The Book of PF: A No-Nonsense Guide to the OpenBSD Firewall

Peter N. M. Hansteen

  • 出版商: No Starch Press
  • 出版日期: 2008-01-11
  • 定價: $1,050
  • 售價: 5.0$525
  • 語言: 英文
  • 頁數: 184
  • 裝訂: Paperback
  • ISBN: 1593271654
  • ISBN-13: 9781593271657
  • 相關分類: BSD
  • 立即出貨(限量) (庫存=2)

買這商品的人也買了...

相關主題

商品描述

Description 

OpenBSD's stateful packet filter, PF, offers an amazing feature set and support across the major BSD platforms. Like most firewall software though, unlocking PF's full potential takes a good teacher. Peter N.M. Hansteen's PF website and conference tutorials have helped thousands of users build the networks they need using PF. The Book of PF is the product of Hansteen's knowledge and experience, teaching good practices as well as bare facts and software options. Throughout the book, Hansteen emphasizes the importance of staying in control by having a written network specification, using macros to make rule sets more readable, and performing rigid testing when loading in new rules.

Today's system administrators face increasing challenges in the quest for network quality, and The Book of PF can help by demystifying the tools of modern *BSD network defense. But, perhaps more importantly, because we know you like to tinker, The Book of PF tackles a broad range of topics that will stimulate your mind and pad your resume, including how to:

  • Create rule sets for all kinds of network traffic, whether it is crossing a simple home LAN, hiding behind NAT, traversing DMZs, or spanning bridges
  • Use PF to create a wireless access point, and lock it down tight with authpf and special access restrictions
  • Maximize availability by using redirection rules for load balancing and CARP for failover
  • Use tables for proactive defense against would-be attackers and spammers
  • Set up queues and traffic shaping with ALTQ, so your network stays responsive
  • Master your logs with monitoring and visualization, because you can never be too paranoid

The Book of PF is written for BSD enthusiasts and network admins at any level of expertise. With more and more services placing high demands on bandwidth and increasing hostility coming from the Internet at-large, you can never be too skilled with PF.

 


商品描述(中文翻譯)

描述

OpenBSD的有狀態封包過濾器PF提供了令人驚嘆的功能集,並在主要的BSD平台上提供支援。然而,像大多數防火牆軟體一樣,要充分發揮PF的潛力需要一位優秀的教師。Peter N.M. Hansteen的PF網站和會議教程幫助了成千上萬的使用者使用PF建立他們所需的網路。《PF之書》是Hansteen知識和經驗的結晶,教授良好的實踐方法以及基本事實和軟體選項。在整本書中,Hansteen強調了擁有書面網路規範、使用巨集使規則集更易讀以及在載入新規則時進行嚴格測試的重要性。

今天的系統管理員在追求網路品質的過程中面臨著越來越多的挑戰,《PF之書》可以通過揭示現代*BSD網路防禦工具的神秘面紗來提供幫助。但更重要的是,因為我們知道...