I would like to extend the current eBPF filter list [1] to include destination IP. The use case is to observe only relevant traffic with high sampling rate or even no sampling at all. Performance matters here, that's why the ask is for eBPF layer filtering.

Specific example is observing only north-south traffic, filtering out (rejecting) east-west traffic:

not ( (dst 127.0.0.0/8) or ( dst 10.0.0.0/8) )

For our use case, the filter needs to be flexible enough to support a list of destination CIDRs to reject.

[1] https://docs.openshift.com/container-platform/4.17/observability/network_observability/flowcollector-api.html#spec-agent-ebpf-flowfilter