OpenBSD Packet Filter (PF)
5.3-RELEASE 以后成为系统的一部分:
相关配置:
rc.conf :
pf_enable="NO" # Set to YES to enable packet filter (pf)
pf_rules="/etc/pf.conf" # rules definition file for pf
pf_program="/sbin/pfctl" # where the pfctl program lives
pf_flags="" # additional flags for pfctl
pflog_enable="NO" # Set to YES to enable packet filter logging
pflog_logfile="/var/log/pflog" # where pflogd should store the logfile
pflog_program="/sbin/pflogd" # where the pflogd program lives
pflog_flags="" # additional flags for pflogd
pfsync_enable="NO" # Expose pf state to other hosts for syncing
pfsync_syncdev="" # Interface for pfsync to work through
pfsync_ifconfig="" # Additional options to ifconfig(8) for pfsync
gateway_enable="YES"
内核:
device pf
device pflog
device pfsync
device bpf
/etc/rc.d/:
pf
pflog
pfsync
/sbin/pfctl
/etc/pf.conf
/etc/pf.os
/dev/pf
/dev/bpfn
/sbin/pflogd
/var/log/pflog
/var/run/pflogd.pid
/usr/sbin/authpf /usr/share/man/man8/authpf.8.gz /usr/src/usr.sbin/authpf
/etc/authpf/users/$USER/authpf.rules /etc/authpf/authpf.rules
/etc/authpf/authpf.message
/etc/authpf/banned
/etc/authpf/authpf.allow
/etc/authpf/authpf.conf
阅读(1553) | 评论(0) | 转发(0) |