This fixes ethernet type protocol matching, which is needed
to match network layer information, eg.
nft add rule bridge filter input ip protocol icmp counter
Signed-off-by: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
---
src/payload.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/src/payload.c b/src/payload.c
index 0d22360..ea0d4e2 100644
--- a/src/payload.c
+++ b/src/payload.c
@@ -1010,7 +1010,7 @@ const struct datatype ethertype_type = {
.type = TYPE_ETHERTYPE,
.name = "ethertype",
.desc = "Ethernet protocol",
- .byteorder = BYTEORDER_HOST_ENDIAN,
+ .byteorder = BYTEORDER_BIG_ENDIAN,
.size = 2 * BITS_PER_BYTE,
.basetype = &integer_type,
.basefmt = "0x%.4Zx",
--
1.7.10.4
--
To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
