Pfsyncd
Encyclopedia
pfsync is a network interface that helps a number of computers running OpenBSD's
pf
(packet filter) keep their state tables the same. pfsync can send messages indicating changes, or listen for such changes. pfsync can be configured using ifconfig
. pfsync can be used in conjunction with CARP
to make sure a backup firewall has the same information as the main firewall.
OpenBSD
OpenBSD is a Unix-like computer operating system descended from Berkeley Software Distribution , a Unix derivative developed at the University of California, Berkeley. It was forked from NetBSD by project leader Theo de Raadt in late 1995...
pf
PF (firewall)
PF is a BSD licensed stateful packet filter, a central piece of software for firewalling. It is comparable to iptables, ipfw and ipfilter...
(packet filter) keep their state tables the same. pfsync can send messages indicating changes, or listen for such changes. pfsync can be configured using ifconfig
Ifconfig
ifconfig is a system administration utility in Unix-like operating systems to configure, control, and query TCP/IP network interface parameters from a command line interface or in system configuration scripts...
. pfsync can be used in conjunction with CARP
Common Address Redundancy Protocol
The Common Address Redundancy Protocol or CARP is a protocol which allows multiple hosts on the same local network to share a set of IP addresses. Its primary purpose is to provide failover redundancy, especially when used with firewalls and routers. In some configurations CARP can also provide...
to make sure a backup firewall has the same information as the main firewall.
See also
- PfsyncPfsyncPfsync is a computer protocol used to synchronize firewall states between machines running Packet Filter for High Availability. It's used along with CARP to make sure a backup firewall has the same information as the main firewall...
- OpenBSDOpenBSDOpenBSD is a Unix-like computer operating system descended from Berkeley Software Distribution , a Unix derivative developed at the University of California, Berkeley. It was forked from NetBSD by project leader Theo de Raadt in late 1995...
- pf (firewall)PF (firewall)PF is a BSD licensed stateful packet filter, a central piece of software for firewalling. It is comparable to iptables, ipfw and ipfilter...
- CARPCommon Address Redundancy ProtocolThe Common Address Redundancy Protocol or CARP is a protocol which allows multiple hosts on the same local network to share a set of IP addresses. Its primary purpose is to provide failover redundancy, especially when used with firewalls and routers. In some configurations CARP can also provide...