1 Reply Latest reply on Mar 17, 2016 5:50 PM by wb_Intel

    ntuple for blocking by ttl

    labrisnetworks

      Hello,

       

      Is it possible to use ntuple for blocking packets by ttl value in the ethernet?

      I am curious about User-defined field shown in Filters.

       

      Regards,

       

       

      Filter: 2045

              Rule Type: TCP over IPv4

              Src IP addr: 0.0.0.0 mask: 255.255.255.255

              Dest IP addr: 213.232.170.33 mask: 0.0.0.0

              TOS: 0x0 mask: 0xff

              Src port: 0 mask: 0xffff

              Dest port: 81 mask: 0x0

              VLAN EtherType: 0x0 mask: 0xffff

              VLAN: 0x0 mask: 0xffff

              User-defined: 0x0 mask: 0xffffffffffffffff

              Action: Drop

       

       

      ethtool -N|-U|--config-nfc|--config-ntuple DEVNAME Configure Rx network flow classification options or rules
      rx-flow-hash tcp4|udp4|ah4|esp4|sctp4|tcp6|udp6|ah6|esp6|sctp6 m|v|t|s|d|f|n|r... |
      flow-type ether|ip4|tcp4|udp4|sctp4|ah4|esp4
      [ src %x:%x:%x:%x:%x:%x [m %x:%x:%x:%x:%x:%x] ]
      [ dst %x:%x:%x:%x:%x:%x [m %x:%x:%x:%x:%x:%x] ]
      [ proto %d [m %x] ]
      [ src-ip %d.%d.%d.%d [m %d.%d.%d.%d] ]
      [ dst-ip %d.%d.%d.%d [m %d.%d.%d.%d] ]
      [ tos %d [m %x] ]
      [ l4proto %d [m %x] ]
      [ src-port %d [m %x] ]
      [ dst-port %d [m %x] ]
      [ spi %d [m %x] ]
      [ vlan-etype %x [m %x] ]
      [ vlan %x [m %x] ]
      [ user-def %x [m %x] ]
      [ dst-mac %x:%x:%x:%x:%x:%x [m %x:%x:%x:%x:%x:%x] ]
      [ action %d ]
      [ loc %d]] |
      delete %d