> ># Redirect Real Networks streams to 10.0.0.9
> ># (interestingly, it seems to work for any host)
> >#rdr ppp0 0/0 port 7070 -> 10.0.0.9 port 7070 tcp/udp
> >#
> 
> Most probably because Realplayer will fallback to a tcp transport if UDP
> doesn't work. I'd bet that your machine at 10.0.0.9 is using udp, while all
> the others are using a tcp socket opened by the client.

That line's commented out.   UDP works fine across the NAT.   I don't
use realplayer, so I can't comment on that.

> Note that this one will only work if 1) all your ftp clients are using
> passive mode, or 2) you allow all incoming tcp sessions in ipf (anyone know
> if there's a way to get ipf to recognize ftp data streams like ipnat does?

On NetBSD, the ftp client uses passive by default, so this isn't a
problem for me... :')

			       _MelloN_