CCNA / CCNP Tutorial: Introduction To NAT



Similar documents
Building a Network in GNS3

Lab: Basic Router Configuration

Routing Protocols and Concepts Chapter 2 Conceitos de protocolos de Encaminhamento Cap 2

Sample Configuration Using the ip nat outside source static

Configuring Static and Dynamic NAT Simultaneously

IP ALLOCATION AND USAGE POLICY FOR NETWORK SPACE FROM INTEGRA

Sample Configuration Using the ip nat outside source list C

Planning for Information Network

SUBNETTING SCENARIO S

LAN TCP/IP and DHCP Setup

LAB Configuring NAT. Objective. Background/Preparation

Configure ISDN Backup and VPN Connection

Note: This case study utilizes Packet Tracer. Please see the Chapter 5 Packet Tracer file located in Supplemental Materials.

Lab Configuring Basic Router Settings with the Cisco IOS CLI

Expert Reference Series of White Papers. The Basics of Configuring and Using Cisco Network Address Translation

Lab Organizing CCENT Objectives by OSI Layer

Chapter 1 Implement EIGRP operations Chapter 2 Implement multiarea OSPF operations Chapter 4 Implement Cisco IOS routing features...

Lab Load Balancing Across Multiple Paths

Session Title: Exploring Packet Tracer v5.3 IP Telephony & CME. Scenario

PT Activity 8.1.2: Network Discovery and Documentation Topology Diagram

1 PC to WX64 direction connection with crossover cable or hub/switch

1 Basic Configuration of Cisco 2600 Router. Basic Configuration Cisco 2600 Router

ASA/PIX: Load balancing between two ISP - options

Topic 7 DHCP and NAT. Networking BAsics.

Introduction about cisco company and its products (network devices) Tell about cisco offered courses and its salary benefits (ccna ccnp ccie )

Network Address Translation Commands

IP Addressing and Subnetting. 2002, Cisco Systems, Inc. All rights reserved.

Configuring a customer owned router to function as a switch with Ultra TV

Internet Access Setup

Network Address Translation.

Configuring Network Address Translation (NAT)

Chapter 3: IP Addressing and VLSM

Document No. FO1101 Issue Date: Work Group: FibreOP Technical Team October 31, 2013 FINAL:

Working knowledge of TCP/IP protocol Suite IPX/SPX protocols Suite, MCSE or CNE or experienced in supporting a LAN environment.

- Network Address Translation -

Cisco Networking Professional-6Months Project Based Training

Limitations on Monitored Lines

CCNA 2 Chapter 5. Managing Cisco IOS Software

Cisco Certified Security Professional (CCSP)

P-660R-TxC Series. ADSL2+ Access Router. Quick Start Guide

Chapter 4 Customizing Your Network Settings

Skills Assessment Student Training Exam

section examines how to configure leased lines between two routers using HDLC and PPP.

Cisco Certified Network Professional (CCNP Routing & Switching)

Chapter 1 Personal Computer Hardware hours

ISOM3380 Advanced Network Management. Spring Course Description

Lab Developing ACLs to Implement Firewall Rule Sets

COURSE AGENDA. Lessons - CCNA. CCNA & CCNP - Online Course Agenda. Lesson 1: Internetworking. Lesson 2: Fundamentals of Networking

Internet Access Setup

Objectives. Background. Required Resources. CCNA Security

DATA COMMUNICATIONS MANAGEMENT. Gilbert Held INSIDE

GLBP Gateway Load Balancing Protocol

Scaling the Network: Subnetting and Other Protocols. Networking CS 3470, Section 1

How To Block On A Network With A Group Control On A Router On A Linux Box On A Pc Or Ip Access Group On A Pnet 2 On A 2G Router On An Ip Access-Group On A Ip Ip-Control On A Net

Lab Diagramming External Traffic Flows

How to configure your Thomson SpeedTouch 780WL for ADSL2+

ICS 351: Today's plan. IP addresses Network Address Translation Dynamic Host Configuration Protocol Small Office / Home Office configuration

White Paper Copyright 2011 Nomadix, Inc. All Rights Reserved. Thursday, January 05, 2012

Load Balancing ContentKeeper With RadWare

Configuration of Cisco Routers. Mario Baldi

VLSM & IP ADDRESSING EXAMPLE QUESTIONS with answers;


Savvius Insight Initial Configuration

Setting up and creating a Local Area Network (LAN) within Windows XP by Buzzons

IOS NAT Load Balancing with Optimized Edge Routing for Two Internet Connections

ETRX2 and ETRX357 Wireless Mesh Networking Modules. Application Note Accessing Modules over the Internet

How to establish a Leased Line Connection

Technology Spotlight on Cellular Data Networking for SCADA system networks. Presented by Teamwork Solutions, Inc.

Configuring IP Addressing and Services

Chapter 1 Connecting Your Router to the Internet

Cisco Secure PIX Firewall with Two Routers Configuration Example

Packet Tracer - Subnetting Scenario 1 (Instructor Version)

configure WAN load balancing

IP Address and Pre-configuration Information

Vocia MS-1 Network Considerations for VoIP. Vocia MS-1 and Network Port Configuration. VoIP Network Switch. Control Network Switch

Seven Steps to Subnetting

1 crossover cable. the PCs. network

Chapter 2 Preparing Your Network

SAULT COLLEGE OF APPLIED ARTS AND TECHNOLOGY SAULT STE. MARIE, ONTARIO COURSE OUTLINE

Lab 8.4.3a Managing Cisco IOS Images with TFTP

Enabling NAT and Routing in DGW v2.0 June 6, 2012

Technical Support Information

Lab PC Network TCP/IP Configuration

Interconnecting Cisco Network Devices 1 Course, Class Outline

IOS NAT Load Balancing for Two ISP Connections

Source net: Destination net: Subnet mask: Subnet mask: Router Hub

How To Learn Cisco Cisco Ios And Cisco Vlan

Chapter 12 Supporting Network Address Translation (NAT)

Interconnecting Cisco Networking Devices: Accelerated (CCNAX) 2.0(80 Hs) 1-Interconnecting Cisco Networking Devices Part 1 (40 Hs)

How To Understand and Configure Your Network for IntraVUE

CCNA Tutorial Series SUBNETTING

Video Conferencing and Firewalls

Device Interface IP Address Subnet Mask Default Gateway

Lab Configuring Access Policies and DMZ Settings

1:1 NAT in ZeroShell. Requirements. Overview. Network Setup

CCNA2 Chapter 11 Practice

Identifying Incorrect Subnet Masks Using EtherPeek and EtherPeek NX

Transcription:

CCNA / CCNP Tutorial: Introduction To NAT By Chris Bryant, CCIE #12933 A Free Excerpt From The Bryant Advantage Ultimate CCNA Study Guide Network Address Translation (NAT) is not only an important topic for CCNA and CCNP exams, but it s also a very commonly used technique for allowing end users access to the Internet while not revealing the end user s true IP address. CCNA and CCNP candidates need to know how to configure NAT, and so does anyone who works in network administration. NAT is one of the most commonly used network technologies out there, and understanding how and why it is used is vital to all network personnel. Why Do We NAT? NAT allows private networks all over the world to use the same internal network numbers, while still allowing their users (or perhaps just some users) access to the Internet. In this way, NAT serves as a form of IP address conservation. Imagine how many IP addresses would be necessary if every single office around the world required IP addresses that were not duplicated anywhere else in the world! The addresses that private networks around the world use are the RFC 1918 private addresses, sometimes referred to as 1918 addresses. A word to the wise: Know these, and know them cold. I should be able to call you at 2AM and ask you what these are, and get an immediate response. :) The RFC 1918 Private Addresses Class A 10.0.0.0 / 8 Class B 172.16.0.0 / 12 Class C 192.168.0.0 /16 Note that the masks used with the RFC 1918 private addresses are NOT the default masks for Class A, B, and C. These IP addresses are not used on any public networks. By public networks, we mean networks connected to the Internet. It s my experience that the Class C 1918 addresses are the most commonly used by offices, banks, and other organizations.

If a bank and a school in your home city are both using the 192.168.0.0 /16 network on their internal networks, there s no problem until some of the users on either network want to access the Internet. Internet Access and RFC 1918 Addresses Using private addresses is fine until a host using a private address wants to communicate with a device on the Internet. Consider what happens if a workstation with a private IP address attempts to contact www.cisco.com. Cisco s web server would receive a packet from a host with a source address on an RFC 1918 network. How would the server know how to respond to the private address if it s not used anywhere on the internet? This illustration shows us where the problem would come in on a network that is not running NAT.

In this situation, no user on a private network can successfully communicate with an Internet host. These networks can communicate with Internet hosts by using NAT. NAT stands for Network Address Translation, and that's exactly what is going to happen: the RFC 1918 source address is going to be translated to another address as it leaves the private network, and it will be translated back to its original address as the return data enters the private network.

NAT can be defined statically or dynamically. While you need to know both for your CCNA and CCNP exams, I recommend you use dynamic NAT whenever possible. The average office has enough users to make configuring static NAT a royal pain.

If a limited number of hosts on a private network need Internet access, static NAT may be the appropriate choice. Static NAT maps a private address to a public one. In this example, there are three internal PCs on an RFC1918 private network. The router's ethernet0 interface is connected to this network, and the Internet is reachable via the Serial0 interface. The IP address of the serial interface is 210.1.1.1 /24, with all other addresses on the 210.1.1.0 /24 network available. Three static mappings are needed to use Static NAT. The interfaces must be configured for NAT as well. Configuring the interfaces for Network Address Translation. The Ethernet network is the inside network; the Serial interface leading to the Internet is the outside network. R3(config)#interface ethernet0 R3(config-if)#ip address 10.5.5.8 255.0.0.0

R3(config-if)#ip nat inside R3(config-if)#interface serial0 R3(config-if)#ip address 210.1.1.1 255.255.255.0 R3(config-if)#ip nat outside The static mappings are created and verified. R3#conf t R3(config)#ip nat inside source static 10.5.5.5 210.1.1.2 R3(config)#ip nat inside source static 10.5.5.6 210.1.1.3 R3(config)#ip nat inside source static 10.5.5.7 210.1.1.4 R3#show ip nat translations Pro Inside global Inside local Outside local Outside global --- 210.1.1.2 10.5.5.5 --- --- --- 210.1.1.3 10.5.5.6 --- --- --- 210.1.1.4 10.5.5.7 --- --- R3#show ip nat statistics Total active translations: 3 (3 static, 0 dynamic; 0 extended) Outside interfaces: Serial0 Inside interfaces: Ethernet0 Hits: 0 Misses: 0 Expired translations: 0 show ip nat statistics displays the number of static and dynamic mappings. If you only have a few users on your RFC 1918 network that will use the Internet (or should be allowed to), static NAT will do just fine. For most networks, though, dynamic NAT is a better solution. This article was contributed by Chris Bryant from http://www.thebryantadvantage.com

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information