@ 2023-06-07 14:29:29
There were error(s) loading the rules: /tmp/rules.debug:150: syntax error - The line in question reads [150]: rdr on $WANG proto ipv6 from any to any ->
@ 2023-06-07 14:29:40
There were error(s) loading the rules: /tmp/rules.debug:150: syntax error - The line in question reads [150]: rdr on $WANG proto ipv6 from any to any ->
@ 2023-06-07 14:29:46

      The row in question sits under the TFTP proxy section of /tmp/rules.debug and above the NAT inbound rules. Have tried modifying the TFTP proxy configuration but this remains and there is nothing in the NAT configuration that resembles the rule.

      # Outbound NAT rules (automatic)
[ ... ]
# Subnets to NAT
table <tonatsubnets> { 127.0.0.0/8 ::1/128 192.168.110.0/24 192.168.0.0/22 192.168.4.0/24 10.10.10.0/24 172.16.150.4/31 }
[ ... ]
# TFTP proxy
rdr-anchor "tftp-proxy/*"
rdr pass on ix0.500 proto udp from any to any port tftp -> 127.0.0.1 port 6969
rdr pass on ix0 proto udp from any to any port tftp -> 127.0.0.1 port 6969
rdr pass on ix0.400 proto udp from any to any port tftp -> 127.0.0.1 port 6969
**rdr on $WANG proto ipv6 from any to any ->**
# NAT Inbound Redirects
rdr on ix0.400 inet proto { tcp udp } from any to any port 123 -> 192.168.4.1
# Reflection redirect
[ ... ]
# UPnPd rdr anchor
rdr-anchor "miniupnpd"
anchor "openvpn/*"
anchor "ipsec/*"
# block IPv4 link-local. Per RFC 3927, link local "MUST NOT" be forwarded by a routing device,
# and clients "MUST NOT" send such packets to a router. FreeBSD won't route 169.254./16, but
# route-to can override that, causing problems such as in redmine #2073
block in log quick from 169.254.0.0/16 to any ridentifier 1000000101 label "Block IPv4 link-local"
block in log quick from any to 169.254.0.0/16 ridentifier 1000000102 label "Block IPv4 link-local"
#---------------------------------------------------------------------------
# default deny rules
      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.