From owner-freebsd-pf@FreeBSD.ORG Wed Mar 16 01:37:27 2005 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6F7CD16A4CE for ; Wed, 16 Mar 2005 01:37:27 +0000 (GMT) Received: from tensor.xs4all.nl (tensor.xs4all.nl [194.109.160.97]) by mx1.FreeBSD.org (Postfix) with ESMTP id D060843D31 for ; Wed, 16 Mar 2005 01:37:26 +0000 (GMT) (envelope-from dimitry@andric.com) Received: from kilgore.dim (kilgore.dim [192.168.0.3]) (using TLSv1 with cipher AES256-SHA (256/256 bits)) (No client certificate requested) by tensor.xs4all.nl (Postfix) with ESMTP id 4496222852; Wed, 16 Mar 2005 02:37:24 +0100 (CET) Date: Wed, 16 Mar 2005 02:37:10 +0100 From: Dimitry Andric X-Priority: 3 (Normal) Message-ID: <871652254.20050316023710@andric.com> To: iceblaze In-Reply-To: <162584805031517236040bd7f@mail.gmail.com> References: <162584805031517236040bd7f@mail.gmail.com> MIME-Version: 1.0 Content-Type: multipart/signed; protocol="application/pgp-signature"; micalg="pgp-sha1"; boundary="----------D1D2E426B7B87C" cc: freebsd-pf@freebsd.org Subject: Re: PF + FTP issues: syntax errors X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Technical discussion and general questions about packet filter (pf) List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 Mar 2005 01:37:27 -0000 ------------D1D2E426B7B87C Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit On 2005-03-16 at 02:23:02 iceblaze wrote: > ftp_server = "10.0.3.21" > rdr on $ext_if proto tcp from any to any port 21 -> $ftp_server \ > port 21 > rdr on $ext_if proto tcp from any to any port 49152:65535 -> \ > $ftp_server port 49152:65535 > # in on $ext_if > pass in quick on $ext_if proto tcp from any to $ftp_server \ > port 21 keep state > pass in quick on $ext_if proto tcp from any to $ftp_server \ > port > 49151 keep state > # out on $int_if > pass out quick on $int_if proto tcp from any to $ftp_server \ > port 21 keep state > pass out quick on $int_if proto tcp from any to $ftp_server \ > port > 49151 keep state > for some reason i continue to get syntax errors with this setup, > anybody have any ideas? i have tried taking the white space out after > the \, tried removing the > and \ completely, etc. Probably because you didn't specify the ext_if and int_if macro's? If I add these at the top of your example, it parses without problems here. (5.4-PRERELEASE as of Sun Mar 13 01:23:46 CET 2005). Another problem could be DOS line endings, but you didn't post your config file verbatim, so we can't verify that. :) ------------D1D2E426B7B87C Content-Type: application/pgp-signature -----BEGIN PGP MESSAGE----- Version: GnuPG v1.4.0 (MingW32) iD8DBQFCN43GsF6jCi4glqMRAjE3AKD/X71bP2HKBJuUQ30Sc9+ELdxOuACbBelT Mkc7cBagpsvTHkab/uZ1F00= =LJPl -----END PGP MESSAGE----- ------------D1D2E426B7B87C--