locked
Source-based Routing using WFP RRS feed

  • Question

  • Hello,

    I am trying to implement a source-based routing using WFP. The objective is that when a local machine receives a packet on Interface A from a specific IP address, the local machine will process the packet rather than forward it through Interface B.

    I created a callout driver at FWPS_LAYER_IPFORWARD_V4. The callout driver will inject the received packet using FwpsInjectNetworkReceiveAsync0().

    The sublayer that I created has the highest weight.

    The filter has the type FWP_ACTION_CALLOUT_INSPECTION, and the condition FWPM_CONDITION_IP_SOURCE_ADDRESS.

    The callout action is FWP_ACTION_PERMIT.

    I verified that the callout driver is processed, and even I was able to capture the whole packet at FWPS_LAYER_IPFORWARD_V4.

    However, I am not able to achieve the objective.

    I would appreciate your input on this approach and whether or not it can be achieved.

    Thank you

    Monday, June 23, 2014 10:15 PM

All replies

  • Hi, i'm also interested in this. Did you figure it out in the end? or any updates you can provide? Thanks!
    Monday, June 3, 2019 12:12 PM