Jaromir Dolecek writes:
> Hi,
> I tried an IPNAT rule
> map ex1 192.168.1.0/24 -> my_ip_address/32 proxy port ftp ftp/tcp
> but this didn't work. ex1 is external network interface, "internal" network
> uses 192.168.1.* addresses, my_ip_address is the external ip address

This is working for me:
map ppp0 192.168.44.0/24 -> 0/32 proxy port ftp ftp/tcp
map ppp0 192.168.44.0/24 -> 0/32 portmap tcp/udp 1024:65535

Perhaps the part that is broken is the 'my_ip_address/32' handling.
What version of NetBSD and IPF are you using?  I have not noticed this
problem on -current (1.4Z) with my ethernet/ppp nat box. 

> Am I doing something wrong, or the proxy ftpmap rule can't be used
> for whole block of addresses ?

The only difference is the "-> 0/32" that I am using so you might want
to test the rule that way also.

-Andrew
-- 
-----------------------------------------------------------------
Andrew Gillham                            | NetBSD ist Affengeil.
gillham@whirlpool.com                     | Nachts ist es kaelter
I speak for myself, not for my employer.  | als draussen.