On Mon, 16 Mar 2015 18:26:58 GMT Gerard Lally <lists+netbsd.us...@netmail.ie> wrote: > At date and time Mon, 16 Mar 2015 09:52:07 -0400, D'Arcy J.M. Cain > wrote: > > # npfctl validate > > /etc/npf.conf:11:3: syntax error near 'alg' > > > > I am using the example config almost verbatim except for the table > > names and file paths. > > > > What am I missing here? > > I had to move the tables to /etc ; I think the reason was that > the /usr filesystem was not mounted early enough at boot. Perhaps > something like that is your problem as well? Is VEX a NFS mount?
I had a similar issue with pf on one of my servers but not this one. In any case, it isn't a boot issue. I haven't made it live yet. I am just running validate on the generated npf.conf. By the way, when I had the issue with pf it locked me out of the server. I would hope that npf has a better failure mode and simply doesn't enable the packet filter on error. It was extremely annoying that I had to go to the colo to see why my server was down. -- D'Arcy J.M. Cain <da...@netbsd.org> http://www.NetBSD.org/ IM:da...@vex.net
