当前位置:网站首页>Nat address translation
Nat address translation
2022-07-07 18:38:00 【Chen chacha__】
Technical background
- legal IP Address resources are increasingly scarce
- Effectively hide internal hosts IP, It has a certain role in network security protection
NAT principle : change IP baotou 、 Make destination address 、 The source address or two addresses are replaced by different addresses in the header
NAT classification :
static state NAT: One to one address mapping
dynamic NAT: Pick from the address pool
NAT overload (PAT): Allow internal address mapping to an external address
static state NAT
Two routers are respectively configured with default routes , The whole network is connected
1.PC0 Use the public address to access the Internet server , stay R0 The upper configuration enables static address translation between internal local and external legal addresses
ip nat inside soure static 192.168.10.1 76.12.16.139 # The former is the internal address , Followed by the external address to be mapped
Enable on internal and external ports NAT
int e0/0/0
ip nat inside
int f0/1
ip nat outside
show ip nat translations
2. Will be inside server HTTP Services are mapped to the public network IP PC Through the public network IP Internal access server
ip nat inside source static tcp 192.168.20.1 80 76.12.16.140 80
int f0/0
ip nat in
show ip nat translations
dynamic NAT
dynamic NAT Configuration steps
1. To configure ACL, Intranet range for address translation
access-list 1 permit 192.168.10.0 0.0.0.255
int f0/0
ip access-group in
2. Configure the translated address pool
ip nat pool pool-1 76.12.16.139 76.12.16.141 netmask 255.255.255.248
3. Set up ACL Mapping relationship with address pool
ip nat inside source list 1 pool pool-1
4. Enable on internal and external ports NAT
int f0/0
ip nat inside
int f0/1
ip nat outside
show ip nat translation # Check out the NAT Address translation address
边栏推荐
- 2022年理财有哪些产品?哪些适合新手?
- Tips of this week 141: pay attention to implicit conversion to bool
- Performance test process and plan
- 国内的软件测试会受到偏见吗
- Tips for short-term operation of spot silver that cannot be ignored
- [tpm2.0 principle and Application guide] Chapter 5, 7 and 8
- Afghan interim government security forces launched military operations against a hideout of the extremist organization "Islamic state"
- 【蓝桥杯集训100题】scratch从小到大排序 蓝桥杯scratch比赛专项预测编程题 集训模拟练习题第17题
- socket编程之常用api介绍与socket、select、poll、epoll高并发服务器模型代码实现
- Kirk borne's selection of learning resources this week [click the title to download directly]
猜你喜欢
上市十天就下线过万台,欧尚Z6产品实力备受点赞
Automated testing: a practical skill that everyone wants to know about robot framework
现货白银分析中的一些要点
[unity shader] insert pass to realize the X-ray perspective effect of model occlusion
More than 10000 units were offline within ten days of listing, and the strength of Auchan Z6 products was highly praised
Win11C盘满了怎么清理?Win11清理C盘的方法
Backup Alibaba cloud instance OSS browser
用存储过程、定时器、触发器来解决数据分析问题
[PaddleSeg源码阅读] PaddleSeg Validation 中添加 Boundary IoU的计算(1)——val.py文件细节提示
讨论| 坦白局,工业 AR 应用为什么难落地?
随机推荐
[principle and technology of network attack and Defense] Chapter 1: Introduction
不能忽略的现货白银短线操作小技巧
Win11C盘满了怎么清理?Win11清理C盘的方法
持续测试(CT)实战经验分享
Using stored procedures, timers, triggers to solve data analysis problems
Kirk Borne的本周学习资源精选【点击标题直接下载】
Sports Federation: resume offline sports events in a safe and orderly manner, and strive to do everything possible for domestic events
3分钟学会制作动态折线图!
Discuss | what preparations should be made before ar application is launched?
Year SQL audit platform
What are the financial products in 2022? What are suitable for beginners?
[trusted computing] Lesson 12: TPM authorization and conversation
Personal best practice demo sharing of enum + validation
Hutool - 轻量级 DB 操作解决方案
保证接口数据安全的10种方案
Disk storage chain B-tree and b+ tree
[trusted computing] Lesson 10: TPM password resource management (II)
Yunjing network technology interview question [Hangzhou multi tester] [Hangzhou multi tester _ Wang Sir]
海量数据去重的hash,bitmap与布隆过滤器Bloom Filter
【Unity Shader】插入Pass实现模型遮挡X光透视效果