O'Reilly logo

Network Administration with FreeBSD 7 by Babak Farrokhi

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Chapter 12. Network Configuration—Firewalls

According to FreeBSD's CVS commits history, FreeBSD has had built-in firewall capability since 1994. Obviously, the built-in firewall has improved a lot to meet today's needs. There are two main firewall technologies available in FreeBSD 7—IPFW and PF, each of which offers almost similar functionalities, but with different rule-set syntax.

IPFW is a FreeBSD firewall utility which has been in the source tree since 1994. It offers basic firewall capabilities such as stateless and stateful packet inspection, as well as DUMMYNET pipes, ALTQ for traffic shaping, and DIVERT sockets.

PF is a new firewall utility ported from the OpenBSD project, back in 2003. PF is a full-featured firewall utility with optional ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required