Re: NPF syntax

To: darcy%NetBSD.org@localhost
Subject: Re: NPF syntax
From: Gerard Lally <lists+netbsd.users%netmail.ie@localhost>
Date: Mon, 16 Mar 2015 18:26:58 GMT

At date and time Mon, 16 Mar 2015 09:52:07 -0400, D'Arcy J.M. Cain wrote:

> I have decided to give up on pf after banging my head against the wall
> (and the OBSD mailing list) and try npf but I can't figure out the
> syntax.  I followed the example at http://www.netbsd.org/~rmind/npf/
> but I keep getting errors when I validate.  I reduced npf.conf to the
> following two lines:
> 
> table <friends> type tree file "/VEX/general/pf/friends.list"
> table <enemies> type tree file "/VEX/general/pf/enemies.list"
> 
> This gives me this error:
> 
> # npfctl validate
> npfctl: table '0' is already defined
> 
> If I remove one line I get this:
> 
> # npfctl validate
> table <0> type tree
> 
> If I put the full file and comment out the table lines I get this:
> 
> # npfctl validate
> /etc/npf.conf:11:3: syntax error near 'alg'
> 
> I am using the example config almost verbatim except for the table
> names and file paths.
> 
> What am I missing here?

I had to move the tables to /etc ; I think the reason was that the /usr
filesystem was not mounted early enough at boot. Perhaps something like
that is your problem as well? Is VEX a NFS mount?

-- 
Gerard Lally

Follow-Ups:
- Re: NPF syntax
  - From: D'Arcy J.M. Cain

References:
- NPF syntax
  - From: D'Arcy J.M. Cain

Prev by Date: Re: /proc inodes filling up in 1 week
Next by Date: Re: /proc inodes filling up in 1 week
Previous by Thread: Re: NPF syntax
Next by Thread: Re: NPF syntax
Indexes:

Home | Main Index | Thread Index | Old Index