October 29, 2007 - PCAUSA is in the process (finally...) of updating various
NDIS and TDI filter samples to span the range of Windows platforms from
Windows 2000 through Windows Vista and Windows Server 2008.

One of the first items to be completed is a set of Transport Data Interface
(TDI) and Windows Filtering Platform (WFP) drivers that work with a common
port-monitoring application. Both the TDI and WFP drivers are either new or
extensively revised. Both are based on the Kernel Mode Driver Framework
(KMDF). The drivers also provide support for Windows 64-Bit Editions.

Transport-level filtering is performed in the kernel but above or within the
TCP/IP protocol driver. At this level you can monitor TCP stream data -
including data exchanged between client and server on the same host.

The IpPortMon tool may be useful for TCP data stream monitoring to some of
you. If you are interested in this tool and the companion driver suite you
can find more information and downloadable sample at the following URL:

http://www.pcausa.com/filters/transport/ipportmonitor/default.htm

This should be considered to "RC" level. If you encounter problems or have
suggestions for enhancements, let me know.

I will provide information about licensing the driver sources in the near
future.

Thomas F. Divine
tdivine@...
(Remove "NO" and "SPAM" form the address above)