Scribd
Upload
40 views4 pages

Configure NAT

1. The document describes three types of Network Address Translation (NAT): static NAT, dynamic NAT, and Port Address Translation (PAT). 2. Static NAT defines one-to-one IP address mappings between inside and outside networks. Dynamic NAT maps a range of inside IP addresses to a pool of global IP addresses. PAT uses overloading to map multiple inside IP addresses to a single outside IP address, with dynamic port mapping. 3. The document provides configuration examples for implementing static NAT, dynamic NAT using ACLs and address pools, and PAT using either address pools or an interface.

Uploaded by

Dani Ene
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
40 views4 pages

Configure NAT

1. The document describes three types of Network Address Translation (NAT): static NAT, dynamic NAT, and Port Address Translation (PAT). 2. Static NAT defines one-to-one IP address mappings between inside and outside networks. Dynamic NAT maps a range of inside IP addresses to a pool of global IP addresses. PAT uses overloading to map multiple inside IP addresses to a single outside IP address, with dynamic port mapping. 3. The document provides configuration examples for implementing static NAT, dynamic NAT using ACLs and address pools, and PAT using either address pools or an interface.

Uploaded by

Dani Ene
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
You are on page 1/ 4

CONFIGURE NAT

Types of NAT:
1. Static NAT
2. Dynamic NAT
3. Port Address Translation (PAT) – aka NAT Overload: 2 methods – pool and interface.

STATIC NAT
Steps Commands Explanation Details
 Enter in g0/1 interface config Useful commands:
Router(config)#int g0/1
Define the inside interface(s) mode Show ip nat statistics
connected to the internal  Define g0/1 interface as the Show ip nat translations
network Router(config-if)#ip nat inside inside interface connected to the Clear ip nat translations *
local network Show run | include nat
 Enter in g0/0 interface config
Router(config)#int g0/0
Define the outside mode
interface(s) connected to the  Define g0/0 interface as the
external network Router(config-if)#ip nat outside outside interface connected to the
external network
 Map public IP address of
Router(config)#ip nat inside source static
100.0.0.1 to 192.168.0.167 private
192.168.0.167 100.0.0.1
Configure the one-to-one IP IP address
address mappings  Map public IP address of
Router(config)#ip nat inside source static
100.0.0.2 to 192.168.0.168 private
192.168.0.168 100.0.0.2
IP address
Verify the NAT table Router#show ip nat translations  Shows NAT table

1 of 3
DYNAMIC NAT
Steps Commands Explanation Details
 Enter in g0/1 interface config Useful commands:
Router(config)#int g0/1
Define the inside interface(s) mode Show ip nat statistics
connected to the internal  Define g0/1 interface as the Show ip nat translations
network Router(config-if)#ip nat inside inside interface connected to the Clear ip nat translations *
local network Show run | include nat
 Enter in g0/0 interface config
Router(config)#int g0/0
Define the outside mode
interface(s) connected to the  Define g0/0 interface as the
external network Router(config-if)#ip nat outside outside interface connected to the
external network
 Create access list 1 – permit
Define the traffic that should Router(config)#access-list 1 permit 192.168.0.0 traffic permitted by the ACL
traffic from 192.168.0.0/24
be translated 0.0.0.255 1 will be translated
network
You can use prefix-length
Define the pool of inside Router(config)#ip nat pool POOL1 100.0.0.0  Define the pool of inside global
24 or netmask
global IP addresses 100.0.0.255 prefix-length 24 IP addresses used for translations
255.255.255.0
 Apply ACL 1 to the POOL1 –
Configure dynamic NAT by Router(config)#ip nat inside source list 1 pool
traffic permitted by the ACL 1
mapping the ACL to the pool POOL1
should be translated, the other not
Verify the NAT table Router#show ip nat translations  Shows NAT table

PAT – pool method


Steps Commands Explanation Details
 Enter in g0/1 interface config Useful commands:
Router(config)#int g0/1
Define the inside interface(s) mode Show ip nat statistics
connected to the internal  Define g0/1 interface as the Show ip nat translations
network Router(config-if)#ip nat inside inside interface connected to the Clear ip nat translations *
local network Show run | include nat

2 of 3
Steps Commands Explanation Details
 Enter in g0/0 interface config
Router(config)#int g0/0
Define the outside mode
interface(s) connected to the  Define g0/0 interface as the
external network Router(config-if)#ip nat outside outside interface connected to the
external network
 Create access list 1 – permit
Define the traffic that should Router(config)#access-list 1 permit 192.168.0.0 traffic permitted by the ACL
traffic from 192.168.0.0/24
be translated 0.0.0.255 1 will be translated
network
Define the pool of inside Router(config)#ip nat pool POOL1 100.0.0.0  Define the pool of inside global
global IP addresses 100.0.0.3 prefix-length 24 IP addresses used for translations
 Apply ACL 1 to the POOL1 –
Configure PAT by mapping Router(config)#ip nat inside source list 1 pool
traffic permitted by the ACL 1 Use overload keyword
the ACL to the pool POOL1 overload
should be translated, the other not
Verify the NAT table Router#show ip nat translations  Shows NAT table

PAT – interface method (most used)


Steps Commands Explanation Details
 Enter in g0/1 interface config
Router(config)#int g0/1 Configure the router to use
Define the inside interface(s) mode
its own public IP address
connected to the internal  Define g0/1 interface as the when translating the source
network Router(config-if)#ip nat inside inside interface connected to the IP of packets
local network
 Enter in g0/0 interface config Useful commands:
Router(config)#int g0/0
Define the outside mode Show ip nat statistics
interface(s) connected to the  Define g0/0 interface as the Show ip nat translations
external network Router(config-if)#ip nat outside outside interface connected to the Clear ip nat translations *
external network Show run | include nat
 Create access list 1 – permit
Define the traffic that should Router(config)#access-list 1 permit 192.168.0.0 traffic permitted by the ACL
traffic from 192.168.0.0/24
be translated 0.0.0.255 1 will be translated
network
 Apply ACL 1 to the interface
Configure PAT by mapping g0/0 connected to the external
Router(config)#ip nat inside source list 1 interface
the ACL to the outside networl – traffic permitted by the Use overload keyword
g0/0 overload
interface ACL 1 should be translated, the
other not

3 of 3
Steps Commands Explanation Details
Verify the NAT table Router#show ip nat translations  Shows NAT table

4 of 3

You might also like