Patrick Welche <prlw1@newn.cam.ac.uk> writes:

> map rtk0 192.168.204.234/32 -> 131.111.204.234/32
>
> which works, but not on the computer with s/xi0/ex0/g s/rtk0/bge0/g

I don't sure... What about s/234/134/g? I guess that both generate
the same 234 source but answer was returned to first (or _real_ router).

> So, what does "bad NAT" imply? (ipnat -l looks correct)

I just guess that the same address of NATed rules can generate this
(no ipf channel = no keep state => error).

HTH,
-- 
= Alexey G. Khramkov (agkhram) @ Infotech <agkhram{at}mercdev{dot}com> =
= GPG fingerprint : 944D 0C8B 343B 6C8D 50A1  061A E2DA 3E11 7765 6B47 =