changed: FRAG_LOG option to FRAG_DROP to allow disabling fragment dro…

[arnova]

…pping (eg. for broken nftables)

[arnova]

@abelbeck : This is the "light" version of the previous PR. You ok with this?

[abelbeck]

@arnova I like the new "light" version, but I would be happy with any of the following options, you decide ...

1. This "light" version, as is.

2. As above, but reverse logic and default to off:

   
   - if [ "$FRAG_DROP" != "0" ]; then
   + if [ "$FRAG_DROP" = "1" ]; then

• FRAG_DROP=1
• FRAG_DROP=0

  
  3. Remove ` -f ` fragment support all-together.

[arnova]

Let's do what we have here for now. In case upstream nftables isn't fixed in time we could always reverse the logic to workaround it.