Chapter 24 Firewalls

Table of Contents
24.1 Introduction
24.2 Firewall Concepts
24.3 Firewall Packages
24.4 The OpenBSD Packet Filter (PF) and ALTQ
24.5 The IPFILTER (IPF) Firewall
24.6 IPFW
Contributed by Joseph J. Barbish. Converted to SGML and updated by Brad Davis.

24.1 Introduction

Firewalls make it possible to filter incoming and outgoing traffic that flows through your system. A firewall can use one or more sets of “rules” to inspect the network packets as they come in or go out of your network connections and either allows the traffic through or blocks it. The rules of a firewall can inspect one or more characteristics of the packets, including but not limited to the protocol type, the source or destination host address, and the source or destination port.

Firewalls can greatly enhance the security of a host or a network. They can be used to do one or more of the following things:

After reading this chapter, you will know:

Before reading this chapter, you should:

This, and other documents, can be downloaded from ftp://ftp.FreeBSD.org/pub/FreeBSD/doc/.

For questions about FreeBSD, read the documentation before contacting <questions@FreeBSD.org>.
For questions about this documentation, e-mail <doc@FreeBSD.org>.

Hosting by: Hurra Communications Ltd.
Generated: 2007-01-26 17:58:42