Windows Filtering Platform (Compact 2013)
3/26/2014
Windows Filtering Platform (WFP) is a set of API and system services that provide a platform for creating network filtering applications. Developers can use the WFP API to write code that interacts with the packet processing that takes place at several layers in the networking stack of the operating system. Network data can be filtered and modified before it reaches its destination.
By providing a simpler development platform, WFP is designed to replace previous packet filtering technologies such as:
- Transport Driver Interface (TDI) filters
- Network Driver Interface Specification (NDIS) filters
- Winsock Layered Service Providers (LSP)
Windows Filtering Platform is a development platform, not a firewall itself. However, with the WFP API, developers can implement the following:
- Firewalls
- Intrusion detection systems
- Antivirus programs
- Network monitoring tools
- Parental controls
WFP integrates with, and provides support for, firewall features such as authenticated communication and dynamic firewall configuration, based on the use of sockets API (application-based policy) by applications.
The WFP API also provides infrastructure for the following:
- IPsec policy management
- Change notifications
- Network diagnostics
- Stateful filtering
The WFP API consists of a user-mode API and a kernel-mode API. This section provides an overview of the entire WFP and describes in detail only the user-mode portion of the WFP API. For a detailed description of the kernel-mode WFP API, see the Windows Driver Kit online Help.
In This Section
- WFP Catalog Items and Sysgen Variables
Describes the WFP catalog items and SYSGEN variables you use to add this feature to your OS.
- WFP Constants
Describes the constants exposed by the WFP API.
- WFP Enumerated Types
Describes the enumerated types exposed by the WFP API.
- WFP Functions
Describes the functions exposed by the WFP API.
- WFP Structures
Describes the structures exposed by the WFP API.