How to control the network access?

Home Forums Discussions General How to control the network access?

Viewing 4 posts - 1 through 4 (of 4 total)
  • Author
    Posts
  • #4894
    sharkmouse
    Participant

      hello,
      i am a newer of the kernel developer.
      i want to control the network of the system,if i only give out the DeviceIp,how can i dynamic control the IP protocol status(enable/disable), using device filter or other technology,another if i add the DeviceTcp,DeviceUdp,DeviceRawip, how to control these protocols status?
      my email:sharkmouse@sina.com
      regards
      ding hao

      #5677
      Vadim Smirnov
      Keymaster

        I don’t understand what actually you mean under “control control the network of the system”. Please clarify if you need the correct answer…

        #5678
        sharkmouse
        Participant

          i just to say how can i control the access of the network through control the device drivers?
          such as the DeviceIP,etc.

          #5679
          Vadim Smirnov
          Keymaster

            If you control DeviceTcp, DeviceUdp, DeviceIp, DeviceRawIp and DeviceMULTICAST then you have complete control over application’s (IE, ICQ, Outlook and etc…) access to the MS TCP/IP network stack. Under control I mean ability to block any network activity (create socket, listen port, connect remote host and et…). Is that your question?

            But this does not mean that you control all network activity of the system, because it may have another network protocols installed (IPv6 an example). But even without installing additional protocols, control over TDI is not the same as control over network. If you try to block the network with your TDI filter then MS TCP/IP still continue packet routing, it still replies ICMP ping, network file and folder sharing still works and etc… This is because mentioned network activities never reach TDI level.

            I hope I’ve answered your question…

          Viewing 4 posts - 1 through 4 (of 4 total)
          • You must be logged in to reply to this topic.