473,769 Members | 3,383 Online
Bytes | Software Development & Data Engineering Community
+ Post

Home Posts Topics Members FAQ

IntPtr, Unmanaged DLL, and File IO???? Need Network Understanding

2 New Member
Hello, I am working with developing an application that uses the Netmon 3.2 API. Currently they have a PInvoke wrapper to access unmanaged C++ DLL functions.

Basically what I am attempting to do is rewrite an example application (written in C++ and provided in their documentation) in C#. Everything compiles fine and executes, but I have no .cap file at the end of the run. Some things that may be wrong: the ADAPTER_INDEX is not correct OR the IntPtr associated with the capture file is not getting passed correctly. Interesting note: when I set a breakpoint in the callback function the program never enters this block (which it should leading me to suspect the ADAPTER_INDEX)

Here is my code:

Expand|Select|Wrap|Line Numbers
  1.  
  2. using System;
  3. using System.Collections.Generic;
  4. using System.Linq;
  5. using System.Text;
  6. using Microsoft.Protocols.TestTools.Netmon.API;
  7. using System.Windows.Forms;
  8. using System.Threading;
  9. using System.Runtime.InteropServices;
  10. using System.IO;
  11.  
  12.  
  13. namespace Network_Monitor_Demo
  14. {
  15.     public struct Constants
  16.     {
  17.         public static UInt32 ADAPTER_INDEX = 0;
  18.     }
  19.  
  20.     public class Netmon
  21.     {
  22.  
  23.         public Netmon()
  24.         {
  25.  
  26.            uint ret;
  27.  
  28.  
  29.             //Open a capture file for saving frames.
  30.            string path = @"C:\\Capture\\10sec.cap";
  31.  
  32.             IntPtr myCapFile;
  33.             uint CapSize;
  34.             ret = NetmonAPI.NmCreateCaptureFile(path, 20000000, NmCaptureFileFlag.WrapAround, out myCapFile, out CapSize);
  35.             if (ret != 0)
  36.             {
  37.                 MessageBox.Show("Error Opening Capture File" + "10sec.cap");
  38.                 return;
  39.             }
  40.  
  41.             //Open the capture engine
  42.             IntPtr myCaptureEngine;
  43.             ret = NetmonAPI.NmOpenCaptureEngine(out myCaptureEngine);
  44.  
  45.             if (ret != 0)
  46.             {
  47.                 MessageBox.Show("Error opening capture engine.");
  48.                 NetmonAPI.NmCloseHandle(myCapFile);
  49.                 return;
  50.  
  51.             }
  52.  
  53.             ret = NetmonAPI.NmConfigAdapter(myCaptureEngine, Constants.ADAPTER_INDEX, new CaptureCallbackDelegate(FrameIndicationCallback), myCapFile, NmCaptureCallbackExitMode.ReturnRemainFrames);
  54.  
  55.             if (ret != 0)
  56.             {
  57.                 MessageBox.Show("Error configuration adapter.");
  58.                 NetmonAPI.NmCloseHandle(myCaptureEngine);
  59.                 NetmonAPI.NmCloseHandle(myCapFile);
  60.  
  61.                 return;
  62.             }
  63.  
  64.             MessageBox.Show("Capturing for 10 seconds.");
  65.             NetmonAPI.NmStartCapture(myCaptureEngine, Constants.ADAPTER_INDEX, NmCaptureMode.Promiscuous);
  66.  
  67.  
  68.  
  69.             Thread.Sleep(10000);
  70.  
  71.  
  72.             MessageBox.Show("Stopping Capture.");
  73.             NetmonAPI.NmStopCapture(myCaptureEngine, Constants.ADAPTER_INDEX);
  74.             NetmonAPI.NmCloseHandle(myCaptureEngine);
  75.             NetmonAPI.NmCloseHandle(myCapFile);
  76.  
  77.             return;
  78.  
  79.         }
  80.  
  81.  
  82.         public void FrameIndicationCallback(IntPtr hCapEng, UInt32 ulAdatIdx, IntPtr pContext, IntPtr hRawFrame)
  83.         {
  84.             IntPtr capFile = pContext;
  85.             NetmonAPI.NmAddFrame(capFile, hRawFrame);
  86.         }
  87.  
  88.     }
  89. }
  90.  
  91.  

And here is the code provided in the Network Monitor API documentation, doing the same thing in C++. Network Monitor 3.2 is a free download from Microsoft Downloads.


Expand|Select|Wrap|Line Numbers
  1. #include "windows.h"
  2. #include "stdio.h"
  3. #include "stdlib.h"
  4. #include "objbase.h"
  5. #include "ntddndis.h"
  6. #include "NMApi.h"
  7.  
  8. #define ADAPTER_INDEX    0
  9.  
  10. void __stdcall 
  11. MyFrameIndication(HANDLE hCapEng, ULONG ulAdaptIdx, PVOID pContext, HANDLE hRawFrame)
  12. {
  13.     HANDLE capFile = (HANDLE)pContext;
  14.     NmAddFrame(capFile, hRawFrame);
  15. }
  16.  
  17. int __cdecl wmain(int argc, WCHAR* argv[])
  18. {
  19.     ULONG ret;
  20.  
  21.     // Open a capture file for saving frames.
  22.     HANDLE myCapFile;
  23.     ULONG CapSize;
  24.     ret = NmCreateCaptureFile(L"20sec.cap", 20000000, NmCaptureFileWrapAround, &myCapFile, &CapSize);
  25.     if(ret != ERROR_SUCCESS)
  26.     {
  27.         wprintf(L"Error opening capture file, 0x%X\n", ret);
  28.         return ret;
  29.     }
  30.  
  31.     // Open the capture engine.
  32.     HANDLE myCaptureEngine;
  33.     ret = NmOpenCaptureEngine(&myCaptureEngine);
  34.     if(ret != ERROR_SUCCESS)
  35.     {
  36.         wprintf(L"Error opening capture engine, 0x%X\n", ret);
  37.         NmCloseHandle(myCapFile);
  38.         return ret;
  39.     }
  40.  
  41.     ret = NmConfigAdapter(myCaptureEngine, ADAPTER_INDEX, MyFrameIndication, myCapFile);
  42.     if(ret != ERROR_SUCCESS)
  43.     {
  44.         wprintf(L"Error configuration adapter, 0x%X\n", ret);
  45.         NmCloseHandle(myCaptureEngine);
  46.         NmCloseHandle(myCapFile);
  47.         return ret;
  48.     }
  49.  
  50.     wprintf(L"Capturing for 20 seconds\n");
  51.     NmStartCapture(myCaptureEngine, ADAPTER_INDEX, NmLocalOnly);
  52.  
  53.     Sleep(20000);
  54.  
  55.     wprintf(L"Stopping capture\n");
  56.     NmStopCapture(myCaptureEngine, ADAPTER_INDEX);
  57.     NmCloseHandle(myCaptureEngine);
  58.     NmCloseHandle(myCapFile);
  59.  
  60.     return 0;
  61. }
  62.  
  63.  
  64.  
Dec 21 '08 #1
4 4688
Plater
7,872 Recognized Expert Expert
I can't say for sure if it matters or not, but have you considered moving the code out of the constructor and into a function?
It might behave a little nicer.

Also, your adapter index is always 0, are you sure that is not the loopback adapter?
Dec 22 '08 #2
nukefusion
221 Recognized Expert New Member
Additionally, have you installed WDK? According to the NetMon documentation this is a prerequisite to successfully use the code sample you've posted.

I'd also double check the following line from your code that differs from the NetMon sample:

Expand|Select|Wrap|Line Numbers
  1. NetmonAPI.NmStartCapture(myCaptureEngine, Constants.ADAPTER_INDEX, NmCaptureMode.Promiscuous);
  2.  
I imagine you'd need to make sure your network card supports promiscuous mode (many do not) and, if it does, put it into promiscuous mode somehow before starting the capture.
Dec 22 '08 #3
Plater
7,872 Recognized Expert Expert
promiscuous mode really only matters if you have an older network structure.
A newer-switch will not route traffic down your port if it shouldn't go to you, so promiscuous mode doesn't buy you much.
Hubs will. And I *believe* older switches might.

I had a wireless card that supported promiscuous mode (they corrected it later) so I could watch every other wireless card's traffic. It was especially fun when I disconnected from an endpoint and was able to pick up multiple endpoint's traffic.
Dec 22 '08 #4
Uriel88
2 New Member
Thanks guys for your help. It was the Adapter Index, my wireless card was adapter 3. So I had to implement a method for enumerating and finding the active internet connections adapter and using that index.

The sad thing was I only tested adapters 0 1 and 2 before I posted.... hahhah.

Well thanks again!
Dec 22 '08 #5

Sign in to post your reply or Sign up for a free account.

Similar topics
2
2021
IntPtr
by: Lou | last post by:
What is the C# equivelent of the VB .Net "IntPtr" i need to pass it to the File System object?
C# / C Sharp
3
5301
IntPtr and fixed
by: vipin | last post by:
Hi All Is IntPtr a managed or unmanaged data type in c# Do I need to be doing Intptr = IPtr fixed(void * ptr = (void *)IPtr ....
C# / C Sharp
13
7433
IntPtr and method P/Invoke
by: Christian Westerlund | last post by:
Hi! I'm trying to use P/Invoke and a Method which takes an IntPtr where I am supposed to put an address to a method which the native method will use to communicate back to me. How do I convert a method to an IntPtr? / Christian
C# / C Sharp
4
11371
Reading file contents to unmanaged memory block (IntPtr) from C#
by: TT (Tom Tempelaere) | last post by:
Hi, In my project I need to use VirtualAlloc (kernel32) to allocate memory to ensure that data is 4K aligned. I need to fill the data block with file contents. I notice that there are no 'Read' operations to memory pointed to be an IntPtr (I checked FileStream & BinaryReader). Can I do this from C#/.NET? I'm currently mapping C-functions to achieve this, and I'm not too fond of doing that. Can someone help me with this?
C# / C Sharp
10
4655
Indexing of IntPtr
by: Tamir Khason | last post by:
I have a pointer to array and I want to apply indexing to this Array so I have function (name it IntPrt Func) to go to certain member I can use (as C++) Func, but in C# I recieve an error "Cannot apply indexing with to an expression of type 'System.IntPtr'". How to get rid of it? TNX --
C# / C Sharp
5
9842
Mashalling IntPtr into a byte array? I can see how to do it the other way around!
by: Robin Tucker | last post by:
I need to marshal an IntPtr (which I've got from GlobalLock of an HGLOBAL) into a byte array. I know the size of the array required and I've got a pointer to the blob, but I can't see how to copy the memory across. Using Marshal.PtrStructure doesn't work - it says my byte() array is not blittable! (byte is a blittable type however). Cannot use Marshal.Copy, because that works the other way around (for mashalling to COM, not from it). ...
Visual Basic .NET
8
2352
IntPtr != HANDLE conversion problem
by: Shawn B. | last post by:
Greetings, Me again. I have (roughly) the following code: HANDLE hConsoleOutput; HANDLE hConsoleInput;
.NET Framework
4
3839
Cast between a function pointer and IntPtr
by: Abra | last post by:
I have an application where I need to send a inter-process message (a data stream) that contains among other the address of a function (member of a class). For that, I need to serialize it, so I tried to cast it to an IntPtr, but without success. And of course, on the receiever side, I need to cast it back from IntPtr to the function pointer, in order to be able to perform the callback function call, but this doesn't work either. How...
C# / C Sharp
8
5911
How to convert a Byte() to an IntPtr in VB
by: Serge BRIC | last post by:
My application, written in .NET VB, tries to get a communication port handle from a TAPI object with this code: Dim vFileHandle As Byte() = appel.GetIDAsVariant("comm/datamodem") The vFileHandle is supposed to be a file handle (an IntPtr, I suppose). How can I convert this Byte() in this IntPtr ?
Visual Basic .NET
0
9586
marktang
What is ONU?
by: marktang | last post by:
ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However, people are often confused as to whether an ONU can Work As a Router. In this blog post, we’ll explore What is ONU, What Is Router, ONU & Router’s main usage, and What is the difference between ONU and Router. Let’s take a closer look ! Part I. Meaning of...
General
0
10210
Oralloy
Problem With Comparison Operator <=> in G++
by: Oralloy | last post by:
Hello folks, I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>". The problem is that using the GNU compilers, it seems that the internal comparison operator "<=>" tries to promote arguments from unsigned to signed. This is as boiled down as I can make it. Here is my compilation command: g++-12 -std=c++20 -Wnarrowing bit_field.cpp Here is the code in...
C / C++
0
10043
jinu1996
Maximizing Business Potential: The Nexus of Website Design and Digital Marketing
by: jinu1996 | last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven tapestry of website design and digital marketing. It's not merely about having a website; it's about crafting an immersive digital experience that captivates audiences and drives business growth. The Art of Business Website Design Your website is...
Online Marketing
0
9861
tracyyun
Discussion: How does Zigbee compare with other wireless protocols in smart home applications?
by: tracyyun | last post by:
Dear forum friends, With the development of smart home technology, a variety of wireless communication protocols have appeared on the market, such as Zigbee, Z-Wave, Wi-Fi, Bluetooth, etc. Each protocol has its own unique characteristics and advantages, but as a user who is planning to build a smart home system, I am a bit confused by the choice of these technologies. I'm particularly interested in Zigbee because I've heard it does some...
General
1
7406
isladogs
Access Europe - Using VBA to create a class based on a table - Wed 1 May
by: isladogs | last post by:
The next Access Europe User Group meeting will be on Wednesday 1 May 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM). In this session, we are pleased to welcome a new presenter, Adolph Dupré who will be discussing some powerful techniques for using class modules. He will explain when you may want to use classes instead of User Defined Types (UDT). For example, to manage the data in unbound forms. Adolph will...
Microsoft Access / VBA
0
6672
Couldn’t get equations in html when convert word .docx file to html file in C#.
by: conductexam | last post by:
I have .net C# application in which I am extracting data from word file and save it in database particularly. To store word all data as it is I am converting the whole word file firstly in HTML and then checking html paragraph one by one. At the time of converting from word file to html my equations which are in the word document file was convert into image. Globals.ThisAddIn.Application.ActiveDocument.Select();...
C# / C Sharp
0
5298
Trying to create a lan-to-lan vpn between two differents networks
by: TSSRALBI | last post by:
Hello I'm a network technician in training and I need your help. I am currently learning how to create and manage the different types of VPNs and I have a question about LAN-to-LAN VPNs. The last exercise I practiced was to create a LAN-to-LAN VPN between two Pfsense firewalls, by using IPSEC protocols. I succeeded, with both firewalls in the same network. But I'm wondering if it's possible to do the same thing, with 2 Pfsense firewalls...
Networking - Hardware / Configuration
0
5446
Windows Forms - .Net 8.0
by: adsilva | last post by:
A Windows Forms form does not have the event Unload, like VB6. What one acts like?
Visual Basic .NET
3
2814
bsmnconsultancy
Comprehensive Guide to Website Development in Toronto: Expert Insights from BSMN Consultancy
by: bsmnconsultancy | last post by:
In today's digital era, a well-designed website is crucial for businesses looking to succeed. Whether you're a small business owner or a large corporation in Toronto, having a strong online presence can significantly impact your brand's success. BSMN Consultancy, a leader in Website Development in Toronto offers valuable insights into creating effective websites that not only look great but also perform exceptionally well. In this comprehensive...
General

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.

BYTES.COM © 2024
About Bytes
Terms Of Use
Privacy Policy
Sitemap
Advertise on Bytes
How to Post and Respond on Bytes
How to Promote and Link on Bytes
How to increase your Ranking on Bytes
Become a Recognized Expert on Bytes
Feedback Welcomed! Contact Us