Scribd
Upload
126 views2 pages

CCNA NAT Configuration Guide

The router TUT is configured to provide NAT access for 14 internal hosts using 6 public IP addresses. NAT overload is used to map multiple private IP addresses to a single public IP address using different ports. An ACL permits the internal addresses 192.168.100.17-30. Dynamic source NAT is configured to translate addresses matching the ACL to IP addresses in the NAT pool "mypool", providing internet access for all internal hosts.

Uploaded by

Joha_pily
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
126 views2 pages

CCNA NAT Configuration Guide

The router TUT is configured to provide NAT access for 14 internal hosts using 6 public IP addresses. NAT overload is used to map multiple private IP addresses to a single public IP address using different ports. An ACL permits the internal addresses 192.168.100.17-30. Dynamic source NAT is configured to translate addresses matching the ACL to IP addresses in the NAT pool "mypool", providing internet access for all internal hosts.

Uploaded by

Joha_pily
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd

CCNA NAT SIM Question

January 5th, 2014Go to comments


Question

You are tasked to configure Internet access on a router. The ISP has provided the company six
public IP addresses of [Link] [Link]. The company has 14 hosts that need to
access the internet simultaneously. The hosts in the company LAN have been assigned private
space addresses in the range of [Link] – [Link].

The following have already been configured on the router:

– Router basic configuration


– Interfaces have been configured for NAT inside (Fa0/0) and NAT outside (s0/0)
– The appropriate static routes have also been configured
– All passwords have been temporarily set to “cisco”

Tasks:
+ Use NAT to provide Internet access to all hosts in the company LAN.
+ Name the router TUT
+ Inside global addresses: [Link] [Link]/29
+ Inside local addresses: [Link] – [Link]/28
+ Numer of inside hosts: 14

Solution

Note: If you are not sure how NAT & PAT work, please read my Network Address Translation
NAT Tutorial. You can download this sim to practice
here: [Link]

The CCNA Training company has 14 hosts that need to access the internet simultaneously but
we just have 6 public IP addresses from [Link] to [Link]/29. Therefore we
have to use NAT overload (or PAT)

Double click on the TUT router to open it

Router>enable
Router#configure terminal

First you should change the router’s name to TUT

Router(config)#hostname TUT
Create a NAT pool of global addresses to be allocated with their netmask (/29 =
[Link]). There were reports that the simulator in the real exam did not accept “prefix-
length” keryword so you should use “netmask” keyword.

TUT(config)#ip nat pool mypool [Link] [Link] netmask


[Link]

Create a standard access control list that permits the addresses that are to be translated

TUT(config)#access-list 1 permit [Link] [Link]

Establish dynamic source translation, specifying the access list that was defined in the prior step

TUT(config)#ip nat inside source list 1 pool mypool overload

This command translates all source addresses that pass access list 1, which means a source
address from [Link] to [Link], into an address from the pool named mypool
(the pool contains addresses from [Link] to [Link])

Overload keyword allows to map multiple IP addresses to a single registered IP address (many-
to-one) by using different ports

The question said that appropriate interfaces have been configured for NAT inside and NAT
outside statements.

This is how to configure the NAT inside and NAT outside, just for your understanding:

TUT(config)#interface fa0/0
TUT(config-if)#ip nat inside

TUT(config-if)#exit

TUT(config)#interface s0/0
TUT(config-if)#ip nat outside
TUT(config-if)#end

Finally, we should save all your work with the following command:

TUT#copy running-config startup-config

Check your configuration by going to “Host for testing” and type:

C:\>ping [Link]

The ping should work well and you will be replied from [Link]

You might also like