Hi all,
I’m trying to disable hardware acceleration in my Turris Omnia box in order to inspect more than the first 2 or 3 packets. I’ve compiled OpenWRT v22.03.3 with flow offload module and using FLOWOFFLOAD target for that (equivalent to SKIPLOG on Broadcom chipsets).
Example for iptables rule that suppose to disable acceleration of first 30 packets on any tcp port 443 sessions:
-A FORWARD -p tcp -m tcp --dport 443 -m connbytes --connbytes 0:30 --connbytes-mode packets --connbytes-dir both -j FLOWOFFLOAD --hw
But, inspecting the iptables chains I still see that I have 2 to 3 packets from each session and my LOG rules won’t receive the 4th or 5th packet. Never.
I assume that there is a way to disable HW acceleration and that this is the way, but probably I’m missing a flag in the menu config.
Thanks for any help in advance!
Artium.