Sorry, I didn't realize the config file came through so ugly looking... Let's try that again... however, even using the generated file from mkfilters results in the same error. Here's the config file from mkfilters:
block in log quick from any to any with ipopts block in log quick proto tcp from any to any with short pass out on bge0 all head 150 block out from 127.0.0.0/8 to any group 150 block out from any to 127.0.0.0/8 group 150 pass in on bge0 all head 100 block in from 127.0.0.0/8 to any group 100 bash-2.05# ipf -f /etc/opt/ipf/ipf.conf protocol unknown error at "from", line 2 I even downloaded ip_fil 4.1.28 and compiled it, but it gives the same error on this system. Thanks. Stephen -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Stephen Jackson Sent: Friday, November 02, 2007 2:09 PM To: [email protected] Subject: Need help with protocol unknown error I have compiled and installed the pfil and ipf packages on a couple of Solaris 9 systems. One of them is working fine, but the other is throwing the following error when I try to crank it up: protocol unknown error at "from", line 4 Here's the ipf config file: pass out quick on lo0 pass in quick on lo0 block in log on bge0 all keep state pass in quick on bge0 proto icmp from any to any pass out quick on bge0 proto icmp from any to any pass in quick on bge0 proto tcp from any to any port = 22 keep state pass in quick on bge0 proto tcp from any to any port = 21 flags S keep state pass out quick on bge0 all keep state ipf -V output: ipf: IP Filter: v4.1.16 (600) Kernel: IP Filter: v4.1.16 Running: yes Log Flags: 0 = none set Default: pass all, Logging: available Active list: 0 Feature mask: 0x187 Any help would be great. Thanks. Stephen Jackson
