Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    PFBlocker Package Error on load.

    2.1 Snapshot Feedback and Problems - RETIRED
    3
    4
    4597
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J
      jits last edited by

      Hi Guys,

      Installed PFblocker package. URLs included, update set for every 12 hours, block on WAN.

      Aug 14 04:04:30 php: : The command '/sbin/pfctl -o basic -f /tmp/rules.debug' returned exit code '1', the output was '/tmp/rules.debug:25: cannot define table pfBlockerPrimaryThreats: Cannot allocate memory /tmp/rules.debug:27: cannot define table pfBlockerlevel1: Cannot allocate memory pfctl: Syntax error in config file: pf rules not loaded'

      Aug 14 04:05:14 php: : New alert found: There were error(s) loading the rules: /tmp/rules.debug:25: cannot define table pfBlockerPrimaryThreats: Cannot allocate memory /tmp/rules.debug:27: cannot define table pfBlockerlevel1: Cannot allocate memory pfctl: Syntax error in config file: pf rules not loaded - The line in question reads [25]: table <pfblockerprimarythreats>persist file "/var/db/aliastables/pfBlockerPrimaryThreats.txt"

      Aug 14 04:05:14 php: : There were error(s) loading the rules: /tmp/rules.debug:25: cannot define table pfBlockerPrimaryThreats: Cannot allocate memory /tmp/rules.debug:27: cannot define table pfBlockerlevel1: Cannot allocate memory pfctl: Syntax error in config file: pf rules not loaded - The line in question reads [25]: table <pfblockerprimarythreats>persist file "/var/db/aliastables/pfBlockerPrimaryThreats.txt"

      Log Entries Before this?

      Aug 14 03:53:18 php: /pkg_edit.php: Starting pfBlocker sync process.
      Aug 14 03:53:18 check_reload_status: Syncing firewall
      Aug 14 03:53:19 php: /pkg_edit.php: [pfblocker] pfblocker_xmlrpc_sync.php is starting.
      Aug 14 03:53:19 check_reload_status: Reloading filter
      Aug 14 03:55:58 php: /pkg_edit.php: Starting pfBlocker sync process.
      Aug 14 03:55:58 check_reload_status: Syncing firewall
      Aug 14 03:55:58 check_reload_status: Reloading filter
      Aug 14 03:55:58 php: /pkg_edit.php: [pfblocker] pfblocker_xmlrpc_sync.php is starting.
      Aug 14 03:56:44 php: /pkg_edit.php: Starting pfBlocker sync process.
      Aug 14 03:56:44 check_reload_status: Syncing firewall
      Aug 14 03:56:44 php: /pkg_edit.php: [pfblocker] pfblocker_xmlrpc_sync.php is starting.
      Aug 14 03:56:44 check_reload_status: Reloading filter
      Aug 14 03:58:04 php: /pkg_edit.php: Starting pfBlocker sync process.
      Aug 14 03:58:04 check_reload_status: Syncing firewall
      Aug 14 03:58:05 php: /pkg_edit.php: [pfblocker] pfblocker_xmlrpc_sync.php is starting.
      Aug 14 03:58:05 check_reload_status: Reloading filter
      Aug 14 03:59:10 php: /pkg_edit.php: Starting pfBlocker sync process.
      Aug 14 03:59:10 check_reload_status: Syncing firewall
      Aug 14 03:59:10 php: /pkg_edit.php: [pfblocker] pfblocker_xmlrpc_sync.php is starting.
      Aug 14 03:59:10 check_reload_status: Reloading filter
      Aug 14 03:59:41 php: /pkg_edit.php: Starting pfBlocker sync process.
      Aug 14 03:59:41 check_reload_status: Syncing firewall
      Aug 14 04:03:40 check_reload_status: Syncing firewall
      Aug 14 04:03:41 php: /pkg_edit.php: [pfblocker] pfblocker_xmlrpc_sync.php is starting.
      Aug 14 04:03:41 check_reload_status: Reloading filter</pfblockerprimarythreats></pfblockerprimarythreats>

      1 Reply Last reply Reply Quote 0
      • jimp
        jimp Rebel Alliance Developer Netgate last edited by

        You need to increase the max # of table entries under System > Advanced on the Firewall/NAT tab.
        It's trying to load more IPs into tables than it's able to allocate memory for.

        Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 0
        • J
          jits last edited by

          Oh right, Thanks very much!

          Man, logic will definitely make a thinker out of you!

          thanks again for that, Jimp.

          Jits

          1 Reply Last reply Reply Quote 0
          • K
            klarback last edited by

            I have a simular issue with my pfSense installation. I get the following errors in the system log:

            Aug 21 20:53:40	php: : The command '/sbin/pfctl -o basic -f /tmp/rules.debug' returned exit code '1', the output was '/tmp/rules.debug:17: cannot define table [CLEANED]: Cannot allocate memory /tmp/rules.debug:19: cannot define table pfBlockerLevel1: Cannot allocate memory /tmp/rules.debug:21: cannot define table [CLEANED]: Cannot allocate memory pfctl: Syntax error in config file: pf rules not loaded'
Aug 21 20:53:59	php: : New alert found: There were error(s) loading the rules: /tmp/rules.debug:17: cannot define table [CLEANED]: Cannot allocate memory /tmp/rules.debug:19: cannot define table pfBlockerLevel1: Cannot allocate memory /tmp/rules.debug:21: cannot define table [CLEANED]: Cannot allocate memory pfctl: Syntax error in config file: pf rules not loaded The line in question reads [17]: table <[CLEANED]> persist file "/var/db/aliastables/[CLEANED].txt"
Aug 21 20:53:59	php: : There were error(s) loading the rules: /tmp/rules.debug:17: cannot define table [CLEANED]: Cannot allocate memory /tmp/rules.debug:19: cannot define table pfBlockerLevel1: Cannot allocate memory /tmp/rules.debug:21: cannot define table [CLEANED]: Cannot allocate memory pfctl: Syntax error in config file: pf rules not loaded - The line in question reads [17]: table <[CLEANED]> persist file "/var/db/aliastables/[CLEANED].txt"

            I have replaced the names of the list with [CLEANED] :)

            When I look at the pfBlocker configuration it's not even activated and does not have any lists configured. I have had it activated with lists configured before but the package has been reinstalled since then. Even if I uninstall the package I get the log errors. It looks to me like there are some config left from the old installation. How can I clean up all old config?

            Thanks

            1 Reply Last reply Reply Quote 0
            • First post
              Last post

            Products

            • Platform Overview
            • TNSR
            • pfSense
            • Appliances

            Services

            • Training
            • Professional Services

            Support

            • Subscription Plans
            • Contact Support
            • Product Lifecycle
            • Documentation

            News

            • Media Coverage
            • Press
            • Events

            Resources

            • Blog
            • FAQ
            • Find a Partner
            • Resource Library
            • Security Information

            Company

            • About Us
            • Careers
            • Partners
            • Contact Us
            • Legal
            Our Mission

            We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

            Subscribe to our Newsletter

            Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

            © 2021 Rubicon Communications, LLC | Privacy Policy