[Bug 904] Matching ah without optional argument gives unintuitive result
bugzilla-daemon at netfilter.org
bugzilla-daemon at netfilter.org
Wed Feb 19 17:09:13 CET 2014
https://bugzilla.netfilter.org/show_bug.cgi?id=904
--- Comment #4 from Phil Oester <netfilter at linuxace.com> 2014-02-19 17:09:12 CET ---
Given this:
The SPI value of zero (0) is reserved for local, implementation-
specific use and MUST NOT be sent on the wire.
Your '! --ahspi 0' plan should work to match all valid (on the wire) AH
traffic.
You could probably also use '! --ahlen 0', which should only match packets
which have a valid AH header.
--
Configure bugmail: https://bugzilla.netfilter.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.
More information about the netfilter-buglog
mailing list