Scribd Logo
Upload

Welcome to Scribd!

  • Configure NAT

    Uploaded by

    Dani Ene
    10 views4 pages

    Copyright

    © © All Rights Reserved

    Available Formats

    DOCX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    10 views4 pages

    Configure NAT

    Uploaded by

    Dani Ene

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 4

    CONFIGURE NAT

    Types of NAT:
    1. Static NAT
    2. Dynamic NAT
    3. Port Address Translation (PAT) – aka NAT Overload: 2 methods – pool and interface.

    STATIC NAT
    Steps Commands Explanation Details
     Enter in g0/1 interface config Useful commands:
    Router(config)#int g0/1
    Define the inside interface(s) mode Show ip nat statistics
    connected to the internal  Define g0/1 interface as the Show ip nat translations
    network Router(config-if)#ip nat inside inside interface connected to the Clear ip nat translations *
    local network Show run | include nat
     Enter in g0/0 interface config
    Router(config)#int g0/0
    Define the outside mode
    interface(s) connected to the  Define g0/0 interface as the
    external network Router(config-if)#ip nat outside outside interface connected to the
    external network
     Map public IP address of
    Router(config)#ip nat inside source static
    100.0.0.1 to 192.168.0.167 private
    192.168.0.167 100.0.0.1
    Configure the one-to-one IP IP address
    address mappings  Map public IP address of
    Router(config)#ip nat inside source static
    100.0.0.2 to 192.168.0.168 private
    192.168.0.168 100.0.0.2
    IP address
    Verify the NAT table Router#show ip nat translations  Shows NAT table

    1 of 3
    DYNAMIC NAT
    Steps Commands Explanation Details
     Enter in g0/1 interface config Useful commands:
    Router(config)#int g0/1
    Define the inside interface(s) mode Show ip nat statistics
    connected to the internal  Define g0/1 interface as the Show ip nat translations
    network Router(config-if)#ip nat inside inside interface connected to the Clear ip nat translations *
    local network Show run | include nat
     Enter in g0/0 interface config
    Router(config)#int g0/0
    Define the outside mode
    interface(s) connected to the  Define g0/0 interface as the
    external network Router(config-if)#ip nat outside outside interface connected to the
    external network
     Create access list 1 – permit
    Define the traffic that should Router(config)#access-list 1 permit 192.168.0.0 traffic permitted by the ACL
    traffic from 192.168.0.0/24
    be translated 0.0.0.255 1 will be translated
    network
    You can use prefix-length
    Define the pool of inside Router(config)#ip nat pool POOL1 100.0.0.0  Define the pool of inside global
    24 or netmask
    global IP addresses 100.0.0.255 prefix-length 24 IP addresses used for translations
    255.255.255.0
     Apply ACL 1 to the POOL1 –
    Configure dynamic NAT by Router(config)#ip nat inside source list 1 pool
    traffic permitted by the ACL 1
    mapping the ACL to the pool POOL1
    should be translated, the other not
    Verify the NAT table Router#show ip nat translations  Shows NAT table

    PAT – pool method


    Steps Commands Explanation Details
     Enter in g0/1 interface config Useful commands:
    Router(config)#int g0/1
    Define the inside interface(s) mode Show ip nat statistics
    connected to the internal  Define g0/1 interface as the Show ip nat translations
    network Router(config-if)#ip nat inside inside interface connected to the Clear ip nat translations *
    local network Show run | include nat

    2 of 3
    Steps Commands Explanation Details
     Enter in g0/0 interface config
    Router(config)#int g0/0
    Define the outside mode
    interface(s) connected to the  Define g0/0 interface as the
    external network Router(config-if)#ip nat outside outside interface connected to the
    external network
     Create access list 1 – permit
    Define the traffic that should Router(config)#access-list 1 permit 192.168.0.0 traffic permitted by the ACL
    traffic from 192.168.0.0/24
    be translated 0.0.0.255 1 will be translated
    network
    Define the pool of inside Router(config)#ip nat pool POOL1 100.0.0.0  Define the pool of inside global
    global IP addresses 100.0.0.3 prefix-length 24 IP addresses used for translations
     Apply ACL 1 to the POOL1 –
    Configure PAT by mapping Router(config)#ip nat inside source list 1 pool
    traffic permitted by the ACL 1 Use overload keyword
    the ACL to the pool POOL1 overload
    should be translated, the other not
    Verify the NAT table Router#show ip nat translations  Shows NAT table

    PAT – interface method (most used)


    Steps Commands Explanation Details
     Enter in g0/1 interface config
    Router(config)#int g0/1 Configure the router to use
    Define the inside interface(s) mode
    its own public IP address
    connected to the internal  Define g0/1 interface as the when translating the source
    network Router(config-if)#ip nat inside inside interface connected to the IP of packets
    local network
     Enter in g0/0 interface config Useful commands:
    Router(config)#int g0/0
    Define the outside mode Show ip nat statistics
    interface(s) connected to the  Define g0/0 interface as the Show ip nat translations
    external network Router(config-if)#ip nat outside outside interface connected to the Clear ip nat translations *
    external network Show run | include nat
     Create access list 1 – permit
    Define the traffic that should Router(config)#access-list 1 permit 192.168.0.0 traffic permitted by the ACL
    traffic from 192.168.0.0/24
    be translated 0.0.0.255 1 will be translated
    network
     Apply ACL 1 to the interface
    Configure PAT by mapping g0/0 connected to the external
    Router(config)#ip nat inside source list 1 interface
    the ACL to the outside networl – traffic permitted by the Use overload keyword
    g0/0 overload
    interface ACL 1 should be translated, the
    other not

    3 of 3
    Steps Commands Explanation Details
    Verify the NAT table Router#show ip nat translations  Shows NAT table

    4 of 3

    You might also like