NET_FW_EDGE_TRAVERSAL_TYPE enumeration (icftypes.h)
The NET_FW_EDGE_TRAVERSAL_TYPE enumerated type specifies the conditions under which edge traversal traffic is allowed.
Syntax
typedef enum NET_FW_EDGE_TRAVERSAL_TYPE_ {
NET_FW_EDGE_TRAVERSAL_TYPE_DENY = 0,
NET_FW_EDGE_TRAVERSAL_TYPE_ALLOW,
NET_FW_EDGE_TRAVERSAL_TYPE_DEFER_TO_APP,
NET_FW_EDGE_TRAVERSAL_TYPE_DEFER_TO_USER
} NET_FW_EDGE_TRAVERSAL_TYPE;
Constants
NET_FW_EDGE_TRAVERSAL_TYPE_DENYValue: 0 Edge traversal traffic is always blocked. This is the same as setting the EdgeTraversal property using INetFwRule to VARIANT_FALSE. |
NET_FW_EDGE_TRAVERSAL_TYPE_ALLOWEdge traversal traffic is always allowed. This is the same as setting the EdgeTraversal property using INetFwRule to VARIANT_TRUE. |
NET_FW_EDGE_TRAVERSAL_TYPE_DEFER_TO_APPEdge traversal traffic is allowed when the application sets the IPV6_PROTECTION_LEVEL socket option to PROTECTION_LEVEL_UNRESTRICTED. Otherwise, it is blocked. |
NET_FW_EDGE_TRAVERSAL_TYPE_DEFER_TO_USERThe user is prompted whether to allow edge traversal traffic when the application sets the IPV6_PROTECTION_LEVEL socket option to PROTECTION_LEVEL_UNRESTRICTED. If the user chooses to allow edge traversal traffic, the rule is modified to defer to the application's settings. If the application has not set the IPV6_PROTECTION_LEVEL socket option to PROTECTION_LEVEL_UNRESTRICTED, edge traversal traffic is blocked. In order to use this option, the firewall rule must have both the application path and protocol scopes specified. This option cannot be used if port(s) are defined. |
Remarks
In order for Windows Firewall to dynamically allow edge traversal traffic, the application must use the IPV6_PROTECTION_LEVEL socket option on the listening socket and set it to PROTECTION_LEVEL_UNRESTRICTED only in the cases where edge traversal traffic should be allowed. The Windows Firewall rule added for the application must then set its edge traversal option to NET_FW_EDGE_TRAVERSAL_TYPE_DEFER_TO_APP or NET_FW_EDGE_TRAVERSAL_TYPE_DEFER_TO_USER.
Requirements
| Requirement | Value |
|---|---|
| Minimum supported client | Windows 7 [desktop apps only] |
| Minimum supported server | Windows Server 2008 R2 [desktop apps only] |
| Header | icftypes.h |
See also
Feedback
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see: https://aka.ms/ContentUserFeedback.
Submit and view feedback for