(Packet Filtering (hereinafter referred to as PF) is a software system for TCP/IP traffic filtering and network address translation on the OpenBSD system. PF can also provide TCP/IP traffic shaping and control, and provide bandwidth control and packet priority set control. PF has been used as the default installation configuration of the kernel since openbsd3.0. Previous versions of the openbsd distribution used a different firewall/NAT package, which is no longer supported. PF was first developed by Daniel Hartmeier, and is now developed and protected by Daniel and other members of the openbsd team. This document provides a brief introduction to the PF system running on openbsd. This article can be used as a supplement to the man pages, not as a replacement for them. This document covers the top features of PF. For a complete and in-depth understanding of what PF can do, see the pf(4) man page. This FAQ document is for users who use openbsd3.5. Because pf is constantly growing and developing, there are software changes and enhancements between version 3.5 and the current version. The reader is advised to consult the man page of the running system.
pf Chinese manual.pdf)
收藏
