I had problems getting ipnat to run with the following setup:Dear IPFilter experts!
<Tiny PC>192.168.1.2<-->192.168.1.1<hme1:Sparc Ultra2 Sol9:hme0>10.0.20.4<ISP>I e my ISP provides a NATed network on 10.0.0.0/16, and my adress is 10.0.20.4. I connect my hme0 to my ISP. I connect my hme1 to a small 192.168.1.0/24 network, with but two fixed adresses. I try to NAT that "local" network onto my ISP-provided adress.
I moved the local 192.168.1.0/24 network to qfe1 instead and, voilá, it started working!
I e my setup is now
<Tiny PC>192.168.1.2<-->192.168.1.1<qfe1:Sparc Ultra2 Sol9:hme0>10.0.20.4<ISP>(Note new interface--------------^^^^)
and now, with a browser active on the "Tiny PC", ipnat -lv saysMy ipnat.conf still says map hme0 192.168.1.0/24 -> 0/32 proxy port ftp ftp/tcp map hme0 192.168.1.0/24 -> 0/32 portmap tcp/udp 10000:40000 map hme0 192.168.1.0/24 -> 0/32
----------------
List of active MAP/Redirect filters:
map hme0 192.168.1.0/24 -> 10.0.20.4/32 proxy port ftp ftp/tcp
map hme0 192.168.1.0/24 -> 10.0.20.4/32 portmap tcp/udp 10000:40000
map hme0 192.168.1.0/24 -> 10.0.20.4/32
List of active sessions:
MAP 192.168.1.2 1108 <- -> 10.0.20.4 10069 [216.239.53.101 80]
age 863930 use 0 sumd 0x7f5a/0x7f5a pr 6 bkt 65/94 flags 1 drop 0/0
ifp hme0 bytes 2440 pkts 8 5c59
MAP 192.168.1.2 1107 <- -> 10.0.20.4 10068 [10.0.0.1 53]
age 1130 use 0 sumd 0x7f5a/0x7f5a pr 17 bkt 32/45 flags 2 drop 0/0
ifp hme0 bytes 272 pkts 2 5c59
List of active host mappings:
192.168.1.2 -> 10.0.20.4 (use = 2 hv = 53)
---------------------
Obviously there's a problem with running ipnat between two hme interfaces.
I haven't tested using another qfe to replace the hme0, so I don't know if there's
a problem running between any two same-type interfaces, or if this is an hme-only problem.
Hans J. Albertsson, Reimersholmsgatan 63
