Tip of the Trade: m0n0wall

Although Iptables gloms most of the glory, since it is the packet filter included in the Linux kernel, there is an alternative worth considering that is at least equally powerful, and easier to use: pf. pf is developed and maintained on OpenBSD, but the easiest way to get acquainted with it is by running m0n0wall.

