IP Firewall OS Design Development (Windows Embedded CE 6.0)
1/6/2010
The IP firewall is typically used on an Internet gateway device. It can also be used as a host firewall. The firewall helps protect the device on which it runs and helps to protect devices on the private side of the gateway. The firewall blocks IP traffic at the IP and transport layers.
This firewall uses rules to determine whether to block, allow, or log inbound or outbound traffic. Inbound traffic originates from a host on the public side of the firewall. Outbound traffic originates from either a host on the private side or the device that is running the firewall. For more information about the IP Firewall, see IP Firewall Application Development.
OS Design Information
The following table shows operating system design information for the IP Firewall.
Element | Information |
---|---|
Dependencies |
TCP/IP, IP Helper API, Winsock, FormatMessage API, and Full C Runtime |
Hardware considerations |
None |
Modules and Components
The following table shows the components and modules that implement the IP Firewall.
Item | Module | Component |
---|---|---|
IP Firewall configuration API |
fwapi |
None |
IP firewall driver |
fw6 |
None |
IP Firewall Implementation Considerations
You can include the Firewall Catalog item in your OS design. Choosing this Catalog item sets the appropriate Sysgen variable for enabling the IP Firewall.
The following table shows the Sysgen variable that enables the IP Firewall.
Sysgen variable | Description |
---|---|
SYSGEN_FIREWALL |
When this variable is set, the IP Firewall is included in the run-time image. The firewall blocks IP traffic at the IP and transport layers. |
Application Development Topics
IP Firewall Application Development
Best Practices for the IP Firewall
See Also
Reference
IP Firewall Reference
IP Firewall Logging Reference