- This topic has 4 replies, 2 voices, and was last updated 18 years ago by
.
-
Posts
-
Hi,
I have some logical problem with winpk filter driver. I’m working on a simple url filter system. When http request try to going out from mstcp, sw checking http headers and requested url. If url is blocked? packet’s marked in my own marking table. When http response recieved from related server, sw checks marked packets and if packet matched, recieved data changed to blocked message. This is basic live cycle of my sw.
But, my blacklist in other machine at same network. When I try to lookup requested url in my blacklist with UDP queries, I have to hang GET packet on air until UDP answer recieved from server.. Because all of the network traffics pass from same adapter. 🙂
Mode.dwFlags = MSTCP_FLAG_SENT_TUNNEL|MSTCP_FLAG_RECV_TUNNEL;
Can UDP packets pass without entering winpk filter?
Can UDP packets pass without entering winpk filter?
No, unless you have loaded a filter to pass UDP packets without user-mode processing.
Loading the following filter will force all UDP packets to pass without processing in user mode, all other packets will be redirected for processing to user mode.
// Common values
pFilters->m_StaticFilters[0].m_Adapter.QuadPart = 0; // applied to all adapters
pFilters->m_StaticFilters[0].m_ValidFields = NETWORK_LAYER_VALID;
pFilters->m_StaticFilters[0].m_FilterAction = FILTER_PACKET_PASS;
pFilters->m_StaticFilters[0].m_dwDirectionFlags = PACKET_FLAG_ON_SEND | PACKET_FLAG_ON_RECEIVE;
// Network layer filter
pFilters->m_StaticFilters[0].m_NetworkFilter.m_dwUnionSelector = IPV4;
pFilters->m_StaticFilters[0].m_NetworkFilter.m_IPv4.m_ValidFields = IP_V4_FILTER_PROTOCOL;
pFilters->m_StaticFilters[0].m_NetworkFilter.m_IPv4.m_Protocol = IPPROTO_UDP;Refer “filter” sample for the general filters usage.
- You must be logged in to reply to this topic.