From owner-freebsd-pf@FreeBSD.ORG  Fri Aug 18 16:17:39 2006
Return-Path: <owner-freebsd-pf@FreeBSD.ORG>
X-Original-To: freebsd-pf@freebsd.org
Delivered-To: freebsd-pf@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 8650116A4E1
	for <freebsd-pf@freebsd.org>; Fri, 18 Aug 2006 16:17:39 +0000 (UTC)
	(envelope-from zope@2012.vi)
Received: from efit.xs4all.nl (efit.xs4all.nl [82.92.236.145])
	by mx1.FreeBSD.org (Postfix) with ESMTP id B3FCC43D4C
	for <freebsd-pf@freebsd.org>; Fri, 18 Aug 2006 16:17:36 +0000 (GMT)
	(envelope-from zope@2012.vi)
Received: from [10.0.0.172] (251puntacana97.codetel.net.do [200.88.97.251]) by
	efit.xs4all.nl (Weasel v1.73) for <freebsd-pf@freebsd.org>; 
	18 Aug 2006 18:13:49 
Message-ID: <44E5E816.1030304@2012.vi>
Date: Fri, 18 Aug 2006 12:17:26 -0400
From: beno <zope@2012.vi>
User-Agent: Thunderbird 1.5.0.4 (Windows/20060516)
MIME-Version: 1.0
To: freebsd-pf@freebsd.org
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Subject: Syntax Error
X-BeenThere: freebsd-pf@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Technical discussion and general questions about packet filter
	\(pf\)" <freebsd-pf.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-pf>
List-Post: <mailto:freebsd-pf@freebsd.org>
List-Help: <mailto:freebsd-pf-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 18 Aug 2006 16:17:39 -0000

Hi;
For some reason the parser likes this syntax in certain places but not 
in others:

1. # SETTING THE STAGE
2. # macros
3. ext_if="vr0"
4. int_if="lo0"
5. http_ports="80 8080 7080"
6. ssh_ports="22"
7. ftp_ports="21 8021 7021"
8. smtp_ports="25"
9. pop3_ports="110"
10. https_ports="443"
11. imap_ssl_ports="993 143"
12. squid_ports="3128"
13. mysql_ports="3306"
14. email_ports="{" $smtp_ports $pop3_ports "}"
15. all_http_ports="{" $http_ports $https_ports "}"
16. tcp_ports= "{" $ssh_ports $ftp_ports $all_http_ports $imap_ssl_ports "}"
17. int_ports="{" $squid_ports $mysql_ports "}"
18. tcp_services="ssh, ftp, http"
20. web_server="202.71.106.119"
21. NoRouteIPs = "127.0.0.0/8 192.168.0.0/16 172.16.0.0/12 10.0.0.0/8"
22. shinjiru_ip_addresses="202.71.102.114 202.71.100.126 202.71.106.30 
202.71.106.118 202.71.106.188 203.142.1.8"
23. directv_ip_addresses="69.19.0.0/17"
24. shadday_ip_addresses="70.19.0.0/17"
25. ssh_ip_addresses="{" $shinjiru_ip_addresses $directv_ip_addresses 
$shadday_ip_addresses "}"

server167# pfctl -f /etc/pf.conf && sleep 60 && pfctl -f /etc/pf.conf_BAK
/etc/pf.conf:16: syntax error
/etc/pf.conf:24: syntax error
pfctl: Syntax error in config file: pf rules not loaded

It appears to not like my using "$all_http_ports" in line 16 and one of 
the three in the last line (which the machine chooses to call 24 but it 
is actually referring to 25). Why?
beno