Escolar Documentos
Profissional Documentos
Cultura Documentos
Naveen Patel
Cisco IOS Network Address Translation (NAT) is mechanisms for conserving
registered IP addresses in large networks, and they also simplify IP addressing
tasks.
NAT translate IP addresses within private internal networks to legal IP addresses for
transport over public external networks such as the Internet without requiring a
registered subnet address.
Naveen Patel
Problems with IPv4
Shortage of IPv4 addresses
Allocation of the last IPv4 addresses was for the year 2005
Address classes were replaced by usage of CIDR, but this is not sufficient
Naveen Patel
Private IP addresses
10.0.0.0 - 10.255.255.255
172.16.0.0- 172.31.255.255
192.168.0.0 -192.168.255.255
Naveen Patel
NAT terminology
Naveen Patel
Inside local address: The IPv4 address that is assigned to a host on the inside network.
The inside local address is likely not an IPv4 address assigned by the Network
Information Center or service provider.
Inside global address: A legitimate IPv4 address assigned by the NIC or service provider
that represents one or more inside local IPv4 addresses to the outside world.
Outside local address: The IPv4 address of an outside host as it appears to the inside
network. Not necessarily legitimate, the outside local address is allocated from a routable
address space on the inside.
Outside global address: The IPv4 address that is assigned to a host on the outside network
by the host owner. The outside global address is allocated from a globally routable
address or network space.
Naveen Patel
Naveen Patel
Address Translation Types
Naveen Patel
Static NAT: Maps an unregistered IPv4 address to a registered IPv4 address (one
to one). Static NAT is particularly useful when a device must be accessible
from outside the network.
Naveen Patel
Static NAT
With static NAT, a manual translation is performed by an
address translation device, translating one IP address to a different one.
Naveen Patel
Naveen Patel
Dynamic NAT
With dynamic NAT, you must manually define two sets of addresses on your address translation
device. One set defines which inside addresses are allowed to be translated (the local
addresses), and the other defines what these addresses are to be translated to (the global
addresses).
Naveen Patel
Port Address Translation (PAT)
PAT allows you to translate multiple internal addresses into a single external address, essentially
allowing the internal addresses to share one external address.
Naveen Patel
PAT uses unique source port numbers on the inside global IPv4 address to distinguish
between translations. Because the port number is encoded in 16 bits, the total
number of internal sessions that NAT can translate into one external address is,
theoretically, as many as 65,536.
Naveen Patel
Advantages of NAT
Naveen Patel
Disadvantages of NAT
Complexity
Compatibility Problems With Certain Applications
Problems With Security Protocols
Performance Reduction
Naveen Patel
Summary
Naveen Patel
The End
Naveen Patel