Solved

Windows firewall packet filtering

Posted on 2009-04-06
5
342 Views
Last Modified: 2013-12-04
I've been looking for ways to block a particular UDP packet on windows, but need to look into the payload. Something like if (udp[34]==0xaa and udp[45]==0xbb) then PF_DROP.

Are there firewalls/proxies that can do this? The ones I've come across only filter on IP/port. I can do this on linux with iptables but have yet to find a solution on Windows.

I'm open to writing my own app if someone can give me pointers to the windows kernel hooks for packet filtering. Thanks.
0
Comment
Question by:zyca
  • 2
5 Comments
 
LVL 5

Accepted Solution

by:
theoaks earned 250 total points
ID: 24086894
yes... ms isa server can do packet level filtering, not just port based.


0
 
LVL 86

Assisted Solution

by:jkr
jkr earned 250 total points
ID: 24088757
I am not aware of an existig FW for that purpose, but you could adapt the one presented in http://www.codeproject.com/KB/IP/FwHookDrv.aspx ("An Adventure: How to implement a Firewall-Hook Driver?") to suit your needs. This article comes with full source code.
0
 
LVL 86

Expert Comment

by:jkr
ID: 24711235
I'd object against a split, since 'yes [...] a server can do that' is too vague.
0

Featured Post

Superior storage. Superior surveillance.

WD Purple drives are built for 24/7, always-on, high-definition security systems. With support for up to 8 hard drives and 32 cameras, WD Purple drives are optimized for surveillance.

Join & Write a Comment

The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
This is a guide to the following problem (not exclusive but here) on Windows: Users need our support and we supporters often use global administrative accounts to do this. Using these accounts safely is a real challenge. Any admin who takes se…
This is Part 3 in a 3-part series on Experts Exchange to discuss error handling in VBA code written for Excel. Part 1 of this series discussed basic error handling code using VBA. http://www.experts-exchange.com/videos/1478/Excel-Error-Handlin…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now