![]() ![]() ![]() The scrub options are pretty cool as it cleans dirty packets prior to passing them to their destination. ![]() These are mostly just allowing the Apple services to work with services enabled in the Sharing system preference pane, etc. Load anchor "400.AdaptiveFirewall/" from "/Applications/Server.app/Contents/ServerRoot/private/etc/pf.anchors/400.AdaptiveFirewall" Scrub-anchor "300.NetworkLinkConditioner/*"ĭummynet-anchor "300.NetworkLinkConditioner/*" In here, we see some rules (without comments): Basically, the anchor file being loaded is /etc/pf.anchors/com.apple. An anchor is a collection of rules and tables. Here, you can see that pf is configured with a number of anchors. Load anchor "com.apple" from "/etc/pf.anchors/com.apple" To get started, let’s look at the /etc/pf.conf configuration file that comprises pf: There will be more on ALF coming in “July” but in the meantime, there’s something I hadn’t written much about in Lion and that’s the pf implementation. I’ve done plenty of writing on the Application Layer Firewall (ALF) and the IP FireWall (IPFW) in OS X over the years. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |