From owner-freebsd-pf@FreeBSD.ORG Wed Mar 16 01:23:04 2005 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4811916A4CE for ; Wed, 16 Mar 2005 01:23:04 +0000 (GMT) Received: from rproxy.gmail.com (rproxy.gmail.com [64.233.170.201]) by mx1.FreeBSD.org (Postfix) with ESMTP id 992DF43D2F for ; Wed, 16 Mar 2005 01:23:03 +0000 (GMT) (envelope-from iceblaze@gmail.com) Received: by rproxy.gmail.com with SMTP id i8so1664rne for ; Tue, 15 Mar 2005 17:23:02 -0800 (PST) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:reply-to:to:subject:mime-version:content-type:content-transfer-encoding; b=lXihsJZzz32y2y10xjpmQF3mdey9w939dDkyRrdB1TBeUdpyLqh8yZjY2I6jxt+FpzG1l4V5q9E3+hsd4nzn6217xVL+iwGgANVxMNrKHIEcRFEAgRu7dVzE78Ht417v7kgYfg+oszw9bFcogs3lgCaPpaUu/Hi587PNydYewwI= Received: by 10.11.94.45 with SMTP id r45mr270271cwb; Tue, 15 Mar 2005 17:23:02 -0800 (PST) Received: by 10.11.94.16 with HTTP; Tue, 15 Mar 2005 17:23:02 -0800 (PST) Message-ID: <162584805031517236040bd7f@mail.gmail.com> Date: Tue, 15 Mar 2005 17:23:02 -0800 From: iceblaze To: freebsd-pf@freebsd.org Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Subject: PF + FTP issues: syntax errors X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: iceblaze List-Id: Technical discussion and general questions about packet filter (pf) List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 Mar 2005 01:23:04 -0000 Hello all, I am currently setting up a firewall and having a couple of issues with syntax. I've been following the openbsd.org's manual specifically setting up ftp behind firewal and nat, and here is what is posted: ftp_server = "10.0.3.21" rdr on $ext_if proto tcp from any to any port 21 -> $ftp_server \ port 21 rdr on $ext_if proto tcp from any to any port 49152:65535 -> \ $ftp_server port 49152:65535 # in on $ext_if pass in quick on $ext_if proto tcp from any to $ftp_server \ port 21 keep state pass in quick on $ext_if proto tcp from any to $ftp_server \ port > 49151 keep state # out on $int_if pass out quick on $int_if proto tcp from any to $ftp_server \ port 21 keep state pass out quick on $int_if proto tcp from any to $ftp_server \ port > 49151 keep state for some reason i continue to get syntax errors with this setup, anybody have any ideas? i have tried taking the white space out after the \, tried removing the > and \ completely, etc. thanks -- Open source is only free if your time is worth nothing.