* [dpdk-dev] Q on l3fwd-acl and acl library
@ 2021-03-02 19:33 Ravi Kerur
0 siblings, 0 replies; only message in thread
From: Ravi Kerur @ 2021-03-02 19:33 UTC (permalink / raw)
To: dpdk-dev
Hello,
I am using l3fwd-acl example code and would like to know the intention of
ACL_DENY_SIGNATURE in the code.
Is ACL rules programmed to drop packets and not for any other
functionality? I see that userdata is ignored for ACL and programmed with
ACL_DENY_SIGNATURE + count. After classification, results are checked and
packets forwarded or dropped as in send_one_packet
static inline void
send_one_packet(struct rte_mbuf *m, uint32_t res)
{
if (likely((res & ACL_DENY_SIGNATURE) == 0 && res != 0)) {
/* forward packets */
send_single_packet(m,
(uint8_t)(res - FWD_PORT_SHIFT));
...
}
In the ACL case, "res" is always (ACL_DENY_SIGNATURE + acl_cnt) and packets
are dropped.
Is this correct?
Looking at the acl library I did not see statistics associated with the
rules so the library doesn't provide anything related to statistics?
Finally, I see the acl library has api 'rte_acl_add_rules' but nothing on
modifying/deleting existing rules?
Thanks,
Ravi
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2021-03-02 19:33 UTC | newest]
Thread overview: (only message) (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2021-03-02 19:33 [dpdk-dev] Q on l3fwd-acl and acl library Ravi Kerur
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).