Hi, I had the same problem as you a couple of years ago. I suggest that you
take time download and look at this file, which contains hopefully the
answers to what you are looking for on NT.
http://packetstorm.securify.com/sniffers/sources.zip
-Daniel
-----Original Message-----
From: Ryan Russell [mailto:[EMAIL PROTECTED]]
Sent: Friday, January 21, 2000 8:56 AM
To: Nick Kichukov
Cc: [EMAIL PROTECTED]
Subject: Re: Filtering tcp/ip packets
>I'm writing a firewall system for Windows for my graduation project.
>The systems i cheked were mostly proxy/firewall gateways,
>which are using WinSock and works on a veri high level with
>port translation. I want my system to work on a lower level
>and to check directly the incoming and outgoing ip or tcp
>packets. ConSeal Firewall is something like that.
>I red almost the whole WinSock documentation but
>I didn't found the answer.
You'll have to get the Device drivers Developer's Kit
(DDK). Nowadays, the really means a subscription to
MSDN. The cheapest way to get that is to pick up a
copy of Visual C++ that includes a limited time subscription
to MSDN. Student discounts on VC++ are usually pretty good.
Anyway, there are examples for packet monitoring and
packet drivers in there. That's what you'll need for a starting
point.
Ryan
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
