We have a firewall runing in NetBSD with 4 ethernet cards.
The first one ( with the ip 200.200.1.150) is conetct to Adsl router (with
ip 200.200.1.1)
The secoond one ( 10.1.1.1) to a lan (10.1.0.0)
The third one ( 10.2.1.1) to a lan (10.2.0.0)
The second one ( 10.3.1.1) to a lan (10.3.0.0)

The ipnat.conf is these:
#!/sbin/ipnat -f -
#
# THIS IS WRITTEN FOR IP FILTER 3.2
#
# fxp0 - (external) connection to ISP, address 200.200.1.150/32
#
# fxp1 - (internal) network interface, address 10.1.1.1/32
#
#
#
map fxp1 10.1.0.0/16 -> 200.200.1.150/32 portmap tcp/udp 20000:65000
map fxp1 10.1.0.0/16 -> 200.200.1.150/32
map rtk0 10.3.0.0/16 -> 200.200.1.150/32 portmap tcp/udp 0:65000
map rtk0 10.3.0.0/16 -> 200.200.1.150/32
map fxp2 10.2.0.0/16 -> 200.200.1.150/32 portmap tcp/udp 20000:65000
map fxp2 10.2.0.0/16 -> 200.200.1.150/32
map fxp0 200.200.1.0/24 -> 200.200.1.150/32 portmap tcp/udp 20000:65000
map fxp0 200.200.1.0/24 -> 200.200.1.150/32
#
#map fxp0 200.200.1.150/32 -> 200.200.1.1/32
#To make ftp work, using the internal ftp proxy, use:
#
map fxp1 10.1.0.0/16 -> 200.200.1.150/32 proxy port ftp ftp/tcp
map rtk0 10.3.0.0/16 -> 200.200.1.150/32 proxy port ftp ftp/tcp
map fxp2 10.2.0.0/16 -> 200.200.1.150/32 proxy port ftp ftp/tcp
#




ANd the route table is:

Routing tables

Destination      Gateway            Flags
default          200.200.1.150      UG
10.1.0.0         link#2             U
10.2.0.0         link#4             U
10.3.0.0         link#3             U
loopback         127.0.0.1          UG
localhost        127.0.0.1          UH
200.200.1.0      link#1             U
200.200.1.1      0:40:43:c7:6f:66   UH
ogro             0:a0:c9:7:b2:bf    UH



The problem is that nobody can connect to the ADSL router from the LANS (not
even ping it) and they can't connect to the internet, all of the firewall's
cards are renponding to pings from everybody (slowly but correct).


Thank you in advance.

Jandemore