Error/warning message from rc.d/npf

To: current-users%netbsd.org@localhost
Subject: Error/warning message from rc.d/npf
From: Paul Goyette <paul%whooppee.com@localhost>
Date: Thu, 23 Mar 2017 13:55:01 +0800 (PHT)

I've got the following in my /etc/npf.conf (taken from the blacklistdman page):


	# Transparent firewall example for blacklistd

	$ext_if = { wm0, tun0 }

	set bpf.jit on;
	alg "icmp"

	group "external" on $ext_if {
		ruleset "blacklistd"
		pass final all
	}

	group default {
		pass final all
	}

During system startup I'm getting the following message (as logged in/var/run/rc.log):


	[running /etc/rc.d/npf]
	Enabling NPF.
	/etc/npf.conf:8:27: variable 'ext_if' type 'identifier' has 2 elements near '$ext_if'

See PR kern/51818 for more details - it seems that the second "element"in $ext_if is ignored, and the ruleset is applied only to the first"element".






+------------------+--------------------------+------------------------+
| Paul Goyette     | PGP Key fingerprint:     | E-mail addresses:      |
| (Retired)        | FA29 0E3B 35AF E8AE 6651 | paul at whooppee.com   |
| Kernel Developer | 0786 F758 55DE 53BA 7731 | pgoyette at netbsd.org |
+------------------+--------------------------+------------------------+

Follow-Ups:
- Re: Error/warning message from rc.d/npf
  - From: Tom Ivar Helbekkmo

Prev by Date: daily CVS update output
Next by Date: Re: Error/warning message from rc.d/npf
Previous by Thread: Can't create dhcpcd/if_options.d in current.
Next by Thread: Re: Error/warning message from rc.d/npf
Indexes:

Home | Main Index | Thread Index | Old Index