Reputation: 67
eBPF: TC on egress how to recognize and ignore the packet that is replied by TC on ingress directly?
The TC on egress unexpectedly catch the packet that TC on ingress replied directly.
TC on egress how to recognize and ignore the packet that is by TC repled on ingress directly rather than produced by userspace app?
Upvotes: 1
Views: 779
Answers (1)
Reputation: 9134
One simple solution would be to mark your packet from your first program (on the ingress side), and then to look up for the mark on the egress side.
You could mark your packet on the ingress side by writing either to the skb->mark or one of the cb fields in your eBPF program, such as skb->cb[0]. You can later read from the same fields in your egress program.
The mark field (generic packet mark) of the socket buffer is used by applications to mark a packet (iptables may use it for some use cases, for example). The five entries in the cb (control buffer) array are also free to use by applications, to pass user-defined marks or values.
Upvotes: 1
Related Questions
- bpf_skb_cgroup_id works perfectly for egress. How to get the cgroup id for ingress traffic for tc ingress ebpf hook
- Accessing same map from cgroup skb ebpf and tc egress ebpf hook
- ebpf: drop ICMP packet in socket filter program on lo interface
- TcpListener: Reject an incoming connection request before connection
- Detect VLAN tagged packets using XDP eBPF
- How to protect an eBPF firewall in traffic filter (tc-bpf)
- eBPF packet filter not giving me correct data
- Write packet filtering program in ebpf
- Simple eBPF action not taking effect with tc
- How to react after receiving a packet in TCP server