Attachment 61464 Details for Bug 92113 – pf.diff

[patch] pf.diff

pf.diff (text/plain), 3.35 KB, created by Daniel Gerzo on 2006-01-21 21:50:02 UTC

(hide)

Description:

Filename:

MIME Type:

Creator: Daniel Gerzo

Created: 2006-01-21 21:50:02 UTC

Size: 3.35 KB

patch

obsolete

>--- /usr/home/danger/doc/en_US.ISO8859-1/books/handbook/firewalls/chapter.sgml.orig	Thu Jan  5 20:03:37 2006
>+++ /usr/home/danger/doc/en_US.ISO8859-1/books/handbook/firewalls/chapter.sgml	Sat Jan 21 21:14:58 2006
>@@ -1,7 +1,7 @@
> 
> 
> <chapter id="firewalls">
>@@ -256,16 +256,6 @@
>     <para>More info can be found at the PF for &os; web site: <ulink
> 	url="http://pf4freebsd.love2party.net/"></ulink>.</para>
> 
>-    <para>The OpenBSD PF user's guide is here: <ulink
>-	url="http://www.openbsd.org/faq/pf/"></ulink>.</para>
>-
>-    <warning>
>-      <para>PF in &os; 5.X is at the level of OpenBSD version 3.5.  The
>-	port from the &os; Ports Collection is at the level of OpenBSD
>-	version 3.4.  Keep that in mind when browsing the user's
>-	guide.</para>
>-    </warning>
>-
>     <sect2>
>       <title>Enabling PF</title>
> 
>@@ -283,6 +273,21 @@
> 	  was defined during the build, it also requires <literal>options
> 	    INET6</literal>.</para>
>       </note>
>+
>+      <para>Once the kernel module is loaded or the kernel is statically
>+	built with PF support, it is possible to enable or disable
>+	<application>pf</application> with <command>pfctl</command>
>+	command.</para>
>+
>+      <para>This example demonstrates how to enable the
>+	<application>pf</application>:</para>
>+
>+      <screen>&prompt.root; <userinput>pfctl -e</userinput></screen>
>+
>+      <para>The <command>pfctl</command> command provides a way to work
>+	with the <application>pf</application> firewall. It is a good
>+	idea to check the &man.pfctl.8; manual page to find out more
>+	information about using it.</para>
>     </sect2>
> 
>     <sect2>
>@@ -413,6 +418,37 @@
> 	<acronym>SMP</acronym> support for <acronym>ALTQ</acronym>.
> 	This option is required on <acronym>SMP</acronym>
> 	systems.</para>
>+    </sect2>
>+
>+    <sect2>
>+      <title>Creating Filtering Rules</title>
>+
>+      <para>The Packet Filter reads it's configuration rules from the
>+	&man.pf.conf.5; file and it modifies, drops or passes packets
>+	according to the rules or definitions specified there.  The &os;
>+	installation comes with a default
>+	<filename>/etc/pf.conf</filename> which contains useful examples
>+	and explanations.</para>
>+
>+      <para>Although &os; has it's own <filename>/etc/pf.conf</filename>
>+	the syntax is the same as one used in OpenBSD.  A great
>+	resource for configuring the <application>pf</application>
>+	firewall has been written by OpenBSD team and is available at
>+	<ulink url="http://www.openbsd.org/faq/pf/"></ulink>.</para>
>+
>+      <warning>
>+	<para>The <application>pf</application> firewall in &os; 5.X is
>+	  at the level of OpenBSD version 3.5 and in &os; 6.X is at the
>+	  level of OpenBSD version 3.7.  The port from the &os; Ports
>+	  Collection is at the level of OpenBSD version 3.4.  Please,
>+	  keep that in mind when browsing the
>+	  <application>pf</application> user's guide.</para>
>+      </warning>
>+
>+      <para>The &a.pf; is a good place to ask questions about
>+	configuring and running the <application>pf</application>
>+	firewall.  Do not forget to check the mailing list archives
>+	before asking questions.</para>
>     </sect2>
>   </sect1>

Actions: View | Diff

Attachments on bug 92113: 61464