Network Address

Translation(NAT)
Introduction
• Network Address Translation(NAT) was introduced to overcome the
addressing problems that occurred with the rapid expansion of the
internet.
• Basically NAT allows a single network device (e.g router or firewall) to
act as an agent between private local area network and a public
network such a the internet.
• These purpose of this NAT device is to translate these source IP
address of the internal hosts into public routable IP address in order
to communicate with the internet.
WHAT IS NAT
NAT allows a host that does not have a valid registered IP address to
communicate with other host a through the internet.

• Private IP network is an IP network that is not directly connected to the Internet

• IP addresses in a private network can be assigned arbitrarily.

• Not registered and not guaranteed to be globally unique

• Generally, private networks use addresses from the following experimental

address ranges (non-routable addresses):
IPv4 Classes, public and Private
Regional internet Registry
What do we use NAT
• Suppose you have 500 employees but your internet service
provider(ISP) only gives you 10 public IP address, it means that you
can only allow 10 hosts to access the internet as the same time.

• Here NAT comes save your live

NAT terminology
NAT terminology
• INSIDE LOCAL ADDRESS : the IP address to a host on the inside
network
• Inside global address : a legitimate IP address assigned by regional
internet registry(RIR), or service provider that represents one or more
inside local IP addresses to the outside world.
• Outside global address : the IP address assigned to a host on the
outside network the owners of the host assigns this address
• Outside local address : the IP address of an outside host as it is knows
to the hosts on the inside network.
Types of NAT
• Static NAT
• Dynamic NAT
• Overload NAT (port address translation PAT)
Static NAT
• This type of NAT forms creates a permanent one-to-one static
mapping of a public IP address with a private IP address it is a
particularly.

• Dynamic NAT
Designed to map an unregistered IP address to a registered IP address
from a pool of registered IP address.
You don’t have to statically configure your router to map an inside to an
outside address as in a static NAT.
Port address translation PAT
This is kind of dynamic NAT that maps multiple private IP address to a
single public IP address (many to one ).by using different ports.

By using PAT is the technology that helps us not run out of public IP
address on the internet this the most popular of NAT
Port Address Translation LAB
R1# IP configuration
• Router#enable
• Router#configure
• Router(config)#interface fa 0/0
• Router(config-if)#ip addr 172.17.0.1 255.255.0.0
• Router(config-if)#no shutdown
• Router(config-if)#exit

• Router(config)#int s 0/0/0
• Router(config-if)#ip addr 200.10.20.2 255.255.255.0
• Router(config-if)#clock rate 128000
• Router(config-if)#no shutdown
• Router(config-if)#exit
R2# IP configuration
• Router(config)#int s0/0/0
• Router(config-if)#ip addr 200.10.20.1 255.255.255.0
• Router(config-if)#no shutdown
• Router(config-if)#exit

• Router(config)#int loopback 1
• Router(config-if)#ip addr 8.8.8.8 255.255.255.255
NAT configuration (PAT)
• NAT-ROUTER(config)#access-list 10 permit 172.17.0.0 0.0.255.255
• NAT-ROUTER(config)#ip nat inside source list 10 interface s 0/0/0
• NAT-ROUTER(config)#int s 0/0/0
• NAT-ROUTER(config-if)#ip nat outside
• NAT-ROUTER(config-if)#exit

• NAT-ROUTER(config)#int fa 0/0
• NAT-ROUTER(config-if)#ip nat inside
NAT veritification commands
• NAT-ROUTER#show ip nat translations

• NAT-ROUTER#show ip nat statistics