|
If you know what addresses you can block, you only have to add a rule in the application. Or you are describing an scenario where you musn't block always same addresses?
I write a little firewall using C and VC++ in my article "Developing Firewalls for Windows 2000/XP".
|
|
|
|
|
hi i want to close only the http traffic i tried to use this application for that purpose but it did no do so,
i m using windoes 2000 server and on LAN.i m supplying my adress as the src and 0 on desitnation but it did not block any traffic.
when i use all and option drop then it closes all things like netowrk,internet etc which i dont want i only want to block the internet traffic. had u tested that application and worked fine or what i m doing wrong? i will be thankful to you,
Tasleem Arif
|
|
|
|
|
I have the same problem,
How can I drop incoming packet??
今天没有时间,以后再写吧。
|
|
|
|
|
Hello,
Is this utility totally closes a port. For example, i filter out
all packets in port 135 (Listening) in one pc, then doing port scan in
another pc will not detect port 135 as 'listening'?
Regards,
Andrew Mosqueda
|
|
|
|
|
This application doesn't close any port. Only, the host will drop all traffic whose source/destinaton port is 135.
|
|
|
|
|
Thanks for the information.
Andrew Mosqueda
The warrior is a child
|
|
|
|
|
hi i want to close only the http traffic i tried to use this application for that purpose but it did no do so,
i m using windoes 2000 server and on LAN.i m supplying my adress as the src and 0 on desitnation but it did not block any traffic.
when i use all and option drop then it closes all things like netowrk,internet etc which i dont want i only want to block the internet traffic. had u tested that application and worked fine or what i m doing wrong? i will be thankful to you, i had contacted to author buthe did not reponded.
-- modified at 7:11 Tuesday 8th August, 2006
Tasleem Arif
|
|
|
|
|
hi i want to close only the http traffic i tried to use this application for that purpose but it did no do so,
i m using windoes 2000 server and on LAN.i m supplying my adress as the src and 0 on desitnation but it did not block any traffic.
when i use all and option drop then it closes all things like netowrk,internet etc which i dont want i only want to block the internet traffic. had u tested that application and worked fine or what i m doing wrong? i will be thankful to you, i had contacted to author buthe did not reponded.
Tasleem Arif
|
|
|
|
|
I ran the program, but got the error message:
Cannot open include file: 'Iphlpapi.h': No such file or directory
Cannot open include file: 'Fltdefs.h': No such file or directory
how can i fix it? thanks
|
|
|
|
|
To compile this project you need to install platform SDK. Download it from Microsoft Site.
|
|
|
|
|
I'm sure that we prefered to install platform SDK. I'm very new in this section. Not only i'm new in this subject, but also there are a number of platform SDK appeared on www.microsoft.com.. I have no idea which one I should download and install. Could you please to let me know the exact name of the SDK or the exact link where I can download.
Thank you very much.
|
|
|
|
|
Hi, I want to stop internet access in a local network
from the client not from the server(with is the access
point), can i do this with all windows os.
info : the internet access is realized with proxy
or connection sharing (int win2k, winxp).
Thank for you for advance.
|
|
|
|
|
I don't understand very well your question. What do you mean with "stop internet in the client not from the server"? This application isn't only for servers or clients, you can use it any host.
This software is compatible with Windows 2000 and above(Windows XP and Windows 2003). For this tool, no matter that you are using, or not, a proxy. Simply, make the correct filter rules and you can stop traffic.
|
|
|
|
|
hi i want to close only the http traffic i tried to use this application for that purpose but it did no do so,
i m using windoes 2000 server and on LAN.i m supplying my adress as the src and 0 on desitnation but it did not block any traffic.
when i use all maans 0 and option drop then it closes all things like netowrk,internet etc which i dont want.
i only want to block the internet traffic. had u tested that application and worked fine or what i m doing wrong? i will be thankful to you, i had contacted to author buthe did not reponded.
-- modified at 7:19 Tuesday 8th August, 2006
Tasleem Arif
|
|
|
|
|
I'd be interested in a pure C# version of this, if it's possible. What would be the major technical stumbling blocks in doing so?
Great work by the way!
|
|
|
|
|
I can do it now, because I haven't time .
Anyway, I developed a class in order to use Packet Filtering API for .NET (click here to read it). If you are interested, you only have to develop the graphic interface.
|
|
|
|
|
if you want write the log for Firewall Application, you can use these functions & structure.
PfMakeLog
PfSetLogBuffer
and
PFLOGFRAME
|
|
|
|
|
hi ceris,
have you been able to get logging functioning with the packet api?
as i have not
could you help me out ?
|
|
|
|
|
can u please write how to use pfMakeLog()
|
|
|
|
|
Hi, Nice example. In looking over the implementation, I see the drop-down window only has "Drop" (Packet), yet in some places in the code you test for "Forward". In my testing, I would like to drop all packets, except for specific IP or Port and perhaps TCP or UDP. Example: If I want to protect a IIS server, I want to drop all packets except for port 80 and 443 (and maybe a few "local" IPs to get into to do maintenance.
|
|
|
|
|
Hi,
You are right. You have seen it because I am trying to use this same program for test different firewall methods changing only initialization and the add rules process.
Anyway I update the article, adding the posibility of indicate the default action for created interfaces. In this way, a filter rule will reverses the default action.
JonTampa wrote:
I would like to drop all packets, except for specific IP or Port and perhaps TCP or UDP. Example: If I want to protect a IIS server, I want to drop all packets except for port 80 and 443 (and maybe a few "local" IPs to get into to do maintenance.
You can do it with the new funcionality.
I'm trying to see how I can send the new files...
|
|
|
|
|
hi i want to close only the http traffic i tried to use this application for that purpose but it did no do so,
i m using windoes 2000 server and on LAN.i m supplying my adress as the src and 0 on desitnation but it did not block any traffic.
when i use all maans 0 and option drop then it closes all things like netowrk,internet etc which i dont want.
i only want to block the internet traffic. had u tested that application and worked fine or what i m doing wrong? i will be thankful to you, i had contacted to author buthe did not reponded.
Tasleem Arif
|
|
|
|
|
Would it be hard to create a stateful firewall?
Argh! Why did it submit on me? I didn't press submit!
By stateful firewall I mean a firewall which can monitor connections, rewrite packet addresses, and thus act like a NAT? (Network Address Translation firewall).
--
Only in english speaking countries: Schiessen = Scheissen. Every time Bush takes a dump, someone gets a bomb on their head.
|
|
|
|
|
You can't write packet addresses using Packet Filtering API. This API only allow a user to add ip filters to interfaces.
|
|
|
|
|
10x
|
|
|
|