The Book of PF: A No-Nonsense Guide to the OpenBSD Firewall / Edition 2

Paperback (Print)
Used and New from Other Sellers
Used and New from Other Sellers
from $12.78
Usually ships in 1-2 business days
(Save 57%)
Other sellers (Paperback)
  • All (24) from $12.78   
  • New (11) from $19.78   
  • Used (13) from $12.78   

Overview

OpenBSD's stateful packet filter, PF, is the heart of the OpenBSD firewall and a necessity for any admin working in a BSD environment. With a little effort and this book, you'll gain the insight needed to unlock PF's full potential.

This second edition of The Book of PF has been completely updated and revised. Based on Peter N.M. Hansteen's popular PF website and conference tutorials, this no-nonsense guide covers NAT and redirection, wireless networking, spam fighting, failover provisioning, logging, and more. Throughout the book, Hansteen emphasizes the importance of staying in control with a written network specification, keeping rule sets readable using macros, and performing rigid testing when loading new rules.

The Book of PF tackles a broad range of topics that will stimulate your mind and pad your resume, including how to:

  • Create rule sets for all kinds of network traffic, whether it's crossing a simple LAN, hiding behind NAT, traversing DMZs, or spanning bridges or wider networks
  • Create wireless networks with access points, and lock them down with authpf and special access restrictions
  • Maximize flexibility and service availability via CARP, relayd, and redirection
  • Create adaptive firewalls to proactively defend against would-be attackers and spammers
  • Implement traffic shaping and queues with ALTQ (priq, cbq, or hfsc) to keep your network responsive
  • Master your logs with monitoring and visualization tools (including NetFlow)

The Book of PF is for BSD enthusiasts and network administrators at any skill level. With more and more services placing high demands on bandwidth and an increasingly hostile Internet environment, you can't afford to be without PF expertise.

Read More Show Less

Product Details

  • ISBN-13: 9781593272746
  • Publisher: No Starch Press San Francisco, CA
  • Publication date: 11/24/2010
  • Edition description: Second Edition
  • Edition number: 2
  • Pages: 216
  • Product dimensions: 6.90 (w) x 9.20 (h) x 0.60 (d)

Meet the Author

Peter N. M. Hansteen is a consultant, writer and sysadmin based in Bergen, Norway. A longtime Freenix advocate, Hansteen is a frequent lecturer on FreeBSD and OpenBSD topics, an occasional contributor to BSD Magazine and writes a frequently slashdotted blog at http://bsdly.blogspot.com. Hansteen was a participant in the original RFC 1149 implementation team. The Book of PF is an expanded follow up to his very popular online PF tutorial (http://home.nuug.no/~peter/pf/).

Read More Show Less

Table of Contents

PRAISE FOR THE FIRST EDITION OF THE BOOK OF PF;
Dedication;
Foreword;
Acknowledgments;
Introduction;
This Is Not a HOWTO;
What This Book Covers;
Chapter 1: Building the Network You Need;
1.1 Your Network: High Performance, Low Maintenance, and Secure;
1.2 Where the Packet Filter Fits In;
1.3 The Rise of PF;
1.4 If You Came from Elsewhere;
1.5 A Little Encouragement: A PF Haiku;
Chapter 2: PF Configuration Basics;
2.1 The First Step: Enabling PF;
2.2 A Simple PF Rule Set: A Single, Stand-Alone Machine;
2.3 Slightly Stricter: Using Lists and Macros for Readability;
2.4 Displaying Information About Your System;
2.5 Looking Ahead;
Chapter 3: Into the Real World;
3.1 A Simple Gateway;
3.2 That Sad Old FTP Thing;
3.3 Making Your Network Troubleshooting Friendly;
3.4 Tables Make Your Life Easier;
Chapter 4: Wireless Networks Made Easy;
4.1 A Little IEEE 802.11 Background;
4.2 Setting Up a Simple Wireless Network;
4.3 Guarding Your Wireless Network with authpf;
Chapter 5: Bigger or Trickier Networks;
5.1 A Web Server and Mail Server on the Inside—Routable Addresses;
5.2 A Web Server and Mail Server on the Inside—the NAT Version;
5.3 Filtering on Interface Groups;
5.4 The Power of Tags;
5.5 The Bridging Firewall;
5.6 Handling Nonroutable Addresses from Elsewhere;
Chapter 6: Turning the Tables for Proactive Defense;
6.1 Turning Away the Brutes;
6.2 Giving Spammers a Hard Time with spamd;
6.3 Spam-Fighting Tips;
Chapter 7: Queues, Shaping, and Redundancy;
7.1 Directing Traffic with ALTQ;
7.2 Setting Up Queues;
7.3 Redundancy and Failover: CARP and pfsync;
Chapter 8: Logging, Monitoring, and Statistics;
8.1 PF Logs: The Basics;
8.2 Additional Tools for PF Logs and Statistics;
8.3 Log Data as the Basis for Effective Debugging;
Chapter 9: Getting Your Setup Just Right;
9.1 Things You Can Tweak and What You Probably Should Leave Alone;
9.2 Cleaning Up Your Traffic;
9.3 Testing Your Setup;
9.4 Debugging Your Rule Set;
9.5 Know Your Network and Stay in Control;
Resources;
General Networking and BSD Resources on the Internet;
Sample Configurations and Related Musings;
PF on Other BSD Systems;
BSD and Networking Books;
Wireless Networking Resources;
spamd and Greylisting-Related Resources;
Book-Related Web Resources;
Buy OpenBSD CDs and Donate!;
A Note on Hardware Support;
Getting the Right Hardware;
Issues Facing Hardware Support Developers;
How to Help the Hardware Support Efforts;
Colophon;
Updates;

Read More Show Less

Customer Reviews

Average Rating 5
( 1 )
Rating Distribution

5 Star

(1)

4 Star

(0)

3 Star

(0)

2 Star

(0)

1 Star

(0)

Your Rating:

Your Name: Create a Pen Name or

Barnes & Noble.com Review Rules

Our reader reviews allow you to share your comments on titles you liked, or didn't, with others. By submitting an online review, you are representing to Barnes & Noble.com that all information contained in your review is original and accurate in all respects, and that the submission of such content by you and the posting of such content by Barnes & Noble.com does not and will not violate the rights of any third party. Please follow the rules below to help ensure that your review can be posted.

Reviews by Our Customers Under the Age of 13

We highly value and respect everyone's opinion concerning the titles we offer. However, we cannot allow persons under the age of 13 to have accounts at BN.com or to post customer reviews. Please see our Terms of Use for more details.

What to exclude from your review:

Please do not write about reviews, commentary, or information posted on the product page. If you see any errors in the information on the product page, please send us an email.

Reviews should not contain any of the following:

  • - HTML tags, profanity, obscenities, vulgarities, or comments that defame anyone
  • - Time-sensitive information such as tour dates, signings, lectures, etc.
  • - Single-word reviews. Other people will read your review to discover why you liked or didn't like the title. Be descriptive.
  • - Comments focusing on the author or that may ruin the ending for others
  • - Phone numbers, addresses, URLs
  • - Pricing and availability information or alternative ordering information
  • - Advertisements or commercial solicitation

Reminder:

  • - By submitting a review, you grant to Barnes & Noble.com and its sublicensees the royalty-free, perpetual, irrevocable right and license to use the review in accordance with the Barnes & Noble.com Terms of Use.
  • - Barnes & Noble.com reserves the right not to post any review -- particularly those that do not follow the terms and conditions of these Rules. Barnes & Noble.com also reserves the right to remove any review at any time without notice.
  • - See Terms of Use for other conditions and disclaimers.
Search for Products You'd Like to Recommend

Recommend other products that relate to your review. Just search for them below and share!

Create a Pen Name

Your Pen Name is your unique identity on BN.com. It will appear on the reviews you write and other website activities. Your Pen Name cannot be edited, changed or deleted once submitted.

 
Your Pen Name can be any combination of alphanumeric characters (plus - and _), and must be at least two characters long.

Continue Anonymously

    If you find inappropriate content, please report it to Barnes & Noble
    Why is this product inappropriate?
    Comments (optional)