WinpkFilter: connection tracking?

Home Forums Discussions General WinpkFilter: connection tracking?

Tagged: 

Viewing 2 posts - 1 through 2 (of 2 total)
  • Author
    Posts
  • October 23, 2020 at 1:38 am #11391
    nijazz
    Participant

      Hi Vadim,
      Is WinpkFilter capable of tracking connections or it may only execute callbacks on per-packet basis?
      We’re currently using WFP and when a flow ends it invokes our callout and passes a context which may contain arbitrary data. Can similar functionality be achieved using WinpkFilter?
      Thank you.

      October 27, 2020 at 3:23 pm #11392
      Vadim Smirnov
      Keymaster

        Neither process nor the connection context are available on the NDIS level. However, it is still possible to use information extracted form the packet headers (IP/protocol/port) to match the packet against the local process information which can be requested using IP Helper API.

      • Author
        Posts
      Viewing 2 posts - 1 through 2 (of 2 total)
      • You must be logged in to reply to this topic.