I am trying to filter network packets based on vlan tag ids. Using wireshark I can capture/inspect packets with 2 different VLAN IDs on my network. I was hoping to suppress packets associated a particular VLAN ID. So, using the ethtool I added a hardware filter as follows:
sudo ethtool -U eth11 flow-type udp4 vlan 0x65 vlan-ask 0xE000 action -1 and
sudo ethtool -U eth11 flow-type udp4 vlan 0x67 vlan-ask 0xE000 action -1
Both commands are accepted (I observe 2 message indicating that rule 2001 and 2002 has been added, respectively)
After execution of the above commands, no packets associated with VLAN 0x65 or 0x67 are received (good - what I expected). As soon as I clear
one of the hardware filters via ethtool (sudo ethtool eth11 delete 2001) I receive packets associated with both VLAN Tags 0x65 and 0x66).
I was wondering if intel driver i40e truely supports hardware filtering?
Thanks