- Paperback: 340 pages
- Publisher: Jacek Artymiak; 2 edition (November 1, 2003)
- Language: English
- ISBN-10: 8391665119
- ISBN-13: 978-8391665114
- Product Dimensions: 6 x 0.8 x 9 inches
- Shipping Weight: 1 pounds (View shipping rates and policies)
- Average Customer Review: 10 customer reviews
- Amazon Best Sellers Rank: #3,335,583 in Books (See Top 100 in Books)
Enter your mobile number or email address below and we'll send you a link to download the free Kindle App. Then you can start reading Kindle books on your smartphone, tablet, or computer - no Kindle device required.
To get the free app, enter your mobile phone number.
Building Firewalls with Openbsd and Pf, 2nd Edition 2nd Edition
Use the Amazon App to scan ISBNs and compare prices.
See the Best Books of 2018 So Far
Looking for something great to read? Browse our editors' picks for the best books of the year so far in fiction, nonfiction, mysteries, children's books, and much more.
From the Publisher
The first and only print publication devoted solely to the subject of the pf packet filter used in OpenBSD, FreeBSD, and NetBSD operating systems.
About the Author
Jacek Artymiak has been working with Unix systems since 1991. He has written books on other Unix-class systems and is a frequent contributor to the O'Reilly Networks sites, where he often writes about OpenBSD and PF.
Top customer reviews
There was a problem filtering reviews right now. Please try again later.
The portions directly about building firewalls and about configuring pf are great, but the book suffers from its attempt to be all things to all people. Chapter 2 is a truncated version of something from "Building Internet Firewalls" by Zwicky, et. al. Chapter 3 and most of Chapter 4 could have been left to a more general administration guide. The rest is dynamite. There is in-depth coverage of NAT, CBQ and bandwidth shaping, and authpf. If you are building a firewall of any complexity, this book is a must have.
I like the direct approach taken by author Jacek Artymiak. With few exceptions he ensures the reader is provided enough descriptions and working examples to implement Pf in an operational environment. Too often authors discuss important topics but fail to follow through on implementation. I was able to follow the author's instructions and build a variety of Pf firewalls. I found sections describing packet normalization, packet redirection and forwarding (via 'dup-to'), and prioritization to be most helpful.
The author's blog indicates he is working on a new firewall book that expands beyond OpenBSD and Pf. I hope he is working with an established publisher to ensure his next book has a wider audience.
If you're mainly interested in creating firewalls using Pf, this book is for you. If you want to know more about OpenBSD, I recommend Michael Lucas' 'Absolute OpenBSD' or 'Secure Architectures with OpenBSD' by Brandon Palmer and Jose Nazario.
Overall a great book for a PF beginner with some unix experience
subnet to the internet through my desktop computer. This book
had the exact pf NAT rule I needed, plus an example of the next
NAT rule I will need when I have more than one subnet connected
to my desktop and I want the subnets to be able to communicate
with each other. If you need to use NAT rules with pf, this is
your best source of information.