Failed to redirect connected UDP traffic to a local proxy service
Applies to: Windows Driver Kit 10
Symptoms
Consider the following scenario:
- A local process sends User Datagram Protocol (UDP) packets by using the Windows Sockets (Winsock) API.
- An application Layer Enforcement (ALE) callout driver was developed using Windows Filtering Platform (WFP), which redirects traffic from the local process.
- A local proxy service receives the UDP packets that are redirected by the callout driver.
In this scenario, if the local process uses the connect and send functions to send UDP packets through a connected UDP protocol, the packets are dropped and the redirection to the local proxy service fails.
Cause
The issue occurs because the WFP redirect records are referenced incorrectly.
Workaround
To redirect traffic successfully to the local proxy service, use the sendto function to send UDP packets through a connectionless UDP protocol.
More information
To learn how to enable application layer enforcement (ALE) callout drivers to inspect and redirect connections, see Using Bind or Connect Redirection.
Feedback
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see: https://aka.ms/ContentUserFeedback.
Submit and view feedback for