Scaling IP Addresses
From Mycomputer Notes
(Difference between revisions)
(→Dynamic Translations) |
(→Dynamic Translations) |
||
| Line 32: | Line 32: | ||
* - Enter global configuration mode and define a pool of global addresses to be allocated as needed. | * - Enter global configuration mode and define a pool of global addresses to be allocated as needed. | ||
| - | Router(config)#ip nat pool | + | Router(config)#ip nat pool <POOL-NAME><START-IP><END-IP> netmask <NETMASK> |
* - Define a standard access list permitting those addresses that are to be translated | * - Define a standard access list permitting those addresses that are to be translated | ||
Revision as of 21:17, 13 November 2006
Configuring NAT & PAT
Static Translations
Stattic Trasnlation are entered direclty into the configuration and are always entered in the translation table. To configured static inside source address translation perform the task below:
- - Establish static translation between an inside local address and an insie global address in Global Configuration Mode.
Router(Config)#ip nat inside source static <LOCAL-IP> <GLOBAL-IP>
- - Enter the interface mode and specify the inside interface & Mark the interface as connected to the inside
Router(config)#interface <TYPE> <NUMBER> Router(config)#ip nat inside
- - Specify the outside inteface & Mark the interface as connected to the outised
Router(config)#interface <TYPE> <NUMBER> Router(config)#ip nat outside
Dynamic Translations
Access lists are used by NAT to select addresses for dynamic translation, dynamic translation used the addresses permitted by the access list to be translated; only those addresses are to be translated. Cisco advises againtst configuring access list referenced by NAT command with permit any command. Using permit any can result in NAT consuming too many router resources, which can cause network problems. To configure dynamic inside source address translation, perform the tasks below
Router(config)#access-list 1 permit 10.0.0.0 0.0.255.255 Router(config)#ip nat inside source list 1 pool nat-pool
- - Enter global configuration mode and define a pool of global addresses to be allocated as needed.
Router(config)#ip nat pool <POOL-NAME><START-IP><END-IP> netmask <NETMASK>
- - Define a standard access list permitting those addresses that are to be translated
Router(config)#access-list <ACL-NUMBER> permit <IP-SOURCE> <WILDCARD>
- - Establish dynamic source translatin specifying the access list defined in prior step.
Router(config)#ip nat inside source list <ACL-NUMBER> pool <POOL-NAME>
- - Enter the interface mode and specify the inside interface & Mark the interface as connected to the inside
Router(config)#interface <TYPE> <NUMBER> Router(config)#ip nat inside
- - Specify the outside inteface & Mark the interface as connected to the outised
Router(config)#interface <TYPE> <NUMBER> Router(config)#ip nat outside
