On Mon, Aug 08, 2005 at 01:14:52PM -0600, Bob Beck wrote: > * Ray Percival <[EMAIL PROTECTED]> [2005-08-08 12:17]: > > I have the following pf.conf and authpf.rules. When I try to load the rules into the anchor I get > > > > authpfbob# pfctl -a authpf -f /etc/authpf/authpf.rules > > /etc/authpf/authpf.rules:3: macro 'user_ip' not defined > > /etc/authpf/authpf.rules:3: syntax error > > pfctl: Syntax error in config file: pf rules not loaded > > > > I wouldn't expect loading that ruleset with pfctl to work that way. > authpf adds the macro definition when it loads it. you can't expect to > just run pfctl on that file and have it load correctly, unless you > add a user_ip definition at the top of it (which should *NOT* be there > when using authpf.) That was it. I got a bit confused between having a state problem that got sorted and reading trhe authpf and the more general anchor doc. Thanks for the pointer. > > Your pf.conf you attached looks, well, strange, you shouldn't > be loading anchor authpf from anywhere. authpf does that. > > Try the examples as in the man page and verify you can > make those work as expected first. > > -Bob >
-- BOFH excuse #340: Well fix that in the next (upgrade, update, patch release, service pack). [demime 1.01d removed an attachment of type application/pgp-signature]
