What is the format of the byte stream obtained by FWPM_LAYER_ALE_CONNECT_REDIRECT_V4?

[赫敏璋]

int WSAIoctl(
(socket) s, // descriptor identifying a socket
SIO_SET_WFP_CONNECTION_REDIRECT_RECORDS, // dwIoControlCode
NULL, // lpvInBuffer
0, // cbInBuffer
(LPVOID) lpvOutBuffer, // output buffer
(DWORD) cbOutBuffer, // size of output buffer
(LPDWORD) lpcbBytesReturned, // number of bytes returned
(LPWSAOVERLAPPED) lpOverlapped, // OVERLAPPED structure
(LPWSAOVERLAPPED_COMPLETION_ROUTINE) lpCompletionRoutine, // completion routine
);




Using the above code will get the following byte stream, what is its format? What is the data structure?

Services and Segment structure in TCP - GeeksforGeeks

What is the relationship with the tcp protocol format, ip protocol format? I know this stream should contain tcp protocol and ip protocol format.


0x0000004113F2B3F0 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................................
0x0000004113F2B410 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................................
0x0000004113F2B430 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 02 00 01 bb cb d0 2b 6f 00 00 00 00 00 00 00 00 ...................???+o........
0x0000004113F2B450 05 00 00 00 69 f3 c3 ed 01 00 00 00 00 00 00 00 02 00 00 00 00 00 00 00 00 00 00 00 ab 23 85 e4 ....i???....................?#??
0x0000004113F2B470 88 c4 0e c9 03 a7 ff ff 88 c4 0e c9 03 a7 ff ff c1 a1 6f 9f e0 93 9e 6d 2d bc 82 98 ab 23 85 e4 ??.?.?..??.?.?..??o????m-????#??
0x0000004113F2B490 68 db a1 fd ab 1e 67 a9 33 10 1e b6 ac 9e 3f e7 6e d6 a0 4e fb d3 7d 75 01 00 00 00 00 00 00 00 h????.g?3..?????n??N??}u........
0x0000004113F2B4B0 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 02 00 22 7b 7f 00 00 01 00 00 00 00 00 00 00 00 .................."{............
0x0000004113F2B4D0 68 db a1 fd ab 1e 67 a9 d7 26 dd 72 8f 53 a6 3b 7f b2 80 b2 46 5f 95 4c 2d bc 82 98 ab 23 85 e4 h????.g??&?r?S?;.?€?F_?L-????#??
0x0000004113F2B4F0 68 db a1 fd ab 1e 67 a9 6d 2b e3 f2 43 03 50 28 50 0b 25 76 2b 55 14 79 01 00 00 00 00 00 00 00 h????.g?m+??C.P(P.%v+U.y........
0x0000004113F2B510 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 70 4d 73 79 e6 f4 74 cb ........................pMsy??t?
0x0000004113F2B530 3e 81 4c 64 f8 68 d1 f1 84 6f 9f d7 2f ca 3b d7 2c 06 00 00 00 00 00 00 08 00 01 00 00 00 00 00 >?Ld?h???o??/?;?,...............
0x0000004113F2B550 00 00 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................................
0x0000004113F2B570 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................................
0x0000004113F2B590 00 00 00 00 00 00 00 00 b2 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ........?.......................
0x0000004113F2B5B0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 a0 4b 37 cd 03 a7 ff ff 7e 00 00 00 01 00 00 00 ................?K7?.?..~.......
0x0000004113F2B5D0 6c 00 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00 14 00 00 00 00 00 00 00 44 00 00 00 00 00 00 l........................D......
0x0000004113F2B5F0 00 54 00 00 00 00 00 00 00 64 00 00 00 00 00 00 00 74 00 00 00 00 00 00 00 84 00 00 00 00 00 00 .T.......d.......t.......?......
0x0000004113F2B610 00 94 00 00 00 00 00 00 00 b4 00 00 00 00 00 00 00 c4 00 00 00 00 00 00 00 d4 00 00 00 00 00 00 .?.......?.......?.......?......
0x0000004113F2B630 00 e4 00 00 00 00 00 00 00 04 01 00 00 00 00 00 00 14 01 00 00 00 00 00 00 34 01 00 00 00 00 00 .?.......................4......
0x0000004113F2B650 00 44 01 00 00 00 00 00 00 54 01 00 00 00 00 00 00 64 01 00 00 00 00 00 00 74 01 00 00 00 00 00 .D.......T.......d.......t......
0x0000004113F2B670 00 84 01 00 00 00 00 00 00 94 01 00 00 00 00 00 00 a4 01 00 00 00 00 00 00 b4 01 00 00 00 00 00 .?.......?.......?.......?......
0x0000004113F2B690 00 c4 01 00 00 00 00 00 00 d4 01 00 00 00 00 00 00 e4 01 00 00 00 00 00 00 f4 01 00 00 00 00 00 .?.......?.......?.......?......
0x0000004113F2B6B0 00 04 02 00 00 00 00 00 00 14 02 00 00 00 00 00 00 24 02 00 00 00 00 00 00 34 02 00 00 00 00 00 .................$.......4......
0x0000004113F2B6D0 00 44 02 00 00 00 00 00 00 54 02 00 00 00 00 00 00 64 02 00 00 00 00 00 00 74 02 00 00 00 00 00 .D.......T.......d.......t......
0x0000004113F2B6F0 00 84 02 00 00 00 00 00 00 94 02 00 00 00 00 00 00 b4 02 00 00 00 00 00 00 c4 02 00 00 00 00 00 .?.......?.......?.......?......
0x0000004113F2B710 00 f4 02 00 00 00 00 00 00 04 03 00 00 00 00 00 00 14 03 00 00 00 00 00 00 24 03 00 00 00 00 00 .?.......................$......
0x0000004113F2B730 00 34 03 00 00 00 00 00 00 44 03 00 00 00 00 00 00 54 03 00 00 00 00 00 00 64 03 00 00 00 00 00 .4.......D.......T.......d......
0x0000004113F2B750 00 74 03 00 00 00 00 00 00 84 03 00 00 00 00 00 00 94 03 00 00 00 00 00 00 a4 03 00 00 00 00 00 .t.......?.......?.......?......
0x0000004113F2B770 00 b4 03 00 00 00 00 00 00 c4 03 00 00 00 00 00 00 d4 03 00 00 00 00 00 00 e4 03 00 00 00 00 00 .?.......?.......?.......?......
0x0000004113F2B790 00 f4 03 00 00 00 00 00 00 04 04 00 00 00 00 00 00 14 04 00 00 00 00 00 00 24 04 00 00 00 00 00 .?.......................$......
0x0000004113F2B7B0 00 54 04 00 00 00 00 00 00 74 04 00 00 00 00 00 00 a4 04 00 00 00 00 00 00 b4 04 00 00 00 00 00 .T.......t.......?.......?......
0x0000004113F2B7D0 00 c4 04 00 00 00 00 00 00 14 05 00 00 00 00 00 00 24 05 00 00 00 00 00 00 34 05 00 00 00 00 00 .?...............$.......4......
0x0000004113F2B7F0 00 44 05 00 00 00 00 00 00 54 05 00 00 00 00 00 00 64 05 00 00 00 00 00 00 74 05 00 00 00 00 00 .D.......T.......d.......t......
0x0000004113F2B810 00 84 05 00 00 00 00 00 00 a4 05 00 00 00 00 00 00 b4 05 00 00 00 00 00 00 c4 05 00 00 00 00 00 .?.......?.......?.......?......
0x0000004113F2B830 00 d4 05 00 00 00 00 00 00 e4 05 00 00 00 00 00 00 f4 05 00 00 00 00 00 00 04 06 00 00 00 00 00 .?.......?.......?..............
0x0000004113F2B850 00 14 06 00 00 00 00 00 00 24 06 00 00 00 00 00 00 34 06 00 00 00 00 00 00 54 06 00 00 00 00 00 .........$.......4.......T......
0x0000004113F2B870 00 64 06 00 00 00 00 00 00 84 06 00 00 00 00 00 00 94 06 00 00 00 00 00 00 44 07 00 00 00 00 00 .d.......?.......?.......D......
0x0000004113F2B890 00 54 07 00 00 00 00 00 00 52 0d 00 00 00 00 00 00 62 0d 00 00 00 00 00 00 72 0d 00 00 00 00 00 .T.......R.......b.......r......
0x0000004113F2B8B0 00 82 0d 00 00 00 00 00 00 92 0d 00 00 00 00 00 00 a2 0d 00 00 00 00 00 00 c4 0d 00 00 00 00 00 .?.......?.......?.......?......
0x0000004113F2B8D0 00 d4 0d 00 00 00 00 00 00 e4 0d 00 00 00 00 00 00 f4 0d 00 00 00 00 00 00 04 0e 00 00 00 00 00 .?.......?.......?..............
0x0000004113F2B8F0 00 14 0e 00 00 00 00 00 00 24 0e 00 00 00 00 00 00 34 0e 00 00 00 00 00 00 44 0e 00 00 00 00 00 .........$.......4.......D......
0x0000004113F2B910 00 54 0e 00 00 00 00 00 00 64 0e 00 00 00 00 00 00 74 0e 00 00 00 00 00 00 84 0e 00 00 00 00 00 .T.......d.......t.......?......
0x0000004113F2B930 00 a4 0e 00 00 00 00 00 00 b4 0e 00 00 00 00 00 00 c4 0e 00 00 00 00 00 00 d4 0e 00 00 00 00 00 .?.......?.......?.......?......
0x0000004113F2B950 00 f4 0e 00 00 00 00 00 00 d4 0f 00 00 00 00 00 00 e4 0f 00 00 00 00 00 00 f4 0f 00 00 00 00 00 .?.......?.......?.......?......
0x0000004113F2B970 00 04 10 00 00 00 00 00 00 14 10 00 00 00 00 00 00 24 10 00 00 00 00 00 00 34 10 00 00 00 00 00 .................$.......4......
0x0000004113F2B990 00 44 10 00 00 00 00 00 00 54 10 00 00 00 00 00 00 64 10 00 00 00 00 00 00 66 10 00 00 00 00 00 .D.......T.......d.......f......
0x0000004113F2B9B0 00 32 11 00 00 00 00 00 00 36 11 00 00 00 00 00 a0 00 a2 00 5c 00 64 00 65 00 76 00 69 00 63 00 .2.......6......?.?.\.d.e.v.i.c.
0x0000004113F2B9D0 65 00 5c 00 68 00 61 00 72 00 64 00 64 00 69 00 73 00 6b 00 76 00 6f 00 6c 00 75 00 6d 00 65 00 e.\.h.a.r.d.d.i.s.k.v.o.l.u.m.e.
0x0000004113F2B9F0 33 00 5c 00 70 00 72 00 6f 00 67 00 72 00 61 00 6d 00 20 00 66 00 69 00 6c 00 65 00 73 00 20 00 3.\.p.r.o.g.r.a.m. .f.i.l.e.s. .
0x0000004113F2BA10 28 00 78 00 38 00 36 00 29 00 5c 00 67 00 6f 00 6f 00 67 00 6c 00 65 00 5c 00 63 00 68 00 72 00 (.x.8.6.).\.g.o.o.g.l.e.\.c.h.r.
0x0000004113F2BA30 6f 00 6d 00 65 00 5c 00 61 00 70 00 70 00 6c 00 69 00 63 00 61 00 74 00 69 00 6f 00 6e 00 5c 00 o.m.e.\.a.p.p.l.i.c.a.t.i.o.n.\.
0x0000004113F2BA50 63 00 68 00 72 00 6f 00 6d 00 65 00 2e 00 65 00 78 00 65 00 00 00 00 00 00 00 00 00 00 00 00 00 c.h.r.o.m.e...e.x.e.............
0x0000004113F2BA70 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................................
0x0000004113F2BA90 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................................
0x0000004113F2BAB0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................................
0x0000004113F2BAD0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................................
0x0000004113F2BAF0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0

Continue reading...