TTL filtering

I would like to setup TTL filtering on my production edge routers. Since I can't really model the real traffic in GNS3, I would like to ask your opinion. What's better:
1. Drop all packets with ttl less than 10?
sample acl
deny ip any any ttl lt 10
permit ip any any
2. Drop all packets with just ttl 1 or 0?
sample acl2
deny ip any any ttl eq 0
deny ip any any ttl eq 1
permit any any
1. Drop all packets with ttl less than 10?
sample acl
deny ip any any ttl lt 10
permit ip any any
2. Drop all packets with just ttl 1 or 0?
sample acl2
deny ip any any ttl eq 0
deny ip any any ttl eq 1
permit any any
Comments
TTL Expiry Attack Identification and Mitigation - Cisco Systems
See the "TTL expiry attacks" section. It actually recommends both methods: the "less than 10/15" on the trusted-to-untrusted boundary, and the "0 or 1" within the trusted network to help prevent internal scanning.