ѽ҉ᶬḳ℠ <vtol@xxxxxxx> wrote:
> WIKI [1] stipulates the rule in the ip family table, perhaps logical since
> it applies to IPv4 only, It is however possible to include the rule in the
> inet family table?
>
> Having it implemented in
>
> table inet filter {
> chain input { oif pppoe-wan tcp flags syn tcp option maxseg
> size set 1400; }
> }
>
> does not throw an error but it does not work either.
That chain isn't hooked up, its missing the 'type filter hook input
priority 0;' part.
> Then tried instead (inet family)
>
> { oif pppoe-wan ip protocol tcp flags syn tcp option maxseg size set 1400; }
> { oif pppoe-wan ip protocol tcp flags syn ip protocol tcp option maxseg size
> set 1400; }
>
> But either throwing
>
> Error: syntax error, unexpected flags, expecting newline or semicolon.
> { oif pppoe-wan ip protocol tcp flags syn tcp option maxseg size set 1400; }
This is: oif == pppoe-wan
ip protocol == tcp
flags syn # invalid, should be "tcp flags syn"
> What am I missing to get this to work in the inet family table?
Did not try it but it should work, there is nothing ip/ipv6 specific
in the tcp option code.
