tech-net: ipnat and netmask

Subject: ipnat and netmask
To: None <tech-net@netbsd.org>
From: Patrick Welche <prlw1@newn.cam.ac.uk>
List: tech-net
Date: 08/29/2005 14:21:37

From ipnat -l, I have

map ex1 192.168.0.0/24 -> x.y.z.1/32 proxy port ftp ftp/tcp
map ex1 192.168.0.0/24 -> x.y.z.1/32 portmap tcp/udp 10000:65000
map ex1 192.168.0.0/24 -> x.y.z.1/32
bimap ex1 192.168.0.180/32 -> x.y.z.180/32 proxy port ftp ftp/tcp

yet, when I ssh out from 192.168.200.180, finger prlw1 tells me I am
connecting from x.y.z.1 rather than x.y.z.180.

According to the rules /32 should take precedence over /24, so what is
wrong?

Cheers,

Patrick
(NetBSD-3.99.7/i386, ipf 4.1.8)