by Peter N.M. Hansteen
November 2010, 216 pp.
OpenBSD's stateful packet filter, PF, is the heart of the OpenBSD firewall and a necessity for any admin working in a BSD environment. With a little effort and this book, you'll gain the insight needed to unlock PF’s full potential.
This second edition of The Book of PF has been completely updated and revised. Based on Peter N.M. Hansteen's popular PF website and conference tutorials, this no-nonsense guide covers NAT and redirection, wireless networking, spam fighting, failover provisioning, logging, and more. Throughout the book, Hansteen emphasizes the importance of staying in control with a written network specification, keeping rule sets readable using macros, and performing rigid testing when loading new rules.
The Book of PF tackles a broad range of topics that will stimulate your mind and pad your resume, including how to:
The Book of PF is for BSD enthusiasts and network administrators at any skill level. With more and more services placing high demands on bandwidth and an increasingly hostile Internet environment, you can't afford to be without PF expertise.
About the Author
Peter N.M. Hansteen is a consultant, writer, and sysadmin based in Bergen, Norway. A longtime Freenix advocate, Hansteen is a frequent lecturer on OpenBSD and FreeBSD topics, an occasional contributor to BSD Magazine, and one of the original members of the RFC 1149 implementation team. He writes a frequently slashdotted blog (http://bsdly.blogspot.com/) and is the author of the highly regarded PF tutorial (http://home.nuug.no/~peter/pf/).
Table of Contents
Foreword by Bob Beck
Chapter 1: Building the Network You Need
Appendix A: Resources
The Book of PF, 2nd Edition "is a must-have text for anyone deploying and maintaining PF firewalls—even if only on your personal computer."