apf(1) easy iptables based firewall system




This manual page documents briefly the apf command. This manual page was written for the Debian distribution because the original program does not have a manual page.

Advanced Policy Firewall (APF) is an iptables (netfilter) based firewall system designed around the essential needs of today's Internet deployed servers and the unique needs of custom deployed Linux installations. The configuration of APF is designed to be very informative and present the user with an easy to follow process, from top to bottom of the configuration file. The management of APF on a day-to-day basis is conducted from the command line with the 'apf' command, which includes detailed usage information and all the features one would expect from a current and forward thinking firewall solution.


apf follow the usual GNU command line syntax, with long options starting with two dashes (`-'). A summary of options is included below.
load all firewall rules
stop (flush) & reload firewall rules
list all firewall rules
output firewall status log
refresh & resolve dns names in trust rules
add host (IP/FQDN) to allow_hosts.rules and immediately load new rule into firewall
add host (IP/FQDN) to deny_hosts.rules and immediately load new rule into firewall
-u <HOST>|--remove <HOST>
remove host from [glob]*_hosts.rules and immediately remove rule from firewall
output all configuration options


Copyright © 1999-2007, R-fx Networks <[email protected]>
Copyright © 2007, Ryan MacDonald <[email protected]> This program may be freely redistributed under the terms of the GNU GPL

This manual page was written by Giuseppe Iuculano <[email protected]>, for the Debian project (but may be used by others).