From owner-freebsd-pf@FreeBSD.ORG Mon Aug 21 17:05:04 2006 Return-Path: X-Original-To: freebsd-pf@freebsd.org Delivered-To: freebsd-pf@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D8BD216A4E2 for ; Mon, 21 Aug 2006 17:05:04 +0000 (UTC) (envelope-from zope@2012.vi) Received: from efit.xs4all.nl (efit.xs4all.nl [82.92.236.145]) by mx1.FreeBSD.org (Postfix) with ESMTP id 12BA843D70 for ; Mon, 21 Aug 2006 17:03:36 +0000 (GMT) (envelope-from zope@2012.vi) Received: from [10.0.0.172] (198puntacana97.codetel.net.do [200.88.97.198]) by efit.xs4all.nl (Weasel v1.73); 21 Aug 2006 18:59:00 Message-ID: <44E9E73B.8050408@2012.vi> Date: Mon, 21 Aug 2006 13:02:51 -0400 From: beno User-Agent: Thunderbird 1.5.0.5 (Windows/20060719) MIME-Version: 1.0 To: Max Laier , freebsd-pf@freebsd.org References: <44E9C775.5060009@2012.vi> <20060821151505.GA18457@insomnia.benzedrine.cx> <44E9D57C.9010905@2012.vi> <200608211814.41748.max@love2party.net> In-Reply-To: <200608211814.41748.max@love2party.net> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: Subject: Re: Never Ask Questions On A Friday Afternoon X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 21 Aug 2006 17:05:04 -0000 Max Laier wrote: >> 22. directv_ip_addresses="69.19.0.0/17" >> 23. shadday_ip_addresses="" >> 24. ssh_ip_addresses="{" $shinjiru_ip_addresses $directv_ip_addresses >> $shadday_ip_addresses "}" >> >> Here's what I get when I try to load it: >> server167# pfctl -f /etc/pf.conf >> /etc/pf.conf:24: syntax error >> pfctl: Syntax error in config file: pf rules not loaded >> >> 16. tcp_ports= "{ 22 21 8021 7021 { 80 8080 7080 443 } 993 143 }" >> Oh. Sorry. And I do see it in the archives. I obviously missed it in the responses. My apologies. > Please stop bothering this list with > plain stupid questions that can be answered with reading the BNF in > pf.conf(5), a tad bit of Google, Y!, or wikipedia or simple human sense. > I have tried a lot. Missing answers on the list was my bad, I admit, but I have tried googling, etc. >> QUESTION #2 >> and it doesn't like the CIDR netmask in line 22. Someone suggested I >> research the archives concerning the latter "where this known problem >> was already discussed" but I found nothing. Would someone care to help >> me with these problems now? >> > > Daniel supplied the pointer to one (of several) threads on this matter > above. > You must be referring to this URL: http://marc.theaimsgroup.com/?t=114842643500002&r=1&w=2 Unfortunately, it doesn't load, so that's not of any use. Again, I'd like to know how to deal with CIDR blocks. I looked in the documentation to see if I could somehow use other notation, such as "netmask", but apparently I can't. Also, if anyone paid for this software, they should ask for a refund, because it's free ;) But I didn't pay for it, so I won't be asking for a refund. TIA, beno