Help Needed with Errors

Wasca · May 29, 2012, 1:13 AM

Hi Guys

I'm seeing the following errors in the system log and was wondering if someone can point me in the right direction to correct them

May 28 20:45:01        php: : There were error(s) loading the rules: /tmp/rules.debug:73: syntax error /tmp/rules.debug:74: syntax error /tmp/rules.debug:77: syntax error /tmp/rules.debug:78: syntax error pfctl: Syntax error in config file: pf rules not loaded - The line in question reads [73]: no nat on ath0_wlan0 proto tcp from (ath0_wlan0) to /

May 28 20:45:01 	php: : New alert found: There were error(s) loading the rules: /tmp/rules.debug:73: syntax error /tmp/rules.debug:74: syntax error /tmp/rules.debug:77: syntax error /tmp/rules.debug:78: syntax error pfctl: Syntax error in config file: pf rules not loaded The line in question reads [73]: no nat on ath0_wlan0 proto tcp from (ath0_wlan0) to /

May 28 20:45:01 	php: : The command '/sbin/pfctl -o basic -f /tmp/rules.debug' returned exit code '1', the output was '/tmp/rules.debug:73: syntax error /tmp/rules.debug:74: syntax error /tmp/rules.debug:77: syntax error /tmp/rules.debug:78: syntax error pfctl: Syntax error in config file: pf rules not loaded'

The system I'm working with has 4 interfaces (including a wifi interface) bridged together into another interface called LOCALNET

LOCALNET is running a DHCP server on the 192.168.16.0 subnet (Client range is 16.90 <–> 16.100).
LOCALNET has an IP address of 192.168.16.1

I'm not sure what I need to check to get these errors corrected, if you need any more info let me know.

Wasca

cmb · May 29, 2012, 1:16 AM

What version are you running?

Wasca · May 29, 2012, 2:52 AM

I'm running version….

2.0.1-RELEASE (i386)
built on Sun Dec 25 17:37:00 PST 2011
FreeBSD 8.1-RELEASE-p7

cmb · May 29, 2012, 3:21 AM

I think what you have there is from having a port forward with "any" as a destination in certain circumstances that's been fixed since but it's hard to say with the info provided. What port forwards and outbound NAT do you have defined?

Wasca · May 29, 2012, 5:47 AM

Ahh ok.

I've attached a screen shot of the NAT port forward page and the Outbound NAT. This system is using Dansguardian, I didn't set that up so I'm not even 100% sure this is correct.

Could you have a look at the screen shot and let me know if you think this is the culprit.

jimp · Jun 5, 2012, 2:18 PM

Does your LOCALNET interface actually have an IP address?