In "Re: ipfilter for LAN<->Net link.", Dave Huang <khym@bga.com> wrote: 
> On Wed, 2 Apr 1997, Scott Ellis wrote:
> > Yes, it works fine.  Look at the example NAT rule they show, and be
> > sure to use 'ipnat' to do the configuration.
> 
> I'm using NAT also, and it does work great for TCP connections, but UDP
> doesn't work quite as well. For example, if machine A sends out a DNS
> query, the NAT machine adds an entry into the translation table thing, so
> when the reply comes back, it goes to the machine that sent the query. 
> So, that part's fine. Now, when the NAT machine sends out a DNS query, the
> translation entry is still in the table and the reply goes to A, not the
> one doing NAT.

I just ran named on the ipfilter machine.  Solved my problems. ;-)



-- 
   //////////////////////////////////////////////////////////////////////
  //    Scott Ellis     //   scotte@warped.com   //   sellis@gi.com   //
 //////////////////////////////////////////////////////////////////////
// WARNING: This signature warps  time and space in its vicinity    //