This is a problem I've unfortunately run into on my setup here as
well. I have a NAT NetBSD firewall, while my friend has a Linux IP
masquerading firewall. From machines behind either of our firewalls
we've been completely unsuccessful ftp'ing back and forth.  Because
I'm impatient and I go with what works until the annoyance of it gets
to me, what I do is NFS mount my internal machine on my firewall and
ftp into my friend's machines directly from the firewall.  Then I
umount the nfs share and end it. With this method I'm forced to use
active ftp from my firewall.

I'd be interested to hear how others do it as well..  ipnat ftp proxy
doesn't seem to help me in this particular instance because my
friend's machine claims to live in 192.168.x.x... either that or it's
because I'm a mook and don't have it setup correctly.

-Marc

> On Tue, 31 Jul 2001, adam johnson wrote:
>
> > I'm trying to allow others to ftp into my machine
>
> Aha.  You should be able to use the 'rdr' keyword to redirect incoming ftp
> connections to the NAT box over to your computer A, however, there are
> some other snags in FTP which might complicate things.  I'd suggest taking
> a look at ipnat(5), and possibly the ipf howto at
>
> http://www.obfuscation.org/ipf/ipf-howto.txt
>
> I've never done this before, so I can't offer any perls of
> wisdom.  Someone will probably chime in who has done this before...