You are viewing the 2025 edition of FOSDEM. Click here to view the 2026 edition

A packet's journey through pf

Name: A packet's journey through pf
Start: 2025-02-01T16:55:00
End: 2025-02-01T16:55:00
Location: AW1.120

AW1.120 | Day 1 | 16:55 - 17:25 | Speakers: Kristof Provost

Copy link

Copy link

Open in browser

Notes

Abstract

A walkthrough of a packet's journey through (FreeBSD's) pf, concentrating on the big picture and its implications.

We'll cover when packets are inspected, when rules are evaluated and how states are used. Along the way we'll cover what DTrace probes can show us, what some of pfctl's counters mean and just how many times pf can look at a single packet.

This talk is intended for firewall admins looking for a deeper understanding and aspiring pf developers. It is not a "How to use pf" talk.

Attachments

Slides

Speakers

Kristof Provost

External Links

Notice: The placeholder video image is licensed under CC BY-SA 4.0. The original image can be found hereChanges made to the image are: Cropped the image to a new ratio, part of the image was cut off.