netbsd-help: Re: NAT problem:((

Subject: Re: NAT problem:((
To: nesti <nestlikos@wp.pl>
From: Martin Weber <Ephaeton@gmx.net>
List: netbsd-help
Date: 02/10/2002 13:44:34

On Sun, Feb 10, 2002 at 12:16:41PM +0000, nesti wrote:
> hi, 
> my NAT doesn't work:(((
> [...]
> then ipnat -l:
> 
> List of active MAP/Redirect filters:
> map ppp0 192.168.1.2/32  -> 217.96.203.150/32  portmap tcp/udp 40000:60000
> map ppp0 192.168.1.2/32  -> 217.96.203.150/32 
> map ppp0 192.168.1.2/32  -> 217.96.203.150/32  proxy port ftp ftp/tcp

That's somehow twisted, isn't it ? Say, what is in your ipnat.rules, something
like:

map ppp0 0/32 -> 192.168.1.2/32 ...
and further lines of that beginning ?

You should try to watch the netmask 0xffffff00 of the ne2 and test
the following in your ipnat.rules:

map ppp0 192.168.1.0/24 -> 0/32 proxy port ftp ftp/tcp
map ppp0 192.168.1.0/24 -> 0/32 portmap tcp/udp 40000:60000
map ppp0 192.168.1.0/24 -> 0/32

Watch a) the turned around order and b) the netmask 24 in the 192.168.1.0 subnet
spec.

hth, Martin Weber