A network interface performs filtering of inbound packets based on information maintained in a shared memory that indicates active services, active connections and active protocols. A network control mechanism running on the host computer system writes information to the shared memory to indicate which services, connections and protocols are currently active. When the network interface receives an inbound packet, a filter mechanism reads the header information, and reads information in the shared memory to determine whether the packet targets an active service, connection or protocol. If the packet does not target an active service, an active connection, or an active protocol, the filter mechanism discards the packet. In this manner effective filtering of network packets is achieved in the network interface under control of the host that writes the information to the shared memory.
展开▼
