BSDFan666 is right about PF. But wait, before you buy, there's more!
- CARP.
- OpenOSPFD.
- OpenBGPD.
- OpenNTPD.
- relayD.
- New! re-written original SNMPD.
And it's not just that OpenBSD uses these- they all originated from the OpenBSD project (including PF.) All other OS's that use these are just ports. When BSD users across the board are asked what OS would be best suited for firewalling out-of-the-box, OpenBSD is normally the first choice.
I'm a network administrator that has to work with the commercial big-boys. And I wish I was allowed to use OpenBSD in their place... it's that good.
__________________
Network Firefighter
|