The command to do so is ip nat inside source list pool, and therefore the command for this example scenario is: R1(config)#ip nat inside source list 22 pool MustBeGeek The last step is to create the dynamic NAT mapping rule. Keep the pool name as it will also be used as the reference in step 4. Notice that the NAT pool is created with the name MustBeGeek. Once again make sure that the global address scope is within the subnet range of the outside interface.įor this scenario, the NAT pool is created using the available global IP address ranging from 172.26.10.91 to 172.26.10.95. The command to create NAT pool is ip nat pool netmask. Remember to keep the ACL ID as it will be used as the reference in step 4. Use the simplest ACL that fits the requirement. Note that ACL can be a standard, extended, or named ACL and you might want to use a more specific ACL in the real practice. For this scenario, all the PCs IP address can simply be summarized as 10.2.2.0/24 and therefore the ACL configuration will be as shown below: R1(config)#access-list 22 permit ip 10.2.2.0 0.0.0.255 Next step is creating an access-list (ACL) that define the list of local address allowed to be translated to global address using dynamic NAT. For this scenario, the configuration will be like this: R1(config)#interface f0/0 The configuration is done at the interface level with command ip nat inside or ip nat outside depending on the types of interface it will be set. Inside interface is usually the one side facing to LAN, while outside interface is the other side facing the internet. Define the inside and outside interfaceĪssuming the IP addressing and routing to default gateway has been configured, the next step will be defining the inside and outside interface of the router. The goal of this configuration is to have all 6 computers able to access the internet using the 5 available global address. The details of the configuration will be explained using scenario with topology below: With dynamic NAT, network administrator can leave the complexity of manually pairing local address with global address. The only difference is that dynamic NAT requires an access-list for the local address and a pool for global address. Overall, the way to configure dynamic NAT in Cisco IOS router is similar to the static NAT configuration. How to Configure Dynamic NAT in Cisco IOS Router Cisco supports both method and in this article, we’re going to learn to configure dynamic NAT in Cisco IOS router. Translation can be done manually using static NAT or automatically using dynamic NAT. NAT works by translating the local address using global address as the packets moving back and forth towards the public network. Therefore, it becomes a mandatory requirement for any kind of network unless it is an isolated one. Network Address Translation or NAT is a feature that enables access to the internet from a private network.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |