根据FWPM_LAYER_ALE_BIND_REDIRECT_V4上的目标地址进行过滤 [英] Filtering based on Destination Address at FWPM_LAYER_ALE_BIND_REDIRECT_V4
问题描述
您好
我在FWPM_LAYER_ALE_BIND_REDIRECT_V4有一个WFP标注驱动程序。除了环回连接外,一切正常。我为系统的几乎所有流量进行重定向,例如,某些特定应用程序的流量总是通过专用NIC路由
,而其他用户使用公共NIC。
但是环回连接例如,如果连接到127.0.0.1它将绑定到本地接口192.168.0.25,之后连接调用将因此而失败。
因此,目的地地址是否在FWPM_LAYER_ALE_BIND_REDIRECT_V4可用,我想根据该套接字用于连接呼叫的目标地址进行绑定重定向?是否有可能?
如果不善意建议替代措施。
提前感谢!
___________关心Umar Yaqoob ___________
不,这是不可能的。您将源地址绑定到套接字并连接到目标地址。如果要根据目标地址进行条件重定向,则需要在ALE_CONNECT_REDIRECT层执行此操作。
J
Hi
I have a WFP callout driver at FWPM_LAYER_ALE_BIND_REDIRECT_V4. Everything is working fine except for loopback connections. I make redirection for almost all the traffic of the system for instance traffic by some specific applications is always routed through Private NICs whereas for others Public NICs are used.
However loopback connections were also getting bind_redirected to an interface for instance if a connection was being made to 127.0.0.1 it would get bound to a local interface 192.168.0.25 and later the connect call would fail because of it.
Hence Is Destination address available at FWPM_LAYER_ALE_BIND_REDIRECT_V4 , I want to do Bind Redirection based on the destination address which that socket would use for the connect call? Is it possible?
If not kindly suggest alternative measures.
Thanking in advance!
___________ Regards Umar Yaqoob ___________
No, this is not possible. You Bind a source address to a socket and you Connect to a destination address. If you want to do conditional redirection based on a destination address you will want to do it at the ALE_CONNECT_REDIRECT layers.
J
这篇关于根据FWPM_LAYER_ALE_BIND_REDIRECT_V4上的目标地址进行过滤的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
