Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    PFBlocker Package Error on load.

    Scheduled Pinned Locked Moved
    2.1 Snapshot Feedback and Problems - RETIRED
    3
    4
    4.8k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J
      jits
      last edited by

      Hi Guys,

      Installed PFblocker package. URLs included, update set for every 12 hours, block on WAN.

      Aug 14 04:04:30 php: : The command '/sbin/pfctl -o basic -f /tmp/rules.debug' returned exit code '1', the output was '/tmp/rules.debug:25: cannot define table pfBlockerPrimaryThreats: Cannot allocate memory /tmp/rules.debug:27: cannot define table pfBlockerlevel1: Cannot allocate memory pfctl: Syntax error in config file: pf rules not loaded'

      Aug 14 04:05:14 php: : New alert found: There were error(s) loading the rules: /tmp/rules.debug:25: cannot define table pfBlockerPrimaryThreats: Cannot allocate memory /tmp/rules.debug:27: cannot define table pfBlockerlevel1: Cannot allocate memory pfctl: Syntax error in config file: pf rules not loaded - The line in question reads [25]: table <pfblockerprimarythreats>persist file "/var/db/aliastables/pfBlockerPrimaryThreats.txt"

      Aug 14 04:05:14 php: : There were error(s) loading the rules: /tmp/rules.debug:25: cannot define table pfBlockerPrimaryThreats: Cannot allocate memory /tmp/rules.debug:27: cannot define table pfBlockerlevel1: Cannot allocate memory pfctl: Syntax error in config file: pf rules not loaded - The line in question reads [25]: table <pfblockerprimarythreats>persist file "/var/db/aliastables/pfBlockerPrimaryThreats.txt"

      Log Entries Before this?

      Aug 14 03:53:18 php: /pkg_edit.php: Starting pfBlocker sync process.
      Aug 14 03:53:18 check_reload_status: Syncing firewall
      Aug 14 03:53:19 php: /pkg_edit.php: [pfblocker] pfblocker_xmlrpc_sync.php is starting.
      Aug 14 03:53:19 check_reload_status: Reloading filter
      Aug 14 03:55:58 php: /pkg_edit.php: Starting pfBlocker sync process.
      Aug 14 03:55:58 check_reload_status: Syncing firewall
      Aug 14 03:55:58 check_reload_status: Reloading filter
      Aug 14 03:55:58 php: /pkg_edit.php: [pfblocker] pfblocker_xmlrpc_sync.php is starting.
      Aug 14 03:56:44 php: /pkg_edit.php: Starting pfBlocker sync process.
      Aug 14 03:56:44 check_reload_status: Syncing firewall
      Aug 14 03:56:44 php: /pkg_edit.php: [pfblocker] pfblocker_xmlrpc_sync.php is starting.
      Aug 14 03:56:44 check_reload_status: Reloading filter
      Aug 14 03:58:04 php: /pkg_edit.php: Starting pfBlocker sync process.
      Aug 14 03:58:04 check_reload_status: Syncing firewall
      Aug 14 03:58:05 php: /pkg_edit.php: [pfblocker] pfblocker_xmlrpc_sync.php is starting.
      Aug 14 03:58:05 check_reload_status: Reloading filter
      Aug 14 03:59:10 php: /pkg_edit.php: Starting pfBlocker sync process.
      Aug 14 03:59:10 check_reload_status: Syncing firewall
      Aug 14 03:59:10 php: /pkg_edit.php: [pfblocker] pfblocker_xmlrpc_sync.php is starting.
      Aug 14 03:59:10 check_reload_status: Reloading filter
      Aug 14 03:59:41 php: /pkg_edit.php: Starting pfBlocker sync process.
      Aug 14 03:59:41 check_reload_status: Syncing firewall
      Aug 14 04:03:40 check_reload_status: Syncing firewall
      Aug 14 04:03:41 php: /pkg_edit.php: [pfblocker] pfblocker_xmlrpc_sync.php is starting.
      Aug 14 04:03:41 check_reload_status: Reloading filter</pfblockerprimarythreats></pfblockerprimarythreats>

      1 Reply Last reply Reply Quote 0
      • jimpJ
        jimp Rebel Alliance Developer Netgate
        last edited by

        You need to increase the max # of table entries under System > Advanced on the Firewall/NAT tab.
        It's trying to load more IPs into tables than it's able to allocate memory for.

        Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 0
        • J
          jits
          last edited by

          Oh right, Thanks very much!

          Man, logic will definitely make a thinker out of you!

          thanks again for that, Jimp.

          Jits

          1 Reply Last reply Reply Quote 0
          • K
            klarback
            last edited by

            I have a simular issue with my pfSense installation. I get the following errors in the system log:

            Aug 21 20:53:40	php: : The command '/sbin/pfctl -o basic -f /tmp/rules.debug' returned exit code '1', the output was '/tmp/rules.debug:17: cannot define table [CLEANED]: Cannot allocate memory /tmp/rules.debug:19: cannot define table pfBlockerLevel1: Cannot allocate memory /tmp/rules.debug:21: cannot define table [CLEANED]: Cannot allocate memory pfctl: Syntax error in config file: pf rules not loaded'
Aug 21 20:53:59	php: : New alert found: There were error(s) loading the rules: /tmp/rules.debug:17: cannot define table [CLEANED]: Cannot allocate memory /tmp/rules.debug:19: cannot define table pfBlockerLevel1: Cannot allocate memory /tmp/rules.debug:21: cannot define table [CLEANED]: Cannot allocate memory pfctl: Syntax error in config file: pf rules not loaded The line in question reads [17]: table <[CLEANED]> persist file "/var/db/aliastables/[CLEANED].txt"
Aug 21 20:53:59	php: : There were error(s) loading the rules: /tmp/rules.debug:17: cannot define table [CLEANED]: Cannot allocate memory /tmp/rules.debug:19: cannot define table pfBlockerLevel1: Cannot allocate memory /tmp/rules.debug:21: cannot define table [CLEANED]: Cannot allocate memory pfctl: Syntax error in config file: pf rules not loaded - The line in question reads [17]: table <[CLEANED]> persist file "/var/db/aliastables/[CLEANED].txt"

            I have replaced the names of the list with [CLEANED] :)

            When I look at the pfBlocker configuration it's not even activated and does not have any lists configured. I have had it activated with lists configured before but the package has been reinstalled since then. Even if I uninstall the package I get the log errors. It looks to me like there are some config left from the old installation. How can I clean up all old config?

            Thanks

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.