i hope this is not a silly question
can someone explain me about the filter, CB and such. and what component that does this filtering whether it is ICH8 or 82566DM or is it software-solution filtering process?
There are some good diagrams (like on page8)that show where the filters get processed in the "System Defense and Agent Presence Overview doc which is located in the "Docs" folder in the SDK which can be downloaded from the Manageability Community site. (here)
An example flow for network isolation would be as follows: