I have just installed Timbuktu Pro on My Mac here at home so that a friend
of mine can have access to a couple files that are too large to effectively
transfer over my slow outgoing connection.

I am using IPNAT on NetBSD to allow my Mac access to the internet and am
wondering what I need to do to allow him access to the Mac via TB2.  Netopia
website says this:

INTERNET (TCP/IP) 
Can I access Timbuktu nodes that are behind a firewall?
Yes. However, in order for Timbuktu Pro to work through a firewall, UDP port
407 and TCP ports 1417 through 1420 must be open. Timbuktu Pro uses UDP port
407 for connection handshaking and then switches to the TCP ports for
Timbuktu Services: Control (1417), Observe (1418), Send (1419), and Exchange
(1420). As with most IP communication, the response packets are in the
dynamic range above 1023. If you cannot successfully connect with another
Timbuktu host, the network manager may need to reconfigure the firewall
permissions to permit the TCP and UDP port assignments given above.



...so my question is where do I need to specify this in NetBSD?

My friend suggested that I need to add this to my ipnat.conf

rdr sn0 <my.ip.address>/24 port xxxx -> 192.168.1.2 port xxxx

I have done this but it does not seem to have the desired effect (I have no
way to test this, but I see no logins from him on my Mac)...

is there anything else I need to do?

Thanks in advance,

Greg