I used to run "iptables" on Linux machine like CentOS or Ubuntu as my gateway firewall. Recently I am studying FreeBSD and Solaris 10, and just wonder if it's possible to block some IP address at real time without restarting IP Filter/pf?
For example, in Linux, we can perform "iptables" command and block a IP a.b.c.d. However, IP Filter and pf rely on a given file, and it seems like I need to add a new rule into that file, and reload it again each time. Is it correct? If not, could anyone let me know how to load new block rule without reloading that file?