Murray Thomson wrote: > Interfaces > > bge0 off > bge1 Internet pppoe > sppp0 dynamic address > bge3 192.168.128.1 > bge3:1 10.0.1.1 > > I have tried to get out from both the 10.0.1 subnet and the 192.168.128 > subnet. In both cases the data goes out but does not translate.
Hmmm. I don't see anything obviously wrong. I'm using 4.1.7 on Solaris 9 and it seems to NAT just fine. Off-topic note: your use of static ports to map is probably better served using auto: map sppp0 192.168.128.0/24 -> 0/32 proxy port 21 ftp/tcp map sppp0 192.168.128.0/24 -> 0/32 portmap tcp/udp auto map sppp0 192.168.128.0/24 -> 0/32 > ## pass all local traffic > pass in quick on lo0 all > pass out quick on lo0 all > pass in quick on bge0 all > pass out quick on bge0 all > pass in quick on bge1 all > pass out quick on bge1 all > pass in quick on bge3 all > pass out quick on bge3 all Because of quick, this is pretty much going to match everything... so we can ignore the rest of your ruleset. Anything in the logs (if syslog support is compiled in it'll log to local0 unless it was changed)? What does "ipnat -l" and "ipnat -s" show? Jim, others - did I miss anything? -- Phil Dibowitz [EMAIL PROTECTED] Freeware and Technical Pages Insanity Palace of Metallica http://www.phildev.net/ http://www.ipom.com/ "Be who you are and say what you feel, because those who mind don't matter and those who matter don't mind." - Dr. Suess
signature.asc
Description: OpenPGP digital signature
