On Sun, Jan 13, 2002 at 11:45:54PM -0500, KenJackson@ieee.org wrote:
> Manuel Bouyer writes:
>  > On Sun, Jan 13, 2002 at 03:32:59PM -0500, KenJackson@ieee.org wrote:
>  > > As before, traffic from OFFICE is not translated and is passed
>  > > to ppp0 unmodified.  For example:
>  > 
>  > This is strange, really. What does 'ipfstat -io' and 'ipnat -l' show ?
>  > And also make sure you have something like "IP Filter: v3.4.16 initialized"
>  > in the kernel boot messages ('dmesg' or 'cat /var/run/dmesg.boot').
> 
> # ipfstat -io
> pass out from any to any
> pass in from any to any
> 
> # ipnat -l
> List of active MAP/Redirect filters:
> map ppp0 198.168.1.0/24  -> 0.0.0.0/32  proxy port ftp ftp/tcp
> map ppp0 198.168.1.0/24  -> 0.0.0.0/32  portmap tcp/udp 10000:40000
> map ppp0 198.168.1.0/24  -> 0.0.0.0/32
> 
> # dmesg | grep Filter
> IP Filter: v3.4.9 initialized.  Default = pass all, Logging = enabled
> 
> 

Hum, and did you try '/etc/rc.d/ipnat reload' (or maybe reload isn't enouth;
try restart if needed) once pppd is started ?
ipnat needs the ppp0 IP address, which is not available when it's loaded from
boot. So it need to be reloaded after.
If this is what's missing, you can add this command to the /etc/ppp/ip-up
script.


> I notice you said v3.4.16.  But I have v3.4.9, which came with my
> 1.5.2 distribution.  Is this my problem?

No it shouldn't. I've 3.4.16 only because I'm running -current :)

--
Manuel Bouyer, LIP6, Universite Paris VI.           Manuel.Bouyer@lip6.fr
--