Hello,
Is it possible to use ntuple for blocking packets by ttl value in the ethernet?
I am curious about User-defined field shown in Filters.
Regards,
Filter: 2045
Rule Type: TCP over IPv4
Src IP addr: 0.0.0.0 mask: 255.255.255.255
Dest IP addr: 213.232.170.33 mask: 0.0.0.0
TOS: 0x0 mask: 0xff
Src port: 0 mask: 0xffff
Dest port: 81 mask: 0x0
VLAN EtherType: 0x0 mask: 0xffff
VLAN: 0x0 mask: 0xffff
User-defined: 0x0 mask: 0xffffffffffffffff
Action: Drop
| ethtool -N|-U|--config-nfc|--config-ntuple DEVNAME | Configure Rx network flow classification options or rules | |
| rx-flow-hash tcp4|udp4|ah4|esp4|sctp4|tcp6|udp6|ah6|esp6|sctp6 m|v|t|s|d|f|n|r... | | ||
| flow-type ether|ip4|tcp4|udp4|sctp4|ah4|esp4 | ||
| [ src %x:%x:%x:%x:%x:%x [m %x:%x:%x:%x:%x:%x] ] | ||
| [ dst %x:%x:%x:%x:%x:%x [m %x:%x:%x:%x:%x:%x] ] | ||
| [ proto %d [m %x] ] | ||
| [ src-ip %d.%d.%d.%d [m %d.%d.%d.%d] ] | ||
| [ dst-ip %d.%d.%d.%d [m %d.%d.%d.%d] ] | ||
| [ tos %d [m %x] ] | ||
| [ l4proto %d [m %x] ] | ||
| [ src-port %d [m %x] ] | ||
| [ dst-port %d [m %x] ] | ||
| [ spi %d [m %x] ] | ||
| [ vlan-etype %x [m %x] ] | ||
| [ vlan %x [m %x] ] | ||
| [ user-def %x [m %x] ] | ||
| [ dst-mac %x:%x:%x:%x:%x:%x [m %x:%x:%x:%x:%x:%x] ] | ||
| [ action %d ] | ||
| [ loc %d]] | | ||
| delete %d |