Halaman

Network Address Transalation / Static NAT

hai diak ka lae ? Kleur ona hau la update maibe  iha oportunidade ida ne'e hau atu fahe konhesemento oituan konaba NAT/Network Address translation.

Sai ida mak Network Address Translation ka NAT iha Rede Internet ?

atu dehan deit katak ip public nebe ISP provide mai cliente ne'e limitado tebes tamba ne ita tenke aprovieita ip  local Network hodi halo translate tiha ba ip Public neé, hodi configura ba ita nian Servidor ka Access point (iha Article ida né hau esplika halai liu ba Pratíca nian).

atu klaru liu Bele estuda diretamente link iha kraik  ne'e :
 http://www.teorikomputer.com/2016/01/pengertian-dan-fungsi-nat-network.html
http://www.tutorialkomputerlengkap.com/2015/12/pengertian-nat-network-address.html

 
 Oin sa halo configurasaun NAT ?

Mai ita koko halo tuir Dezenho ka Topologia ida tuir mai ne':

  1. Konfigurasaun iha Router Core, 

hostname RTR_CORE

!

enable password 7 0822455D0A16

!

no ip cef

no ipv6 cef

!

!

!

username cisco privilege 15 secret 5 $1$mERr$hx5rVt7rPNoS4wqbXKX7m0

!
!

spanning-tree mode pvst

!
!
interface FastEthernet0/0

ip address 10.0.0.1 255.0.0.0

ip nat inside

duplex auto

speed auto

!

interface FastEthernet0/1

no ip address

duplex auto

speed auto

shutdown

!

interface Serial0/0/0

ip address 20.0.0.2 255.0.0.0

ip nat outside

!

interface Vlan1

no ip address

shutdown

!

ip nat inside source static 10.0.0.2 50.0.0.1

ip nat inside source static 10.0.0.4 8.8.8.8

ip nat inside source static 10.0.0.3 4.4.4.4

ip classless

ip route 30.0.0.0 255.0.0.0 20.0.0.1

!

ip flow-export version 9

!
line con 0

password 7 0822455D0A16

!

line aux 0

!

line vty 0 4

password 7 0822455D0A16

login

transport input telnet

!

!

!

end

 ============================================

2. Konfigurasaun iha RTR_cliente 

hostname Rtr_Core

!

enable password 7 0822455D0A16

!

!

no ip cef

no ipv6 cef

!

!

!

username cisco privilege 15 secret 5 $1$mERr$hx5rVt7rPNoS4wqbXKX7m0

!

!

!

spanning-tree mode pvst

!

!

!

interface FastEthernet0/0

bandwidth 64

ip address 30.0.0.1 255.0.0.0

duplex auto

speed auto

!

interface FastEthernet0/1

no ip address

duplex auto

speed auto

shutdown

!

interface Serial0/0/0

ip address 20.0.0.1 255.0.0.0

clock rate 2000000

!

interface Vlan1

no ip address

shutdown

!

ip classless

ip route 50.0.0.0 255.0.0.0 20.0.0.2

ip route 8.8.8.8 255.255.255.252 20.0.0.2

ip route 4.4.4.4 255.255.255.252 20.0.0.2

!

ip flow-export version 9

!

!

line con 0

password 7 0822455D0A16

login

!

line aux 0

!

line vty 0 4

password 7 0822455D0A16

login

transport input telnet

!

!

!

end
 =================================================

koko teste ping husi pc clinte ba servidor ka DNS google.tl

ex; 
ping 10.0.0.4   >>Destination host unreachable.                          
 





 ping 8.8.8.8 >>




 





koko loke web browser 
ex. http://www.google.tl ka 8.8.8.8


ita nia konfigurasun suseco ona,

karik iha duvidas ruma bele halo komentario iha okos né;

obrigado.


Diposting oleh Tidak ada komentar:

Dynamic NAT

Colegas atu hatene konaba Dynamic NAT bele loke  Link iha Kraik né :

http://blog.stikom.edu/slamet/2013/09/05/nat-static-vs-nat-dynamic/

iha artikel ida ne hau hare liu ba Implementasaun iha Tereno, nebé konaba teoria bele le iha link iha leten né.

Dynamic NAT ita bele koko tuir topologya tuir mai né :

 
 
 Konfigurasaun iha Router mak hanesan iha Kraik né:

 1. Router_01
hostname Router_01
!
!
!
enable secret 5 $1$mERr$hx5rVt7rPNoS4wqbXKX7m0
enable password 7 0822455D0A16
!
!
no ip cef
no ipv6 cef
!
!
!
username cisco privilege 15 secret 5 $1$mERr$hx5rVt7rPNoS4wqbXKX7m0
!
!
spanning-tree mode pvst
!
!
interface FastEthernet0/0
ip address 20.0.0.1 255.255.255.252
duplex auto
speed auto
!
interface FastEthernet0/1
no ip address
duplex auto
speed auto
shutdown
!
interface Serial0/0/0
ip address 30.0.0.2 255.255.255.252
clock rate 2000000
!
interface Vlan1
no ip address
shutdown
!
ip classless
ip route 0.0.0.0 0.0.0.0 Serial0/0/0
!
ip flow-export version 9
!
!
!
line con 0
password 7 0822455D0A16
login
privilege level 15
!
line aux 0
!
line vty 0 4
login
transport input telnet
privilege level 15
!
!
!
end
 ==============================
==============================
2. Configurasaun iha Router_ISP

 hostname Rtr_Client
!
enable password 7 0822455D0A16
!
!
!
no ip cef
no ipv6 cef
!
!
username cisco privilege 15 secret 5 $1$mERr$hx5rVt7rPNoS4wqbXKX7m0
!
!
!
spanning-tree mode pvst
!
!
!
interface FastEthernet0/0
ip address 192.168.0.254 255.255.255.0
ip nat outside
duplex auto
speed auto
!
interface FastEthernet0/1
ip address 10.0.0.1 255.255.255.252
ip nat outside
duplex auto
speed auto
!
interface Serial0/0/0
bandwidth 64
ip address 30.0.0.1 255.255.255.252
ip nat outside
!
interface Vlan1
no ip address
shutdown
!
ip nat pool test 50.0.0.1 50.0.0.5 netmask 255.0.0.0
ip nat inside source list 1 pool test
ip nat inside source static 10.0.0.2 8.8.8.8
ip classless
ip route 0.0.0.0 0.0.0.0 Serial0/0/0
!
ip flow-export version 9
!
!
access-list 1 permit 192.168.0.0 0.0.0.255
!
!
line con 0
password 7 0822455D0A16
login
privilege level 15
!
line aux 0
!
line vty 0 4
password 7 0822455D0A16
login
transport input telnet
privilege level 15
!
!
!
end

=======================================
=======================================

koko test ping husi PC  ba ip nebé ita forwording ona,
ex: husi  ip nat pool test 50.0.0.1 50.0.0.5 netmask 255.0.0.0
ping husi pc ==>> 20.0.0.2
    
verifica lai Ip nat iha router_Client liu husi sh ip nat translation

ex:
sh ip nat translation

koko halo test ka loke web browser husi pc sira seluk 
 ex : www.google.tl

 



 bele hare fali ip nat translation iha router_client, depois halo analisa ka resumo ba configurasaun né.

mak né deit obrigado barak

Diposting oleh Tidak ada komentar:
Langganan: Komentar (Atom)