A Firewall that goes beyond traditional firewall functionalities and integrates additional features such as packet filtering, IP blocking and Port Blocking. Provides better visibility and control over network traffic. It has the ability to provide comprehensive protection for all traffic entering and leaving an organization's network
The main technology used for the firewall is WinDivert
Windows Packet Divert (WinDivert) is a user-mode packet capture-and-divert package for Windows 10, Windows 11, and Windows Server.
WinDivert allows user-mode applications to capture/modify/drop network packets sent to/from the Windows network stack. In summary, WinDivert can:
capture network packets filter/drop network packets sniff network packets (re)inject network packets modify network packets WinDivert can be used to implement user-mode packet filters, packet sniffers, firewalls, NAT, VPNs, tunneling applications, etc.
- A new packet enters the network stack and is intercepted by WinDivert.sys
- If the packet matches the PROGRAM-defined filter, it is diverted. The program can then read the packet using a call to WinDivertRecv().
- If the packet does not match the filter, the packet continues as normal.
- PROGRAM either drops, modifies, or re-injects the packet. the program can re-inject the (modified) using a call to WinDivertSend().
