Open main menu
Home
Random
Recent changes
Special pages
Community portal
Preferences
About Wikipedia
Disclaimers
Incubator escapee wiki
Search
User menu
Talk
Dark mode
Contributions
Create account
Log in
Editing
PF (firewall)
(section)
Warning:
You are not logged in. Your IP address will be publicly visible if you make any edits. If you
log in
or
create an account
, your edits will be attributed to your username, along with other benefits.
Anti-spam check. Do
not
fill this in!
== Features == The filtering syntax is similar to IPFilter, with some modifications to make it clearer. [[Network address translation]] (NAT) and [[quality of service]] (QoS) have been integrated into PF. Features such as [[pfsync]] and [[Common Address Redundancy Protocol|CARP]] for [[failover]] and redundancy, authpf for session authentication, and ftp-proxy to ease firewalling the difficult [[File Transfer Protocol|FTP]] protocol, have also extended PF. Also PF supports SMP ([[Symmetric multiprocessing]]) & STO ([[Stateful Tracking Options]]). One of the many innovative features is PF's logging. PF's logging is configurable per rule within the pf.conf and logs are provided from PF by a pseudo-network interface called ''pflog'', which is the only way to lift data from kernel-level mode for user-level programs. Logs may be monitored using standard utilities such as [[tcpdump]], which in [[OpenBSD]] has been extended especially for the purpose, or saved to disk in the [[tcpdump]]/[[pcap]] binary format using the ''pflogd'' daemon.
Edit summary
(Briefly describe your changes)
By publishing changes, you agree to the
Terms of Use
, and you irrevocably agree to release your contribution under the
CC BY-SA 4.0 License
and the
GFDL
. You agree that a hyperlink or URL is sufficient attribution under the Creative Commons license.
Cancel
Editing help
(opens in new window)