rasteroid
04-13-2003, 11:15 AM
I have been looking for a firewall product that supports tunable IP datagram manipulation. I need to mangle outgoing IP datagrams from my PC in a similar manner as iptables can for Linux.
Specifically, I need to be able to set bits 6 and 7 of the TOS (Type of Service) octet of each outgoing IP datagram to 1. With iptables in Linux for instance, I am able to perform this as follows:
iptables -t mangle -A OUTPUT -j TOS --set-tos 03
Now, I happened to stumble across the Outpost Firewall website as I searched for any firewalls that supported this type of mangling. And here I learned that customized plug-ins may be developed for Outpost.
So my question for the seasoned plugin developers is as follows:
Would you advise that I use Outpost to do this sort of manipulation? OR should I stick to the Windows DDK and try to write a network driver that performs this mangling?
Or even better yet, do you know of any existing firewall application that supports this sort of packet manipulation? I am asking for this advice before I have purchased the Outpost firewall.. because there are so many firewall products on the Internet, and it is very difficult to compare them all thoroughly.
If you need to know why I am trying to accomplish this, please refer to my website:
http://www.rasteroid.com/software/slyberoam/
Sincerely,
Rasteroid
Specifically, I need to be able to set bits 6 and 7 of the TOS (Type of Service) octet of each outgoing IP datagram to 1. With iptables in Linux for instance, I am able to perform this as follows:
iptables -t mangle -A OUTPUT -j TOS --set-tos 03
Now, I happened to stumble across the Outpost Firewall website as I searched for any firewalls that supported this type of mangling. And here I learned that customized plug-ins may be developed for Outpost.
So my question for the seasoned plugin developers is as follows:
Would you advise that I use Outpost to do this sort of manipulation? OR should I stick to the Windows DDK and try to write a network driver that performs this mangling?
Or even better yet, do you know of any existing firewall application that supports this sort of packet manipulation? I am asking for this advice before I have purchased the Outpost firewall.. because there are so many firewall products on the Internet, and it is very difficult to compare them all thoroughly.
If you need to know why I am trying to accomplish this, please refer to my website:
http://www.rasteroid.com/software/slyberoam/
Sincerely,
Rasteroid