User Profile

We are moving our network kernel extension to NetworkExtension system extension. We use NEFilterPacketProvider to monitor all network traffics on a host. In testing we found even though NEFilterPacketProvider provides packets from/to physcical interfaces, it doesn't provide any virtual interface traffics, such as loopback, or utun[x] traffics, which we used to be able to intercept with an IP filter in network kernel extension. Is that intentional in the new NetworkExtension? If not, what should we do to correctly receive virtual interface traffics(utun traffic particularly) using NEFilterPacketProvider?