Questions tagged [ndis]

NDIS is a programming framework for low-level network drivers on Microsoft Windows

Network Driver Interface Specification (NDIS) is a driver development framework on Microsoft Windows. NDIS supports several types of drivers:

Network Interface Card (NIC) drivers
Layer 2 filter drivers
Layer 3 protocol drivers (like IPv6)
NIC aggregation drivers (like LBFO, or virtual switches)

Learn more about NDIS on MSDN.

228 questions

votes

2 answers

Block any IP on a computer by coding in .Net (C#)

I am playing around with a way to kick cheaters in Modern Warfare 2 (when you are the host). I have been able to use winpcap to sniff packages to identify the player names and their IPs. I need a way to block all traffic (or just the target IPs UDP…

.net ip ndis

asked Feb 22 '10 at 09:59

Wolf5

16,600
12
59
58

votes

1 answer

why we can access memory from non paged pool at or above DISPATCH LEVEL

As I know that if IRQL level is dispatch then you can access memory from non paged pool. if we will try to access memory from paged pool.just wanted to know why ?

windows kernel driver ndis wdm

asked Sep 12 '13 at 12:24

MM WDD

votes

1 answer

NDIS and miniport driver

I am trying to modify a ethernet driver using WDK tools provided in Visual Studio 2012. The samples provided in the WDK are 'miniport adapter' and 'NDIS Light Weight Filter' among others. I am still at the very beginning of driver writing and hence…

visual-studio ethernet wdk ndis

asked Jun 29 '12 at 02:25

Aditya Tantry

votes

1 answer

Migration of NDIS versions

What is the major difference between NDIS 6.0 & NDIS 6.30? Here is what information I know, There was nothing like WWAN medium in case of NDIS 6.0. WWAN specific OID’s weren’t also available in NDIS 6.0. So TCP/IP use to send with 802.3 headers.…

windows migration device-driver ndis network-driver

asked Feb 18 '12 at 10:34

Prasanna Navaratna

votes

1 answer

Windows Filtering Platform: Access to the the packet's payload

I'm traversing through a NET_BUFFER's MDL chain to get the associated data. The two macros that are used to indicate where the used data space begins (NET_BUFFER_DATA_OFFSET() & NET_BUFFER_CURRENT_MDL_OFFSET()) got me a little confused, as I've…

windows ndis wfp

asked Feb 02 '12 at 09:43

Assaf Levy

1,312
1
12
20

votes

2 answers

NDIS 5/6 intermediate filter driver

Background: I need to create an NDIS filter intermediate driver. This driver will pass all traffic while collecting metadata (primarily timing information). The driver will export this information to a user application by inserting its own packets…

windows driver ndis

asked Jan 04 '12 at 19:44

Jonathan

votes

1 answer

Does NDIS spinlock serves as a memory barrier for DMA?

In an NDIS driver I need to write some data to a shared memory and then notify the HW to fetch this data. Writing to the shared memory is protected by an NDIS spinlock. There is a possible race between writing to the shared memory and notifying the…

memory dma spinlock barrier ndis

asked Nov 07 '21 at 09:17

Rony Ross

votes

1 answer

Send doesn't work properly in my NDIS modifying filter driver

I'm trying to implement packet modifying filter by using NDIS. I used the approach with dropping packets and originating send/receive from cloned NBLs. The docs on msdn say that's…

windows-kernel ndis kmdf

asked Oct 12 '21 at 06:34

Rakoo

votes

1 answer

How to use NDIS protocol driver?

I write a NDIS protocol driver. I can register my protocol with NdisRegisterProtocol. How does the application typically access this driver? Is there a way to uses windows sockets or do I need to provide a StreamDriver interface? The socket…

windows-ce driver ndis

asked Aug 05 '11 at 04:19

harper

13,345
8
56
105

votes

1 answer

Raw ethernet broadcasting

I downloaded WinDDK and am using ndisprot 5x to broadcast raw ethernet packets from my user app, specifying destination MAC all 0xff's, on large and repetitive data sets it doesn't seem to be very productive. What currently works great is a loopback…

networking broadcast ethernet wdk ndis

asked Jul 07 '11 at 11:41

Ulterior

2,786
3
30
58

votes

1 answer

How can I read the received packets with a NDIS filter driver?

I am currently experimenting with the NDIS driver samples. I am trying to print the packets contents (including the MAC-addresses, EtherType and the data). My first guess was to implement this in the function FilterReceiveNetBufferLists.…

windows driver wdk windows-kernel ndis

asked Jul 22 '20 at 17:46

Gigliotti

votes

1 answer

User mode driver with NDIS

Windows Filtering Platform provides API to develop both Kernel mode and User mode network filter driver. Is it possible to develop User mode Network filter driver on NDIS using Windows API?

windows kernel windows-kernel ndis usermode

asked Jun 05 '20 at 08:31

Avinash Kumar Ranjan

votes

2 answers

Windows kernel equivalent to FreeBSD's ticks or Linux' jiffies in the latest WDK

I am working on a Windows NDIS driver using the latest WDK that is in need of a millisecond resolution kernel time counter that is monotonically non-decreasing. I looked through MSDN as well as WDK's documentation but found nothing useful except…

winapi time counter ndis

asked May 11 '11 at 16:05

software engineer

votes

0 answers

Logman flush buffers to file periodically

I am troubleshooting NDIS miniport filter driver causing BSOD randomly. I enabled driver verifier for my driver. I am also trying to collect my driver trace logs by logman using the following command - logman create trace myndis -p {MY_GUID} -ct…

ndis bsod windows-wpp logman

asked Apr 21 '19 at 15:31

Mahesh

34,573
20
89
115

votes

1 answer

How does work capturing packets (NPF; WinPcap)?

I read about how WinPcap filters packets here and examined ndis/filter project from GitHub (Microsoft/Windows-driver-samples). I provide the main figures from WinPcap page bellow because they are related to the question. My main question: if NPF…

c windows driver packet-capture ndis

asked Apr 09 '19 at 21:03

slinkin

Prev 1

…

15 16 Next