Error after new install

docjay

Hi all - I'm getting this error in my log file after an HD install of 1.2.3-RC3 & here it is…hopefully someone can make sense of it.

php: : There were error(s) loading the rules: no IP address found for /tmp/rules.debug:107: file "/etc/bogons" contains bad data pfctl: Syntax error in config file: pf rules not loaded - The line in question reads [107]: table <bogons>persist file "/etc/bogons"</bogons>

I am assuming that it relates to PFsense not being online.

I have attached a network diagram explaining our situation.

I have a unique situation in that I have PFsense sitting behind a firewall on our corporate LAN.  I have a WLAN card as my WAN (open wifi) and a wired nic as my LAN adapter.  Both have IP addresses, the wan is DHCP and the LAN is static.  I cannot get out to the internet because when I go to packages it tells me it can't talk to pfsense.com.  The open wifi network is the type that when you connect with a laptop/PC all looks good & then when you try to type in a URL to go somewhere, it will take you to a page with an image that says 'click here for internet access'.  Will we be able to get around this and get PFsense online or am I beating a dead horse?

We have it setup like this so that we can use PFsense to surf the web and still use the corp LAN to access internal websites and servers.

jimp

Looks like your /etc/bogons file is corrupt or contains incorrect data.

Go to Diagnostics > Command, and type in: /etc/rc.update_bogons.sh now

That should update the bogons file. After that, if it doesn't work, Go to Diagnostics > Command, and type in: cat /etc/bogons

and then copy/paste the output here so we can see what is actually getting put in that file.

I have a feeling that when pfSense is trying to access these sites – the package xml and the bogons, etc, it's getting your "sign-in" page and can't get its actual data.

Ideally you'll need some way to allow the pfSense box to talk freely without hitting that login page.

docjay

Jimp - thank you  :)

looks like the "/etc/rc.update_bogons.sh now" command solved my error problem.  Unfortunately it looks like there won't be a way to get around the 'sign-in' page to get pfsense online.  Its a shame actually because all that has to be done is to 'click' on an image.

jimp

Does this sign in timeout at all? You could setup a cron job (see the cron package) which would ping a site every couple minutes to keep the session active.

Not perfect, but it might work.

pfSense pings its gateway a lot to check the line quality, but I suspect that device is looking for traffic trying to go out past it to the internet, not just a ping directly to it.