Need Gateway Sample with Drop

Home Forums Discussions Support Need Gateway Sample with Drop

Viewing 2 posts - 1 through 2 (of 2 total)
  • Author
    Posts
  • August 4, 2014 at 10:32 pm #5411
    GDeward
    Participant

      Unfortunately, none of the samples have enough commenting or explanation to thoroughly understand the toolkit. For example, the PassThru example shows a SetPacketEvent call but no way to understand how to use this event… or the various modes, or the “SendPacket” operations.

      My goal is to create a Gateway service to examine combinations of several variables (all read from a file):

      – Client IP Address (static or wildcard)
      – Client MAC Address (static or wildcard)
      – Destination IP Address (static or wildcard)
      – Destination Port (static or wildcard)

      The service must either drop the packet(s) or pass them along to the external interface.

      I have looked at several products (Windows Filter Platform, Komodia, Mentalis, etc.) and would very much like to use WinpkFilter. Unfortunately, I must look elsewhere if I cannot understand the toolkit well enough to build the service.

      Any assistance you can provide would be greatly appreciated. Thank you, in advance.

      August 5, 2014 at 6:21 am #7181
      Vadim Smirnov
      Keymaster

        For example, the PassThru example shows a SetPacketEvent call but no way to understand how to use this event… or the various modes, or the “SendPacket” operations.

        SetPacketEvent registers an event object within the driver. This event is signaled by driver when packet queue is non empty, by other words you have packets to read from the driver.

        For your project you can be only interested in tunnel modes, because listen mode does not allow to drop or modify packets.

        SendPacketXXX/SendPacketsXXX re-inject packets back into the network stack.

        My goal is to create a Gateway service to examine combinations of several variables (all read from a file):

        – Client IP Address (static or wildcard)
        – Client MAC Address (static or wildcard)
        – Destination IP Address (static or wildcard)
        – Destination Port (static or wildcard)

        The service must either drop the packet(s) or pass them along to the external interface.

        Such simple functionality can be implemented on top of built-in WinpkFilter static filters. For the sample usage of these filters please refer FILTER.CPP (C++ Filter sample).

        If you prefer to filter packets on your own then the basic start point for your application is PassThru sample. When you want to to drop the packet after examination just don’t call SendPacketXXX for this packet and continue the loop.

      • Author
        Posts
      Viewing 2 posts - 1 through 2 (of 2 total)
      • You must be logged in to reply to this topic.