ocante

Forum Replies Created

Viewing 3 posts - 1 through 3 (of 3 total)
  • Author
    Posts
  • November 4, 2024 at 9:37 am in reply to: Query on Filtering Capabilities in Windows Packet Filter API #13932
    ocante
    Participant

      Vadim,

      It seems that you need to create as many instances of CNdisApi as there are network interfaces. Can you confirm this?

      Regards,

      Olivier

      November 4, 2024 at 8:51 am in reply to: Query on Filtering Capabilities in Windows Packet Filter API #13930
      ocante
      Participant

        Hi Vadim

        I want to capture the traffic on several network interfaces. Can I do this in N threads running in parallel with a single instance of CNdisApi, each thread calling Read in a loop on N separate instances of ETH_REQUEST?

        Another question: I want to know the timestamp of captured packets. Does the api allow me to do this? If not, can I assume that the timestamp at the time of the Read call is the timestamp of the packet?

        Translated with DeepL.com (free version)

        October 31, 2024 at 10:27 am in reply to: Query on Filtering Capabilities in Windows Packet Filter API #13920
        ocante
        Participant

          Vadim

          Is it possible to set a filter to capture only TCP packets in the connection and disconnection phases (SYN, SYN ACK, RST, FIN)?

          Best regards,

          Olivier

        • Author
          Posts
        Viewing 3 posts - 1 through 3 (of 3 total)