Hướng dẫn làm NAT - Quản trị hệ thống Cisco
Trang 1Chapter : NAT - PAT Network Address Translation
Port Address Translation
Trang 3209.165.201.1
Trang 4209.165.201.1
Inside local : 192.168.10.0/24
Inside global: 200.0.0.1
Outside global: tất cả các địa chỉ bên ngoài
Trang 5Các kỹ thuật NAT
Static NAT
Trang 6 199.99.9.1
199.99.9.2
199.99.9.3
199.99.9.4
Static NAT
Trang 7Configure NAT on a Cisco Router
Describe how to configure static NAT to conserve IP
address space in a network
Trang 8 R(config )# ip nat inside source static 192.168.10.1 199.99.9.1
R(config)# ip nat inside source static 192.168.10.2 199.99.9.2
R(config)# ip nat inside source static 192.168.10.3 199.99.9.3
R(config)# ip nat inside source static 192.168.10.4 199.99.9.4
R(config)# interface f0/0
R(config-if )# ip nat inside
R(config)# interface s2/0
R(config-if)# ip nat outside
Trang 9Configure NAT on a Cisco Router
Describe how to configure dynamic NAT to conserve IP address space in a network
Trang 10Dynamic NAT
R(config )# access-list 1 permit 192.168.10.0 0.0.0.7
R(config)# ip nat pool ABC 199.99.9.1 199.99.9.4
Prefix-length 29
R(config)# ip nat inside source list 1 pool ABC
R(config)# interface f0/0
R(config-if )# ip nat inside
R(config)# interface s2/0
R(config-if)# ip nat outside
Trang 11209.165.201.1
Giả sử có 253 PC cần đi Internet chỉ sử dụng 1 địa chỉ 200.0.0.1
S: 192.168.10.1
D: 209.165.201.1
S: 200.0.0.1 D: 209.165.201.1
S: 192.168.10.1:1024 D: 209.165.201.1:80
S: 200.0.0.1:1025 D: 209.165.201.1:80
Trang 12Configure NAT on a Cisco Router
Describe how to configure NAT Overload to conserve
IP address space in a network
Trang 13PAT
R(config )# access-list 1 permit 192.168.10.0 0.0.0.255
R(config)# ip nat inside source list 1
interface s2/0 overload
pool ABC overload
R(config)# interface f0/0
R(config-if )# ip nat inside
R(config)# interface s2/0
R(config-if)# ip nat outside
Trang 14Kiem tra
R# show ip nat translations
R# clear ip nat translations