High Performance Firewall
System Security Management
HPF is a firewall technology that is based on a compiled rules engine. It differs from other firewall engines in that the time spent on matching a rule is constant, and is not dependent on the number of rules in effect. This allows packets to be rejected or accepted in about 300 CPU cycles. HPF currently works under FreeBSD, but patches for other operating systems are planned.