-
I'm having some issues with pfBlocker on this version. Is it just a matter of the package maintainers fixing it up for 2.0.2?
-
pfBlocker is working for me in 2.1-BETA0 as well as 2.0.1 - the same code, and I can't see any version-specific checks in the code. So it is a bit surprising that something happens with an in-between version like 2.0.2. What are the issues?
(if it's more than a quick issue and fix, then probably start a separate thread) -
pfBlocker is working for me in 2.1-BETA0 as well as 2.0.1 - the same code, and I can't see any version-specific checks in the code. So it is a bit surprising that something happens with an in-between version like 2.0.2. What are the issues?
(if it's more than a quick issue and fix, then probably start a separate thread)Seems like a memory error similar to what you'd see when you forget to increase the number of firewall table entries, even though I did set that to about 2,000,000. I also don't see any rules when I visit the alias URL.
EDIT: The exact error message is below. Firewall table entries limit currently set to 10 million.
There were error(s) loading the rules: /tmp/rules.debug:22: cannot define table pfBlockerlist1: Cannot allocate memory
pfctl: Syntax error in config file: pf rules not loaded The line in question reads [22]: table <pfblockerlist1>persist file "/var/db/aliastables/pfBlockerlist1.txt"I strongly suspect this commit to be the culprit.</pfblockerlist1>
-
Except the exact opposite would be true - that commit actually allowed the limits to be set, without that only the default values were being used.
Check pfctl -sm
-
Except the exact opposite would be true - that commit actually allowed the limits to be set, without that only the default values were being used.
Check pfctl -sm
Here's the output:
$ pfctl -sm
states hard limit 194000
src-nodes hard limit 194000
frags hard limit 5000
tables hard limit 3000
table-entries hard limit 200000This is with Advanced > Firewall/NAT set to this. Something's obviously up.
-
ok, found the problem. Had a couple other things come in overnight anyhow, will make a new set later today.
It's an easy fix if you want to do it manually…
diff --git a/etc/inc/filter.inc b/etc/inc/filter.inc index 87401cc..d30ed24 100644 --- a/etc/inc/filter.inc +++ b/etc/inc/filter.inc @@ -257,7 +257,7 @@ function filter_configure_sync($delete_states_if_needed = true) { $limitrules .= "set limit tables {$maxtables}\n"; /* User defined maximum table entries in Advanced menu. */ if ($config['system']['maximumtableentries'] <> "" && is_numeric($config['system']['maximumtableentries'])) - $rules .= "set limit table-entries {$config['system']['maximumtableentries']}\n"; + $limitrules .= "set limit table-entries {$config['system']['maximumtableentries']}\n"; if ($config['system']['optimization'] <> "") { $limitrules .= "set optimization {$config['system']['optimization']}\n"; -
ok, found the problem. Had a couple other things come in overnight anyhow, will make a new set later today.
No worries, thanks for the prompt response :)
-
Hi!
Can someone on 2.0.2 run this command: mpd5 -v
And post output here?Thanks a lot!
I'm getting a blank output.
-
Hi!
Sorry to bother you all, I totally forgot I asket SAME question in other forum…
Sorry again, 2.0.2 uses 5.6 version of MPD5 package... -
Tested the new build today, it's working perfectly. Looking forward to an official release!
-
NICE!!
-
Yes I meant to post about that new build last night. We had a couple issues come up (you can see the RELENG_2_0 commit log on github) that required some fixes, and I put in the limit fix for the table entries as well when I did that.
-
Thanks Jim for the unofficial release.
Btw my LCDProc won't run after upgrade from 2.0.1 to 2.0.2 but there is nothing from System Logs
-
hello,
where can i download the new 2.0.2 Image?
And can i upgrade from my new installed 2.0.1 ?
-
where can i download the new 2.0.2 Image?
And can i upgrade from my new installed 2.0.1 ?
See my link and explanation here: http://forum.pfsense.org/index.php/topic,52810.msg290463.html#msg290463
And yes you can upgrade from 2.0.1 or any older release.
-
:) ahh okay.. thanks..
-
Hi. Just a note about the new upgrade, the "WOL" seems missing from the drop down list of "Services". I noticed you updated the downloads you mentioned above today and tried it out just now. Everything else seems great just the one glitch so far. The widget on the dashboard works and shows my listed machines for "WOL" so I am guessing it is only a navigation, or webpage error. Nice job though so far. Great firewall. :)
FYI, tried default theme "pfsense_ng" and still no joy. was originally set at "the_wall" -
Nice catch, it was apparently accidentally removed in an earlier commit. I added it back.
-
-
Try here:
http://files.nyi.pfsense.org/jimp/foo/shiny/ehrmagerd/
