Re: Strange behavior deleting filters

Linux Advanced Routing and Traffic Control

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Andre Correa wrote:


Patrick, tks for the info but I'm sure I got your idea.

A filter handle is something like: "804::800" right? 

Not exactly. How handles are handled depends on the classifier,
fw classifier for example uses its own handle to match the nfmark,
route creates handles of its own and errors if the handle supplied
from userspace differs.

Maybe a example clears things up:
<add filters>
tc filter add dev lo protocol ip parent 1: pref 1 route from 4 flowid 1:100
tc filter add dev lo protocol ip parent 1: pref 1 route from 5 flowid 1:200
tc filter add dev lo protocol ip parent 1: pref 1 route from 6 flowid 1:300
tc filter add dev lo protocol ip parent 1: pref 1 route from 7 flowid 1:400
tc filter add dev lo protocol ip parent 1: pref 1 route from 8 flowid 1:500

<show filters>
filter protocol ip pref 1 route
filter protocol ip pref 1 route fh 0x00048000 flowid 1:100 from 4
filter protocol ip pref 1 route fh 0x00058000 flowid 1:200 from 5
filter protocol ip pref 1 route fh 0x00068000 flowid 1:300 from 6
filter protocol ip pref 1 route fh 0x00078000 flowid 1:400 from 7
filter protocol ip pref 1 route fh 0x00088000 flowid 1:500 from 8

As you can see the route classifier uses realm | 0x8000.

<delete filters>
tc filter del dev lo pref 1 handle 0x00048000 route
tc filter del dev lo pref 1 handle 0x00058000 route
tc filter del dev lo pref 1 handle 0x00068000 route
tc filter del dev lo pref 1 handle 0x00078000 route
tc filter del dev lo pref 1 handle 0x00088000 route

<show filters again>
filter protocol ip pref 1 route

Only the container of the single filters is left. To destroy it, delete by
priority: "tc filter del dev lo pref 1".

Hope that helps.

Patrick


I've tried this (supose classes 1:1 and 1:2 exist):

tc filter add dev eth1 parent 1: protocol ip prio 1 handle ::10 u32 match ip src 10.10.10.10 flowid 1:1
tc filter add dev eth1 parent 1: protocol ip prio 1 handle ::11 u32 match ip src 10.10.10.11 flowid 1:2

and then:

tc filter del dev eth1 parent 1: protocol ip prio 1 handle ::11

but both filter are deleted...

Am I missing something?

tks a lot...

Andre



_______________________________________________
LARTC mailing list / LARTC@xxxxxxxxxxxxxxx
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[Index of Archives]     [LARTC Home Page]     [Netfilter]     [Netfilter Development]     [Network Development]     [Bugtraq]     [GCC Help]     [Yosemite News]     [Linux Kernel]     [Fedora Users]
  Powered by Linux