Scribd
Upload
45 views

Module 2 - Session 3

This document discusses Network Address Translation (NAT) and its types. It describes how NAT allows multiple private IP addresses to share a single public IP address. Static NAT maps each private address to a unique public address. Dynamic NAT dynamically assigns public addresses from a pool. Port Address Translation (PAT) uses a single public IP address and assigns unique ports to each private address to support many hosts with few public IPs. Examples of configuring Static, Dynamic NAT and PAT on Cisco routers are provided.

Uploaded by

Sai Charan Karangula
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
45 views

Module 2 - Session 3

This document discusses Network Address Translation (NAT) and its types. It describes how NAT allows multiple private IP addresses to share a single public IP address. Static NAT maps each private address to a unique public address. Dynamic NAT dynamically assigns public addresses from a pool. Port Address Translation (PAT) uses a single public IP address and assigns unique ports to each private address to support many hosts with few public IPs. Examples of configuring Static, Dynamic NAT and PAT on Cisco routers are provided.

Uploaded by

Sai Charan Karangula
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 15

CSE3502 Information

Dr. Selva Rani B

Security Management
Winter 2020-21
Dr. Selva Rani B

Module-2
Security Device Management
Dr. Selva Rani B

Session-3
Network Address Translation
Introduction
• NAT : Network Address Translation
• a way to map multiple local private addresses
to a public one before transferring the
Dr. Selva Rani B

information
• a method of remapping an IP address space
into another by modifying network address
information in the IP header of packets while
they are in transit across a traffic routing
device
Dr. Selva Rani B

NAT
Dr. Selva Rani B

NAT-An Example
NAT
• Organizations that want multiple devices to employ a
single IP address use NAT
• Types :
Dr. Selva Rani B

• Static NAT
• Dynamic NAT
• PAT
Static NAT
• With static NAT, routers or firewalls translate one private IP
address to a single public IP address
• Each private IP address is mapped to a single public IP address
• Static NAT is not often used because it requires one public IP
Dr. Selva Rani B

address for each private IP address


• To configure Static NAT :
• configure private/public IP address mapping
• ip nat inside source static PRIVATE_IP PUBLIC_IP
• configure the router’s inside interface
• ip nat inside
• configure the router’s outside interface
• ip nat outside
Dr. Selva Rani B

Static NAT
Dynamic NAT
• Does the mapping of a local address to a global address
happens dynamically
• Router dynamically picks an address from the global address
pool that is not currently assigned
Dr. Selva Rani B

• This dynamic entry stays in the NAT translations table as long


as the traffic is exchanged
• Need to specify two sets of addresses on Cisco router :
• inside addresses that will be translated
• a pool of global addresses
Dynamic NAT
• To configure Dynamic NAT :
• configure the router’s inside interface
• ip nat inside
• configure the router’s outside interface
• ip nat outside
Dr. Selva Rani B

• configure an ACL that has a list of the inside source addresses that
will be translated
• configure a pool of global IP addresses
ip nat pool NAME FIRST_IP_ADDRESS LAST_IP_ADDRESS netmask
SUBNET_MASK
• enable dynamic NAT
Dr. Selva Rani B

Dynamic NAT
PAT (Port Address Translation)
• a single public IP address is used for all internal private IP
addresses
• a different port is assigned to each private IP address
Dr. Selva Rani B

• PAT allows to support many hosts with only few public IP


addresses
• works by creating dynamic NAT mapping, in which a global
(public) IP address and a unique port number are selected
• router keeps a NAT table entry for every unique combination
of the private IP address and port, with translation to the
global address and a unique port number
PAT (Port Address Translation)
Dr. Selva Rani B
PAT
• To configure PAT:
• configure the router’s inside interface
• ip nat inside
• configure the router’s outside interface
• ip nat outside
Dr. Selva Rani B

• configure an ACL that has a list of the inside source addresses that
should be translated
• Enable PAT
ip nat inside source list ACL_NUMBER interface TYPE overload

You might also like