You can test your configuration file for syntax errors without attempting to load it into the kernel by using: pfctl -nf /etc/pf.conf Use code with caution. Copied to clipboard
cd /usr/src/sys/modules/pf make clean && make && make install kldunload pf kldload pf pf configuration incompatible with pf program version
| PF Version | Notable change | |------------|----------------| | 4.5 → 4.6 | pass in quick vs pass in priority changes | | 4.7 → 4.8 | set limit states, frags split | | 5.5 → 5.6 | match rules introduced | | 6.0 → 6.1 | set reassemble yes/no replaces scrub | | 6.5 → 6.6 | set syncookies syntax changed | | 6.8 → 6.9 | af-to removed from rdr rules | | 7.0 → 7.1 | set state-policy if-bound removed | You can test your configuration file for syntax