[BUG] ACL规则匹配dscp异常

### Kube-OVN Version

v1.13.14

### Kubernetes Version

Client Version: v1.32.0
Kustomize Version: v5.5.0
Server Version: v1.32.0

### Operation-system/Kernel Version

Ubuntu 22.04.5 LTS

### Description

子网新增acl规则期望特定dscp数据包放行，实际测试dscp不相等的数据包也错误的放行。

### Steps To Reproduce

1.对子网173.200.104.0/24增加acl规则：期望放行特定dscp == 32（二进制：100000）的数据包。

<img width="1127" height="132" alt="Image" src="https://github.com/user-attachments/assets/d537c2b2-2b04-478f-a66e-3d098fabd441" />

﻿2.实际测试，即使dscp不命中，也错误的放行了。图中tos=192（二进制：11000000），前6位为dscp == 48（110000）。

<img width="1547" height="94" alt="Image" src="https://github.com/user-attachments/assets/7dc08881-8f74-428c-9c7e-b015ea1dea45" />

### Current Behavior

数据包中ip.dscp无论何值，都可以命中dscp allow-related规则。

### Expected Behavior

期望仅命中和acl规则dscp相等的数据包中。

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

[BUG] ACL规则匹配dscp异常 #5637

Kube-OVN Version

Kubernetes Version

Operation-system/Kernel Version

Description

Steps To Reproduce

Current Behavior

Expected Behavior

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

[BUG] ACL规则匹配dscp异常 #5637

Description

Kube-OVN Version

Kubernetes Version

Operation-system/Kernel Version

Description

Steps To Reproduce

Current Behavior

Expected Behavior

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions