pfsync is a computer protocol used to synchronise firewall states between machines running Packet Filter (PF) for high availability. It is used along with CARP to make sure a backup firewall has the same information as the main firewall. When the main machine in the firewall cluster dies, the backup machine is able to accept current connections without loss.
See also
External links
- PF: Firewall Redundancy with CARP and pfsync (OpenBSD PF FAQ)
- pfsync(4) man-page in OpenBSD, FreeBSD and NetBSD
- sys/net/if_pfsync.h in OpenBSD
- sys/net/if_pfsync.c in OpenBSD
References
"/etc/protocols". BSD Cross Reference. OpenBSD. pfsync 240 http://bxr.su/o/etc/protocols ↩
"/sys/net/if_pfsync.h". BSD Cross Reference. OpenBSD. http://bxr.su/o/sys/net/if_pfsync.h ↩
Federico Biancuzzi (2004-04-15). "OpenBSD PF Developer Interview". ONLamp. O'Reilly Media. Archived from the original on 2004-05-08. Retrieved 2019-03-20. https://web.archive.org/web/20040508140530/http://www.onlamp.com/lpt/a/4767 ↩
Federico Biancuzzi (2004-05-06). "OpenBSD PF Developer Interview, Part 2". ONLamp. O'Reilly Media. Archived from the original on 2004-06-19. Retrieved 2019-03-20. https://web.archive.org/web/20040619005622/http://www.onlamp.com/lpt/a/4839 ↩