IPsecSaContextCreate0 function (fwpmk.h)

The IPsecSaContextCreate0 function creates an IPsec security association (SA) context.

Syntax

NTSTATUS IPsecSaContextCreate0(
  [in]            HANDLE               engineHandle,
  [in]            const IPSEC_TRAFFIC0 *outboundTraffic,
  [out, optional] UINT64               *inboundFilterId,
  [out]           UINT64               *id
);

Parameters

[in] engineHandle

Handle for an open session to the filter engine. Call FwpmEngineOpen0 to open a session to the filter engine.

[in] outboundTraffic

The outbound traffic of the SA.

[out, optional] inboundFilterId

Optional filter identifier of the cached inbound filter corresponding to the outboundTraffic parameter specified by the caller. Base filtering engine (BFE) may cache the inbound filter identifier and return the cached value, if available. Caller must handle the case when BFE does not have a cached value, in which case this parameter will be set to 0.

[out] id

The identifier of the IPsec SA context.

Return value

Remarks

This function cannot be called from within a transaction, it fails with FWP_E_TXN_IN_PROGRESS. See Object Management for more information about transactions.

This function cannot be called from within a dynamic session. The call fails with FWP_E_DYNAMIC_SESSION_IN_PROGRESS. See Object Management for more information about dynamic sessions.

The caller needs FWPM_ACTRL_ADD access to the IPsec security associations database. See Access Control for more information.

IPsecSaContextCreate0 is a specific implementation of IPsecSaContextCreate. See WFP Version-Independent Names and Targeting Specific Versions of Windows for more information.

Requirements

See also

• FwpmEngineOpen0
• FWPM_ACTRL_ADD
• IPSEC_TRAFFIC0
• Access Control
• Object Management
• WFP Error Codes
• WFP Version-Independent Names and Targeting Specific Versions of Windows