Scribd
Upload
41 views

NAT: Network Address Translation: Local Network (E.g., Home Network) 10.0.0/24 Public Network Internet

This document discusses Network Address Translation (NAT) which allows devices on a local private network to share a single public IP address to communicate on the wider public internet. It explains that NAT allows local networks to use private address ranges, changes addresses transparently, and improves security by hiding internal network addresses. It also describes how a NAT router works by translating the source and destination addresses and ports of packets going to and from the local network to external networks.

Uploaded by

markpter85
Copyright
© © All Rights Reserved
Available Formats
Download as PPT, PDF, TXT or read online on Scribd
41 views

NAT: Network Address Translation: Local Network (E.g., Home Network) 10.0.0/24 Public Network Internet

This document discusses Network Address Translation (NAT) which allows devices on a local private network to share a single public IP address to communicate on the wider public internet. It explains that NAT allows local networks to use private address ranges, changes addresses transparently, and improves security by hiding internal network addresses. It also describes how a NAT router works by translating the source and destination addresses and ports of packets going to and from the local network to external networks.

Uploaded by

markpter85
Copyright
© © All Rights Reserved
Available Formats
Download as PPT, PDF, TXT or read online on Scribd
You are on page 1/ 4

NAT: Network Address Translation

Public network
Internet
outside/public/untrusted
138.76.29.7

local network
(e.g., home network)
10.0.0/24
10.0.0.4

10.0.0.1

10.0.0.2

inside/private/trusted
10.0.0.3

Datagrams with source or


All datagrams leaving local
network have same single source destination in this network
have 10.0.0/24 address for
NAT IP address: 138.76.29.7,
different source port numbers source, destination (as usual)

NAT: Network Address Translation

Why NAT?: local network uses(share) one IP address as far as outside


world is concerned:

range of addresses not needed from ISP: just one IP address for all
devices

can change addresses of devices in local network without notifying outside


world

can change ISP without changing addresses of devices in local network

devices inside local network not explicitly addressable, visible by outside


world (a security plus).

NAT: Network Address Translation


USAGE: NAT router must:

outgoing datagrams: replace (source IP address, port #) of every outgoing


datagram to (NAT IP address, new port #)

. . . remote clients/servers will respond using


(NAT IP address, new port #) as destination
addr.

remember (in NAT translation table) every (source IP address, port #) to


(NAT IP address, new port #) translation pair

incoming datagrams: replace (NAT IP address, new port #) in dest fields of


every incoming datagram with corresponding (source IP address, port #)
stored in NAT table

NAT: Network Address Translation


2: NAT router
NAT translation table
changes datagram
WAN side addr
LAN side addr
source addr from
5001 10.0.0.1, 3345
10.0.0.1, 3345 138.76.29.7,
to
,

138.76.29.7, 5001
updates table

1: host 10.0.0.1
sends datagram to
128.119.40.186, 80

S: 10.0.0.1, 3345
D: 128.119.40.186,
80

S: 138.76.29.7,
5001
D: 128.119.40.186,
80

138.76.29.7

S: 128.119.40.186,
80
138.76.29.7,
3: D:
Reply
arrives
5001

dest. address:
138.76.29.7, 5001

10.0.0.4
S: 128.119.40.186,
80
D: 10.0.0.1, 3345

10.0.0.1

10.0.0.2

10.0.0.3
4: NAT router
changes datagram
dest addr from
138.76.29.7, 5001 to 10.0.0.1, 3345

You might also like