From owner-freebsd-hackers  Mon Jan 13 11:05:51 1997
Return-Path: <owner-hackers>
Received: (from root@localhost)
          by freefall.freebsd.org (8.8.4/8.8.4) id LAA29193
          for hackers-outgoing; Mon, 13 Jan 1997 11:05:51 -0800 (PST)
Received: from mail.bb.cc.wa.us ([208.8.136.10])
          by freefall.freebsd.org (8.8.4/8.8.4) with ESMTP id LAA29188
          for <hackers@freebsd.org>; Mon, 13 Jan 1997 11:05:47 -0800 (PST)
Received: (from chris@localhost) by mail.bb.cc.wa.us (8.8.3/8.8.3) id LAA00628; Mon, 13 Jan 1997 11:02:04 GMT
Date: Mon, 13 Jan 1997 11:02:04 +0000 ()
From: Chris Coleman <chris@mail.bb.cc.wa.us>
To: Mark Tinguely <tinguely@plains.nodak.edu>
cc: brian@awfulhak.demon.co.uk, hackers@freebsd.org
Subject: Re: IPFILTER
In-Reply-To: <199701131535.JAA18697@plains.nodak.edu>
Message-ID: <Pine.BSF.3.91.970113103942.478B-100000@mail.bb.cc.wa.us>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-hackers@freebsd.org
X-Loop: FreeBSD.org
Precedence: bulk

Ok, i have a machine on 10.16.14.10

in the FBSD box i have two network cards.
		fxp0 inet 208.8.136.10
		fxp1 inet 10.16.14.1

i have ipfilter loaded in the kernel.

im using /etc/natrules

	map fxp1 10.16.14.0/24 208.8.136.13/24 portmap tcp/udp 1025:65000
	map fxp1 10.16.14.0/24 208.8.136.13/24

when i ping 10.16.14.1 i get nothing.

but after i ping it unsuccesfully i try an ipnat -sl
i get: 

mapped	in	0	out	72
added	9	expired	0
inuse	9

map fxp1 10.16.14.0/24  -> 208.8.136.13/32  portmap tcp/udp 1025:65000
map fxp1 10.16.14.0/24  -> 208.8.136.13/255.255.255.0
10.16.14.1 0 <- -> 208.8.136.14 0 634 2 4006 [0.0.0.0 0]

So something is working but i dont know what to do.

my client can connect to the gateway, but nothing beyond.

What am i doing wrong.

Thanks In Advance