Comment by 9cb14c1ec0
17 hours ago
Windows Filtering Platform (what Simplewall is based on) is simultaneously one of the most powerful network access management APIs that exist, and also the most frustrating to use. The way it works in practice doesn't always match the documentation.
I wonder if there is change afoot in the way those APIs are designed and interacted with?
MS did indicate during the CrowdStrike DOS that they would work towards opening up or at least documenting those APIs and some other aspects of the kernel to help improve the situation for vendors.
I believe there might have also been antitrust concerns about the way they deliver Defender as part of the OS, but simultaneously offer premium cloud platforms? Don’t recall the full story.