On Wed, 2 Apr 1997, Scott Ellis wrote:
> Yes, it works fine.  Look at the example NAT rule they show, and be
> sure to use 'ipnat' to do the configuration.

I'm using NAT also, and it does work great for TCP connections, but UDP
doesn't work quite as well. For example, if machine A sends out a DNS
query, the NAT machine adds an entry into the translation table thing, so
when the reply comes back, it goes to the machine that sent the query. 
So, that part's fine. Now, when the NAT machine sends out a DNS query, the
translation entry is still in the table and the reply goes to A, not the
one doing NAT.

So, is there anything I can do about this, or is that just the way
things'll have to be? I notice the example on the ipfilter web page maps
UDP packets to a whole class C network, something that I don't have :)

Name: Dave Huang     |   Mammal, mammal / their names are called /
INet: khym@bga.com   |   they raise a paw / the bat, the cat /
FurryMUCK: Dahan     |   dolphin and dog / koala bear and hog -- TMBG
Dahan: Hani G Y+C 21 Y++ L+++ W- C++ T++ A+ E+ S++ V++ F- Q+++ P+ B+ PA+ PL++