> The "short" reason code indicates that the packet was truncated or too short
> and therefore was missing information required to make a packet filtering
> decision. This could be, for example, a packet that only contained the first
> few bytes of an IP datagram (or a header that states that it is a particular
> length, but the packet is shorter than the length given). Run `grep
> PFRES_SHORT sys/net/pf*` if you want to see where/how this can occur.
Yes, thanks, that is helpful. But now I am baffled by the truncated
packets, as I don't see them coming in, I only get the "short" log
lines on the *outgoing* direction on my internal interface (on
UDP packets coming back from the Internet as response to packets
sent from a machine behind the NATing firewall).
Julf
