PFSTATD(8)		OpenBSD System Manager's Manual		    PFSTATD(8)

NAME
     pfstatd - small daemon providing pf statistics over network

SYNOPSIS
     pfstatd [-d] [-a address] [-p port] [-u user]

DESCRIPTION
     The pfstatd daemon queries statistics from the packet filter device pf(4)
     and returns them in text form to network clients (like pfstat) connecting
     through TCP.

     The options are as follows:

     -d		 Do not detach from terminal, but stay in foreground and print
		 debug messages to stdout.

     -a address	 Accept TCP connections on the specified address only.	De-
		 fault is to accept connections on any address.

     -p port	 Listen for TCP connection on the specified port.  Default is
		 port 9999.

     -u user	 When started as root, drop privileges to the specified user,
		 after opening the device special file /dev/pf.	 Default is
		 `nobody'.

SECURITY CONSIDERATIONS
     Clients are not authenticated and output is not encrypted.	 The daemon
     does not read input from clients and immediately closes connections after
     writing its output.  The daemon requires read (but not write) access to
     the device special file /dev/pf.  The client supports only one concurrent
     TCP connection, and accepts no more than one connection per second.

SEE ALSO
     pf(4), pfstat(8)

OpenBSD 4.2			 May 11, 2006				     1