From a600787c67a8489cd7495db907e20d3688c96717 Mon Sep 17 00:00:00 2001
From: Vincent Li <vincent.mc.li@gmail.com>
Date: Fri, 25 Oct 2024 20:35:33 +0000
Subject: [PATCH] xdp-synproxy: drop IP don't fragment check

When XDP DDoS syncookie program is attached
to red0 interface, green network client internet
connection to website like gmail/youtube... failed.
it is because these sites does not have IP DF flag
set for each tcp packet, and syncookie_xdp program
would drop these packets when they arrived at red0
interface.

see https://github.com/vincentmli/BPFire/issues/59

Signed-off-by: Vincent Li <vincent.mc.li@gmail.com>
---
 lfs/xdp-tools | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/lfs/xdp-tools b/lfs/xdp-tools
index 2c1d6634a..9c484e41e 100644
--- a/lfs/xdp-tools
+++ b/lfs/xdp-tools
@@ -41,7 +41,7 @@ objects = $(DL_FILE)
 
 $(DL_FILE) = $(DL_FROM)/$(DL_FILE)
 
-$(DL_FILE)_BLAKE2 = 82a0a8bf56a6ad98aa14d21552cb29f00f5ed4e8e2773200b03f0496505407e644867855982e37078e8521cc23b5e201b777dd74c8a36ed58c6421808b975e0a
+$(DL_FILE)_BLAKE2 = a1dd4088127a772f6cefb757f1da5c1ca6c68dab694edd9151fb9313194b7a1dc1388ff7c5cf91fa3857cc5f2fc972e764f511930c069cc80bdcbf8729a34b10
 
 install : $(TARGET)