Deny Method of the IFWXConnection Interface

The Deny method denies the current operation on the connection object.

Syntax

HRESULT Deny(
  [in]  DWORD Reserved
);

Parameters

Reserved: Reserved for future use. The parameter value must be zero.

Return Value

S_OK: The connection will be denied.
E_INVALIDARG: Invalid value was passed to the Reserved parameter.
FWX_E_BAD_CONTEXT: The method was not called while handling any of the supported events.

Remarks

This method is rarely used. Using policy rules administration methods is the preferred way to control user activity.

This method must only be called in the context of the IFWXSessionFilter::FirewallEventHandler method while handling events of types:

fwx_AcceptedConnection
fwx_Bind_Udp
fwx_Bind_Tcp
fwx_Connect_Tcp

The action that caused the event will be canceled. A bind operation will fail with error code 10048 (WSAEADDRINUSE). A connect operation will fail with error code 10061 (WSAECONNREFUSED). An accepted connection will be aborted.

Note For an event of type fwx_Udp_Destination, use the IFWXUdpDestination::Deny method instead of the IFWXConnection::Deny method. Outbound UDP packets sent to a denied destination will be discarded.

Requirements

Server	Requires Windows Server 2008.
Version	Requires Forefront Threat Management Gateway (TMG).
Header	Declared in Wspfwext.idl.
DLL	Requires Wspsrv.exe.