-
Notifications
You must be signed in to change notification settings - Fork 492
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
WinDivert passthru problem #17
Comments
For more information, see the following urls. http://www.gilgil.net/573380 Thank you in advance. :) |
Thanks for the report. I can reproduce the problem and will try to find the exact cause. |
Uhm, I know I might have missed something, but is passthru supposed to write anything to the stdout? I added a small |
I think the |
"passthru" means do absolutely nothing other than divert the packets. It is useful for performance testing. |
Also, I don't think gilgil means "see the packets" in the sense that passthru is not printing anything to the console. |
I'm noticing issues when firefox starts up, getting 592 errors on WinDivertSend which causes firefox to have a very long startup. I have yet to dump information about the rejected packets but feel this might be a related issue. Only happens with FF. |
Not related after all, was brought here through search by the fact that firefox was involved. Something to watch out for, since WinDivert can grab loopback packets, is to make sure you're not diverting those packets somewhere else. My proxy application was taking those loopback packets generated by firefox and trying to send them out on the network, which isn't allowed, hence 592 and firefox long startup. |
I never really figured out the cause of this issue anyway... But otherwise @TechnikEmpire is right, WinDivert will capture loopback packets unless the filter explicitly forbids it. |
WinDivert now considers loopback packets to be "outbound only", thus inbound loopback packets will be ignored. This should still be sufficient for filtering/modifiying loopback traffic, since each packet can still be captured on the outbound path. Previously the packet would be captured "twice", once for outbound then once for inbound. This helps workaround this bug. For some reason, injecting loopback packets on the inbound path never really works, which appears to be a limitation of WFP and/or the Windows TCP/IP stack. |
Hi, basil. I am gilgil. ;)
While making use of WinDivert dll, I met something unknown. Here is a test.
[Test Case 1]
While calling netdump command, I can see SYN/RST packets when I try to connect to 127.0.0.1:23.
netdump "tcp.SrcPort==23 tcp.DstPort==23"
While calling passthru command, I can not see any packets.
passthru "tcp.SrcPort==23 tcp.DstPort==23"
[Test Case 2]
Firefox application communicates with loopback(127.0.0.1) interface while application launches.
I can see the packets with netdump command.
netdump true
But I can not see any packets with passthru command.
passthru true 1
[Test Enviromnent]
Windows 7 Ultimate K
RAM 8G
Both WinDivert 1.1.2-rc and 1.1.1 has been tested.
The text was updated successfully, but these errors were encountered: