Thread: Firewall Construction

  1. #1
    Registered User
    Join Date
    Dec 2004
    Posts
    8

    Firewall Construction

    I am an experienced C++ programmer, I have decided that I am going to write a win32 firewall as my next hobby project. I know, this will require a lot of reading...but thats fine. Its a learning project.

    Anyways, I was wondering - how would you recommend that I block specific trafic? How would I view individual packets and their information? Should I use winpcap or some other third party software? Could anyone recommend any resources or other help?

    All help is apreciated,

    Chris.

  2. #2
    Frequently Quite Prolix dwks's Avatar
    Join Date
    Apr 2005
    Location
    Canada
    Posts
    8,057
    google might help; it usually does.
    dwk

    Seek and ye shall find. quaere et invenies.

    "Simplicity does not precede complexity, but follows it." -- Alan Perlis
    "Testing can only prove the presence of bugs, not their absence." -- Edsger Dijkstra
    "The only real mistake is the one from which we learn nothing." -- John Powell


    Other boards: DaniWeb, TPS
    Unofficial Wiki FAQ: cpwiki.sf.net

    My website: http://dwks.theprogrammingsite.com/
    Projects: codeform, xuni, atlantis, nort, etc.

  3. #3
    Registered User
    Join Date
    Dec 2004
    Posts
    8
    Thank you for that...Really now. I'm not a noob, of course I googled it. This is a rather specific topic however...

    did you even look at the link you gave me? Every one of the links there are about various virii methods.
    Last edited by forsaken_dragon; 07-30-2005 at 10:10 AM.

  4. #4
    Frequently Quite Prolix dwks's Avatar
    Join Date
    Apr 2005
    Location
    Canada
    Posts
    8,057
    No, I didn't . . . I did look at this, though: google.
    Last edited by dwks; 07-29-2005 at 08:07 PM.
    dwk

    Seek and ye shall find. quaere et invenies.

    "Simplicity does not precede complexity, but follows it." -- Alan Perlis
    "Testing can only prove the presence of bugs, not their absence." -- Edsger Dijkstra
    "The only real mistake is the one from which we learn nothing." -- John Powell


    Other boards: DaniWeb, TPS
    Unofficial Wiki FAQ: cpwiki.sf.net

    My website: http://dwks.theprogrammingsite.com/
    Projects: codeform, xuni, atlantis, nort, etc.

  5. #5
    Registered User
    Join Date
    Dec 2004
    Posts
    8
    Seriously now...Thats enough. I have googled this issue.

    Now then.

    Does anyone have a response other then 'google it noob'?

  6. #6
    Banned
    Join Date
    Jun 2005
    Posts
    594
    an experienced c++ programmer would realize that this would be
    better situated in the network programming forum.

  7. #7
    He's trying.
    Join Date
    Apr 2005
    Location
    Missouri, US
    Posts
    70
    Quote Originally Posted by ILoveVectors
    an experienced c++ programmer would realize that this would be
    better situated in the network programming forum.
    Perhaps an experienced CBoard user, but not necessarily a programmer...

    And depending on whether it pertains specifically to networking or not at this point is also sort of debatable, isn't it?

  8. #8
    Registered User
    Join Date
    Dec 2004
    Posts
    8
    Quote Originally Posted by ILoveVectors
    an experienced c++ programmer would realize that this would be
    better situated in the network programming forum.
    Come on now. Did you see my post count? I haven't posted in this forum much. I was told that this forum is a very good place to post, and that the people here are very helpfull. So far, All I've gotten out of it is some random guy telling me to google it, and you criticizing me.

    I'm writing this project in C++. I was asking if I should use a library or invent one myself. Thus, I posted it in the C++ forum. This thread works in either topic, as Nazca said.

    Now then. Does anyone have an answer that is actually relivant to my question?
    Last edited by forsaken_dragon; 07-29-2005 at 08:28 PM.

  9. #9
    Banned
    Join Date
    Jun 2005
    Posts
    594
    i know normally id of been nice, but you seemed a little mean to
    the one dude so i thought id be mean to.

  10. #10
    Banned
    Join Date
    Jun 2005
    Posts
    594
    Quote Originally Posted by Nazca
    Perhaps an experienced CBoard user, but not necessarily a programmer...

    And depending on whether it pertains specifically to networking or not at this point is also sort of debatable, isn't it?
    its a firewall, without a some kind of network programming,
    it isnt going to happen. and if we want to be really down
    and dirty, this would probably been posted better in tech forum,
    maybe to ask on some good information about the creation
    of firewalls.

  11. #11
    essence of digital xddxogm3's Avatar
    Join Date
    Sep 2003
    Posts
    589
    I have only seen books on the topic at stores.
    I do not remember what the exact names are, but I have seen a few released by symantic.
    I found them at borders book store.
    "Hence to fight and conquer in all your battles is not supreme excellence;
    supreme excellence consists in breaking the enemy's resistance without fighting."
    Art of War Sun Tzu

  12. #12
    *this
    Join Date
    Mar 2005
    Posts
    498
    You should find some free source code and see if you can get some ideas from it. If you use linux there are many many free firewall programs which you can get the source code to.

    My advice would be to find source, look at examples, make sure you can send and read packets and figure out how to intercept packets. I'm not familiar with win32 network programming, but you will have to monitor packet sending and recieving through all ports and figure out where its coming from and where its going to.

    I would suggest reposting in the networking forums and see if anyone there has some better advice. I've also been interested in firewall programming because I like security. If you find any great sources post them.

    Thanks,
    Josh

  13. #13
    essence of digital xddxogm3's Avatar
    Join Date
    Sep 2003
    Posts
    589
    http://www.filseclab.com/eng/products/sourcecode.htm
    firewall source code.
    open source.
    you would have to learn from the code
    "Hence to fight and conquer in all your battles is not supreme excellence;
    supreme excellence consists in breaking the enemy's resistance without fighting."
    Art of War Sun Tzu

  14. #14
    carry on JaWiB's Avatar
    Join Date
    Feb 2003
    Location
    Seattle, WA
    Posts
    1,972
    You might check out ethereal. You can download the source code and maybe get some ideas about viewing packets. Actually, looking at that website, it looks like it uses winpcap...

    Anyways, I'm not an expert at network programming, so sorry I can't help much
    "Think not but that I know these things; or think
    I know them not: not therefore am I short
    Of knowing what I ought."
    -John Milton, Paradise Regained (1671)

    "Work hard and it might happen."
    -XSquared

  15. #15
    Registered User
    Join Date
    Dec 2004
    Posts
    8
    Alright, I'll look into those options. Thanks to those who replied. =)

Popular pages Recent additions subscribe to a feed

Similar Threads

  1. Win Xp firewall detection
    By wind_addict in forum Windows Programming
    Replies: 1
    Last Post: 04-30-2008, 12:13 PM
  2. detect being blocked by a firewall
    By efimpp in forum Networking/Device Communication
    Replies: 3
    Last Post: 04-11-2005, 03:02 PM
  3. construction and induction proofs help
    By axon in forum A Brief History of Cprogramming.com
    Replies: 11
    Last Post: 09-09-2004, 09:02 AM
  4. Firewall Conflict
    By Davros in forum A Brief History of Cprogramming.com
    Replies: 1
    Last Post: 05-22-2004, 03:17 PM
  5. building a basic firewall
    By threahdead in forum Linux Programming
    Replies: 2
    Last Post: 06-30-2003, 09:19 AM