Scribd Logo
Upload

Welcome to Scribd!

  • Network Address Translation (NAT) Types: Static, Dynamic, PAT

    Uploaded by

    Dao Thanh Giang
    38 views15 pages
    hey

    Original Title

    10. NAT Inside

    Copyright

    © © All Rights Reserved

    Available Formats

    PPTX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    hey

    Copyright:

    © All Rights Reserved
    Download as PPTX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    38 views15 pages

    Network Address Translation (NAT) Types: Static, Dynamic, PAT

    Uploaded by

    Dao Thanh Giang
    hey

    Copyright:

    © All Rights Reserved
    Download as PPTX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 15

    Network Address Translation

    IP

    IP Public

    One-to-one
    Static NAT

    IP

    IP Public

    Dynamic NAT

    NAT
    IP

    IP Public

    IP

    IP Public

    Internet

    Many-to-one
    IP

    IP Public

    PAT

    NAT Table
    Inside

    Outside

    10.0.0.1

    1.1.1.1
    NAT

    10.0.0.0/24
    .1

    data 10.0.0.1

    1.1.1.0/24
    .2

    NAT

    2.2.2.2

    .1

    .4

    2.2.2.2
    ISP Internet ISP

    data 10.0.0.1

    2.2.2.2

    data 2.2.2.2 10.0.0.1

    Router# show ip nat translations


    Inside global Inside local
    Outside local
    1.1.1.1
    10.0.0.1
    ...
    ...
    Router#

    Outside global

    NAT Table
    Inside

    Outside

    10.0.0.1

    1.1.1.1
    Outside Global

    Inside Local

    NAT

    10.0.0.0/24
    .1

    1.1.1.0/24
    .2

    data 10.0.0.1
    data 1.1.1.1
    10.0.0.1
    2.2.2.2

    .1

    .4

    Inside Global

    2.2.2.2

    data 2.2.2.2 10.0.0.1


    1.1.1.1

    Internet

    2.2.2.2

    data 1.1.1.1

    2.2.2.2

    data 2.2.2.2 1.1.1.1

    Static NAT

    NAT Table
    Inside

    Outside

    10.0.0.1

    1.1.1.1
    NAT

    10.0.0.0/24

    Web .1
    Server

    1.1.1.0/24
    .2

    .1

    .4

    Internet

    2.2.2.2

    R(config-if)# ip nat
    outside
    R(config-if)#
    ip nat 10.0.0.1
    data 2.2.2.2
    1.1.1.1
    inside
    R(config)# ip nat inside source static

    data 2.2.2.2 1.1.1.1

    10.0.0.1

    1.1.1.1

    Static NAT

    NAT Table
    Inside

    Outside

    10.0.0.1

    3.3.3.3
    NAT

    10.0.0.0/24

    Web .1
    Server

    1.1.1.0/24
    .2

    .1

    .4

    Internet

    2.2.2.2

    R(config)# ip route 3.3.3.3 255.255.255.255


    data 2.2.2.2 10.0.0.1
    3.3.3.3

    R(config)# ip nat inside source static

    1.1.1.1

    data 2.2.2.2 3.3.3.3

    10.0.0.1

    front IP, routed IP

    3.3.3.3

    Static NAT
    NAT Table
    Inside

    Outside

    10.0.0.1

    3.3.3.3

    10.0.0.3

    4.4.4.4

    Web .1
    Server

    NAT
    10.0.0.0/24
    .2

    1.1.1.0/24
    .1

    .4

    Internet

    2.2.2.2

    Web .3
    Server

    R(config)# ip nat inside source static

    10.0.0.1

    3.3.3.3

    R(config)# ip nat inside source static

    10.0.0.3

    4.4.4.4

    NAT Table

    .1

    .2

    .3

    .4

    .5
    .6

    Inside

    Outside

    10.0.0.1

    3.3.3.1

    10.0.0.2

    3.3.3.2

    10.0.0.3

    3.3.3.3

    10.0.0.4

    3.3.3.4

    10.0.0.5

    3.3.3.5

    10.0.0.6

    3.3.3.6

    Dynamic NAT

    NAT
    10.0.0.0/24
    .7

    1.1.1.0/24
    .1

    .4

    Internet

    2.2.2.2

    NAT Table
    Inside

    Outside

    10.0.0.1

    3.3.3.1

    10.0.0.2

    3.3.3.2

    10.0.0.3

    3.3.3.3

    10.0.0.4

    3.3.3.4

    10.0.0.5

    3.3.3.5

    10.0.0.6

    3.3.3.6

    Dynamic NAT

    access-list 1 permit 10.0.0.0


    R(config)#
    R(config)#
    R(config)#
    R(config)#
    R(config)#
    R(config)#

    ip
    ip
    ip
    ip
    ip
    ip

    nat
    nat
    nat
    nat
    nat
    nat

    inside
    inside
    inside
    inside
    inside
    inside

    source
    source
    source
    source
    source
    source

    0.0.0.7

    static
    static
    static
    static
    static

    10.0.0.1
    10.0.0.2
    10.0.0.3
    list 1
    10.0.0.4
    10.0.0.5

    3.3.3.1
    3.3.3.2
    3.3.3.3
    pool ABC
    3.3.3.4
    3.3.3.5

    R(config)# ip nat inside source static

    10.0.0.6

    3.3.3.6

    R(config)# ip nat pool ABC 3.3.3.1 3.3.3.6 prefix-length 29

    Transport Layer

    1.1.1.1

    1024

    53

    1025
    1026

    80
    80

    DNS
    HTTP

    2.2.2.2

    NAT Table

    .1

    .2

    .3

    .4

    .5
    .6

    Inside

    Outside

    10.0.0.1

    1.1.1.1

    10.0.0.2

    1.1.1.2

    10.0.0.3

    1.1.1.3

    10.0.0.4

    1.1.1.4

    10.0.0.5

    1.1.1.5

    10.0.0.6

    1.1.1.6
    NAT

    10.0.0.0/24
    .7

    1.1.1.0/24
    .1

    .4

    Internet

    2.2.2.2

    NAT Table

    .1

    .2

    .3

    Inside

    Outside

    10.0.0.1

    1.1.1.1

    10.0.0.2

    1.1.1.2

    10.0.0.3

    1.1.1.3

    10.0.0.4

    1.1.1.4

    10.0.0.5

    1.1.1.5

    10.0.0.6

    1.1.1.6
    NAT
    2.2.2.2

    .4

    .5

    1.1.1.1
    1.1.1.2
    1.1.1.3

    .6

    1.1.1.4
    1.1.1.5
    1.1.1.6

    PAT Table

    .1

    .2

    .3

    Inside

    Outside

    10.0.0.1

    1.1.1.1 : 1024

    10.0.0.2

    1.1.1.1 : 1025

    10.0.0.3

    1.1.1.1 : 1026

    10.0.0.4

    1.1.1.1 : 1027

    10.0.0.5

    1.1.1.1 : 1028

    10.0.0.6

    1.1.1.1 : 1029

    PAT
    2.2.2.2

    .4

    .5

    1.1.1.1 : 1024
    1.1.1.1 : 1025
    1.1.1.1 : 1026

    .6

    1.1.1.1 : 1027
    1.1.1.1 : 1028
    1.1.1.1 : 1029

    PAT Table

    .1

    .2

    .3

    Inside

    Outside

    10.0.0.1

    1.1.1.1 : 1024

    socket 1

    10.0.0.2

    1.1.1.1 : 1025

    socket 2

    10.0.0.3

    1.1.1.1 : 1026

    socket 3

    10.0.0.4

    1.1.1.1 : 1027

    socket 4

    10.0.0.5

    1.1.1.1 : 1028

    socket 5

    10.0.0.6

    1.1.1.1 : 1029

    socket 6

    PAT
    2.2.2.2

    .4

    .5

    1.1.1.1 : 1024
    1.1.1.1 : 1025
    1.1.1.1 : 1026

    .6

    1.1.1.1 : 1027
    1.1.1.1 : 1028
    1.1.1.1 : 1029

    PAT Table

    .1

    .2

    .3

    .4

    .5
    .6

    Inside

    Outside

    10.0.0.1

    1.1.1.1 : 1024

    socket 1

    10.0.0.2

    1.1.1.1 : 1025

    socket 2

    10.0.0.3

    1.1.1.1 : 1026

    socket 3

    10.0.0.4

    1.1.1.1 : 1027

    socket 4

    10.0.0.5

    1.1.1.1 : 1028

    socket 5

    10.0.0.6

    1.1.1.1 : 1029

    socket 6

    PAT
    10.0.0.0/24
    .2

    1.1.1.0/24
    .1

    .4

    Internet

    2.2.2.2

    PAT Table
    Inside

    Outside

    10.0.0.1 : 1024

    1.1.1.1 : 1024

    socket 1

    10.0.0.1 : 1025

    1.1.1.1 : 1025

    socket 2

    10.0.0.1 : 1026

    1.1.1.1 : 1026

    socket 3

    10.0.0.6 : 1024

    1.1.1.1 : 1027

    socket 4

    10.0.0.6 : 1025

    1.1.1.1 : 1028

    socket 5

    .2

    10.0.0.6 : 1026

    1.1.1.1 : 1029

    socket 6

    .3

    10.0.0.7 : 80
    PAT
    10.0.0.5 : 69

    session

    .1

    10.0.0.0/24
    .2

    1.1.1.1
    3.3.3.3 : 80
    1.1.1.1 : 69

    1.1.1.0/24

    .1

    .4

    2.2.2.2

    Internet69 1.1.1.1 69
    R(config)# ip nat inside
    source static udp 10.0.0.5
    f0/0
    .5
    tftp
    R(config)#
    ip nat inside source static tcp 10.0.0.7 80 1.1.1.1 80
    data 1026
    1029 80 10.0.0.6
    1.1.1.1
    .6
    data 80 1026
    1029

    2.2.2.2

    2.2.2.2
    1.1.1.1
    10.0.0.6

    data 1029 80 1.1.1.1


    data 80 1029

    2.2.2.2

    2.2.2.2
    1.1.1.1

    http .7
    R(config)# ip nat inside source

    list 1

    interface f0/0

    overload

    You might also like