search

doadin / peerblock

Automatically exported from code.google.com/p/peerblock
Other
0 stars 0 forks source link

(Windows 7) No way to block blacklisted IP requests from (to?) MS Virtual PCs (Win XP Mode) #118

Open GoogleCodeExporter opened 9 years ago

GoogleCodeExporter commented 9 years ago 
What steps will reproduce the problem?
1. Install Virtual PC RC and Windows XP Mode RC
 ( http://www.microsoft.com/windows/virtual-pc )
2. Configure XP Mode Network mode to 1st: Shared Network (NAT), or
 2nd: own IP adress from router directly thru network adapter
3. Ping 3.0.0.0

What is the expected output? What do you see instead?
at least in 1st network config, the ping (or anything else) should get
blocked by peerblock (there is a virtual pc networkfilter driver in the
network adapter list), but it doesn't! Nothing from the VPC shows up in
peerblock!

What version of PeerBlock are you using? On what operating system? 32- or
64-bit?
Peerblock r162, Windows 7 RTM x86 german

Please provide any additional information below.  Make sure to attach
peerblock.log and/or any screenshots that would help explain your problem.

Possible workaround of course would be to install another peerblock
instance in the Virtual PC XP Mode, but that would be an unnecessary
resourcehog in my opinion ;)
Don't know if it even is possible for peerblock to catch the vpc access to
my NIC, I just was surprised it doesn't already.. but there should be a way
to catch the stuff the vpc networkfilterdriver sends to my networkcard,
shouldn't there?
Also, it would be interesting to know if peerblock blocks accesses from
blacklisted IPs TO a program running in the XP Mode; it probably does, but
I don't know how I would test that at the moment...
thanks

Original issue reported on code.google.com by rasmoe@gmail.com on 21 Sep 2009 at 2:02

Attachments:

GoogleCodeExporter commented 9 years ago 
I haven't yet tested Virtual PC / XP Mode - interesting that it would behave 
that
way.  We make use of the Microsoft Base Filtering Engine to hook into the 
networking
stack, as I believe most firewalls do.  Sounds as though Win7 is letting 
Virtual PCs
completely bypass this layer of Windows, probably at the HAL (or
hardware-virtualization?) level or something.

If you try running an XP-mode instance of PeerBlock to block XP-mode programs, 
please
post back your results!  I'll look further into this probably in the post-1.0 
timeframe.

Thanks for the problem report!

Original comment by peerbloc...@gmail.com on 22 Sep 2009 at 1:31