No Starch Press is releasing the fourth edition of 'The Book of PF,' an authoritative guide detailing the OpenBSD Packet Filter, authored by Peter N. M. Hansteen, slated for January 2026. The updated manual targets system administrators who require robust expertise in PF, which remains central to network security on OpenBSD and FreeBSD systems amid increasing internet hostility.
The new edition brings coverage up to date with contemporary network architectures, featuring significant new material on dual-stack IPv6 configurations and the advanced traffic-shaping system known as 'queues and priorities.' It also details essential functions like Network Address Translation (NAT), failover provisioning via CARP, and modern spam defense strategies.
Hansteen, a noted DevOps consultant and longtime Freenix advocate based in Norway, expands on foundational concepts while introducing proactive defense mechanisms. Readers will learn to construct adaptive firewalls and fully utilize OpenBSD’s capabilities across various deployment scenarios, including DMZs and bridged networks.
According to the publisher, the text covers compatibility with current operating systems, specifically OpenBSD 7.x, FreeBSD 14.x, and NetBSD 10.x. This breadth ensures the manual serves a wide audience relying on these Unix-like operating systems for critical infrastructure.
Technical instruction within the book extends to practical application, such as securing wireless access points using authpf and implementing visualization tools, including NetFlow, for detailed traffic monitoring. This focus on observability aids administrators in maintaining network responsiveness.
Florian Obser, an OpenBSD developer, provided a positive review, noting that the fourth edition serves as a necessary refresher for what he considers the definitive work on firewall configuration for both OpenBSD and FreeBSD platforms.
The publication underscores the enduring necessity of deep, kernel-level firewall knowledge, even as cloud-native solutions gain prominence, positioning PF expertise as a vital skill set for infrastructure security professionals.
'The Book of PF, 4th Edition' will be available in print and various electronic formats, priced at $49.99 for the print/ebook bundle. This ongoing commitment to updating the text ensures its status as an essential reference for secure network engineering.
