The Book of PF: A No-Nonsense Guide to the OpenBSD Firewall and over one million other books are available for Amazon Kindle. Learn more

The Book of PF: A No-Nonsense Guide to the OpenBSD Firewall 3rd Edition

7 customer reviews
ISBN-13: 978-1593275891
ISBN-10: 1593275897
Why is ISBN important?
ISBN
This bar-code number lets you verify that you're getting exactly the right version or edition of a book. The 13-digit and 10-digit formats both work.
Scan an ISBN with your phone
Use the Amazon App to scan ISBNs and compare prices.
Sell yours for a Gift Card
We'll buy it for $9.30
Learn More
Trade in now
Have one to sell? Sell on Amazon
Buy used
$22.25
Buy new
$32.14
Amazon Price New from Used from
Kindle
"Please retry"
Paperback, October 18, 2014
"Please retry"
$32.14
$20.68 $22.24
More Buying Choices
33 New from $20.68 10 Used from $22.24

There is a newer edition of this item:

Free Two-Day Shipping for College Students with Amazon Student Free%20Two-Day%20Shipping%20for%20College%20Students%20with%20Amazon%20Student


InterDesign Brand Store Awareness Textbooks
$32.14 FREE Shipping on orders over $35. In Stock. Ships from and sold by Amazon.com. Gift-wrap available.

Frequently Bought Together

The Book of PF: A No-Nonsense Guide to the OpenBSD Firewall + Absolute OpenBSD: Unix for the Practical Paranoid + SSH Mastery: OpenSSH, PuTTY, Tunnels and Keys
Price for all three: $93.28

Buy the selected items together

Editorial Reviews

About the Author

Peter N. M. Hansteen is a consultant, writer, and sysadmin based in Bergen, Norway. A longtime Freenix advocate, Hansteen is a frequent lecturer on OpenBSD and FreeBSD topics, an occasional contributor to BSD Magazine, and the author of an often-slashdotted blog (http://bsdly.blogspot.com/). Hansteen was a participant in the original RFC 1149 implementation team. The Book of PF is an expanded follow-up to his very popular online PF tutorial (http://home.nuug.no/~peter/pf/).

NO_CONTENT_IN_FEATURE


Shop the New Digital Design Bookstore
Check out the Digital Design Bookstore, a new hub for photographers, art directors, illustrators, web developers, and other creative individuals to find highly rated and highly relevant career resources. Shop books on web development and graphic design, or check out blog posts by authors and thought-leaders in the design industry. Shop now

Product Details

  • Paperback: 248 pages
  • Publisher: No Starch Press; 3 edition (October 18, 2014)
  • Language: English
  • ISBN-10: 1593275897
  • ISBN-13: 978-1593275891
  • Product Dimensions: 9.7 x 6.6 x 0.6 inches
  • Shipping Weight: 1 pounds (View shipping rates and policies)
  • Average Customer Review: 5.0 out of 5 stars  See all reviews (7 customer reviews)
  • Amazon Best Sellers Rank: #477,239 in Books (See Top 100 in Books)

Customer Reviews

5 star
100%
4 star
0%
3 star
0%
2 star
0%
1 star
0%
See all 7 customer reviews
Share your thoughts with other customers

Most Helpful Customer Reviews

4 of 4 people found the following review helpful By Michael W Lucas on November 19, 2014
Format: Kindle Edition
Third edition, huh? So how does this stack up?

Let’s get the obvious out of the way. All three editions have yellow covers, but the first edition had blue trim; the second edition, pumpkin; the third, a kind of fern green.

Once you open the cover, you find that the third edition works much like the earlier editions, starting with a simple packet filter setup and building upon it. Building upon success is perhaps the best education technique, and it fits the topic quite well.

Structurally, BoPF3 is very similar to the earlier editions. CARP and redundancy now gets its own chapter, which is a welcome addition.

The real meat of this book is in the examples, tutorials, and explanations. PF has changed since the second edition, notably with more flexible traffic management and some syntax changes. Not all BSDs have remained synchronized with OpenBSD’s PF, so he has the unenviable job of documenting the differences between OpenBSD, NetBSD, and FreeBSD. He’s done an excellent job of this by combining information where appropriate, but breaking out some topics by operating system. For example, if a topic needs a sysctl, he lists them for each operating system. When a topic requires more in-depth explanation, such as traffic prioritization, he breaks out OpenBSD’s new priority system into one section and FreeBSD/NetBSD’s older altq prioritization scheme in another. This makes it very easy to find what you’re looking for. This book teaches you how to use PF to filter packets just as well as a million dollar appliance, with more insight and control.

One impressive thing is that this book is very clear.
Read more ›
Comment Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback. If this review is inappropriate, please let us know.
Sorry, we failed to record your vote. Please try again
2 of 2 people found the following review helpful By Ameer on February 16, 2015
Format: Paperback Verified Purchase
If you find yourself suddenly managing an OpenBSD-based firewall (i.e. PF) , THIS IS the book that you want to have at your desk and in your backpack.
If you want to give OpenBSD's PF a try for your home lab or work network, I would definitely recommend this book to you.
For the past few years, I have been managing a good-size network protected by a couple CARP-ed OpenBSD servers and this book (and it's 2nd edition) have helped me a great deal. Peter Hansteen knows what he is talking about. I recommend watching this interview with him on BSD Now:
http://www.jupiterbroadcasting.com/56402/puffy-firewall-bsd-now-35/

Also, I highly recommend getting Michael W Lucas's book "Absolute OpenBSD" http://www.amazon.com/Absolute-OpenBSD-Unix-Practical-Paranoid/dp/1593274769/ref=sr_1_1?s=books&ie=UTF8&qid=1424148306&sr=1-1&keywords=absolute+openbsd

Peter Hansteen and Michael W Lucas are two fine sysadmins who also happen to be great writers.
Comment Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback. If this review is inappropriate, please let us know.
Sorry, we failed to record your vote. Please try again
1 of 1 people found the following review helpful By Joshua Brower on February 1, 2015
Format: Paperback
Though this is the 3rd edition, this is the first time I have picked up this book. As a proponent of the *BSDs, I appreciate have good quality material like this book available to overview and then get down into the mechanics of key subsystems, like PF.

I appreciated the clear, concise writing, as well as the multitude of real world examples.

One of the key chapters for me was Chapter 6: Turning the Tables for Proactive Defense. Peter goes in-depth into how PF elegantly handles issues like SSH bruteforcing, as well as how PF handles spam with stuttering, blacklisting and greylisting.

Highly recommended for someone that is interested in working with PF, or is already administrating PF, but looking for some extra help in certain areas.
Comment Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback. If this review is inappropriate, please let us know.
Sorry, we failed to record your vote. Please try again
Format: Paperback
This is a great book on OpenBSD PF. It is thoughtfully organized and we'll written. He tells readers up front it is not a cut and paste book which is accurate but he still provides enough sample material to do a good job at providing technical descriptions.
Comment Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback. If this review is inappropriate, please let us know.
Sorry, we failed to record your vote. Please try again

Set up an Amazon Giveaway

Amazon Giveaway allows you to run promotional giveaways in order to create buzz, reward your audience, and attract new followers and customers. Learn more
The Book of PF: A No-Nonsense Guide to the OpenBSD Firewall
This item: The Book of PF: A No-Nonsense Guide to the OpenBSD Firewall
Price: $32.14
Ships from and sold by Amazon.com

Want to discover more products? Check out these pages to see more: network security, networks, linux security