摘要
在NDIS中间层截获所有经过网卡接收和发送的封包的基础上,详细阐述了针对用两个不同接收函数接收网络封包的分析处理方法,并给出了实例及代码,实现对一些常见协议类型的包分析及包过滤,并显示包发送方的MAC地址和IP地址及包的协议类型,能够通过设置拒绝从某一IP地址或MAC地址来的全部包,可以拒绝广播包,能够防止Ping攻击。
Based on the capture of the packets at NDIS intermediate layer, we detailedly discussed the method used to deal with the received network packets to the two receive-packet-functions, also, examples and codes are given . It analyze and filtrate the packets of familiar protocol type, display what protocol is used and display the IP and the MAC address of the sender, refuse any packet from the given IP or MAC address and refuse the broadcast packets, the Ping attack can be void too.
出处
《现代计算机》
2004年第3期64-67,共4页
Modern Computer