CCNA Training-Network Address Translation |
- CCNA Training-Network Address Translation
- Information Commissioner slams NHS Trust for lost USB stick
- 23% of university students have hacked into an IT system
- Legally defensible security on HIPAA, CMR 17
- ZoneAlarm angers users with virus scare pop-up
- ArcSight beefs up security range
- Twitter hack sees websites opened without clicking links
- Twitter fixes cross-site scripting flaw
- Twitter 'mouse over' security flaw causing problem
- RIAA, MPAA Websites Pummeled By 4chan’s Wrath
- Was Stuxnet built to attack Iran's nuclear program?
- Gartner: Mobile commerce growth outpaces anti-fraud tools
- Apple releases Security Update 2010-006 for Snow Leopard
- Nations, companies should prepare for cyberwar, experts say
- Apple, Adobe patch critical bugs
CCNA Training-Network Address Translation Posted: 21 Sep 2010 12:05 PM PDT Network Address Translation (NAT) is a networking process which is used to remap a specific IP address space into another IP address space by modifying the information in the TCP/IP packet header while the packets are being transmitted across a routing device. E.g.(router, firewall etc). Usually the modification is done on the source IP address of the packet which is changed to a different IP address. Network Address Translation (NAT) is used to hide an entire IP address space which is usually of a private network. For example, a network administrator would utilize NAT to hide the private IP address space of his LAN network under a single IP address from a different IP address space. Network Address Translation (NAT) is able to accomplish this by using a state-full translation table to map the private addresses into a single IP address and then readdress the outgoing IP packets so that they appear to be originating from the router's Internet facing interface. There are different types of NAT which can perform different functions. Some of these include Static NAT, PAT and Dynamic NAT. Many devices that support NAT today will allow you to configure the entries in the translation table permanently. This is known as Static NAT. You also have the process of translating the IP addresses as well as the port numbers. This process is known as Port Address Translation (PAT). It is also sometimes referred to as Network Address Port Translation (NAPT). Dynamic NAT is different from Static NAT in that Static NAT provides a one to one internal address to public address mapping. Dynamic NAT is not static and it usually utilizes a group of public IP addresses to translate a group of private IP addresses. Here is a simple tutorial of how you can Implement NAT in a network. We have 14 hosts that will need simultaneous Internet connection. Our hosts are assigned private IP addresses (192.168.100.17 to 192.168.100.30). We were given 6 IP addresses from our ISP (198.18.184.105 to 198.18.184.110). After completing our basic router configuration (for example purposes we will assume that a static route is in place between the router and ISP) and configuration of the interfaces, we will use the following commands: Router>enable Set the router name to R1 Router(config)#hostname R1 Configure this interface for Nat inside. This is connected to the network to be translated. R1(config)#interface fastethernet 0/0 Configure this interface for Nat outside. This is connected to the mapped network. R1(config)#interface serial 0/0 Create an access-list to match the router's LAN address range that will be translated. R1(config)#access-list 10 permit 192.168.100.16 0.0.0.15 Create a NAT Pool with pool name isp_adress and specify the public pool address range given by the ISP with their netmask. R1(config)#ip nat pool isp_adr 198.18.184.105 198.18.184.110 netmask 255.255.255.248
Next we will use the Overload keyword to use Port based NATing to support the router's LAN address range. Testing: Go to an internal host to test On console of the router (R1): If we used an internal host with IP address 192.168.100.17 we should receive this output: Pro Inside global Inside local Outside local Outside global |
Information Commissioner slams NHS Trust for lost USB stick Posted: 21 Sep 2010 09:00 AM PDT |
23% of university students have hacked into an IT system Posted: 21 Sep 2010 09:00 AM PDT |
Legally defensible security on HIPAA, CMR 17 Posted: 21 Sep 2010 09:00 AM PDT |
ZoneAlarm angers users with virus scare pop-up Posted: 21 Sep 2010 09:00 AM PDT |
ArcSight beefs up security range Posted: 21 Sep 2010 09:00 AM PDT |
Twitter hack sees websites opened without clicking links Posted: 21 Sep 2010 09:00 AM PDT |
Twitter fixes cross-site scripting flaw Posted: 21 Sep 2010 09:00 AM PDT |
Twitter 'mouse over' security flaw causing problem Posted: 21 Sep 2010 09:00 AM PDT |
RIAA, MPAA Websites Pummeled By 4chan’s Wrath Posted: 21 Sep 2010 09:00 AM PDT The Motion Picture Association of America (MPAA) and the Recording Industry Association of America (RIAA) fell victim to the wrath of 4chan members this weekend. A series of coordinated DDoS (Distributed Denial-of Service) attacks against the media trade groups' websites temporarily brought them to their knees. |
Was Stuxnet built to attack Iran's nuclear program? Posted: 21 Sep 2010 09:00 AM PDT |
Gartner: Mobile commerce growth outpaces anti-fraud tools Posted: 20 Sep 2010 09:00 AM PDT |
Apple releases Security Update 2010-006 for Snow Leopard Posted: 20 Sep 2010 09:00 AM PDT |
Nations, companies should prepare for cyberwar, experts say Posted: 20 Sep 2010 09:00 AM PDT |
Apple, Adobe patch critical bugs Posted: 20 Sep 2010 09:00 AM PDT |
You are subscribed to email updates from "Cisco" via Ehsan in Google Reader To stop receiving these emails, you may unsubscribe now. | Email delivery powered by Google |
Google Inc., 20 West Kinzie, Chicago IL USA 60610 |
0 comments:
Post a Comment