Chapter 2. PF Configuration Basics
In this chapter, we will create a very simple setup with PF. We’ll begin with the simplest configuration possible: a single machine configured to communicate with a single network. That network could very well be the Internet.
Your two main tools for configuring PF are your favorite text editor and the
pfctl command-line administration tool. PF configurations, usually stored in /etc/pf.conf, are called rule sets, because each line in the configuration file is a rule that helps determine what the packet-filtering subsystem should do with the network traffic it sees. In ordinary, day-to-day administration, you will ...