An update... > Feb 16 16:44:38.484106 rule def/(short) [uid 0, pid 0] pass > out on xl2: fie.fue.com.44445 > 172.24.44.89.0: [udp sum ok] > udp 16 (DF) (ttl 43, id 0, len 44, bad cksum a33e! differs by 100) > > So for some reason I see a misformed, short packet going *out* > of the firewall, but not coming in.
Even changing network cards (from xl to re) didn't change the
situation - still seeing "(short)" packets logged going out
(but not coming in).
Julf
