I often forget this command to examine what has been logged by the PF filter.
$ tcpdump -n -e -ttt -r /var/log/pflog
To look at what is being filtered in real-time use the following command instead:
$ tcpdump -n -e -ttt -i pflog0
Categories