Configuracion NAT CISCO(Ok)
-
Upload
enriquejsantiago -
Category
Documents
-
view
65 -
download
7
Transcript of Configuracion NAT CISCO(Ok)
![Page 1: Configuracion NAT CISCO(Ok)](https://reader030.fdocuments.us/reader030/viewer/2022020715/5535828c4a795920178b45ea/html5/thumbnails/1.jpg)
© 2006 Cisco Systems, Inc. All rights reserved. Cisco Public 1Version 4.0
Network Address Translation NAT
Ing. Enrique Santiago PhD(c)Instructor CISCO CCNA
![Page 2: Configuracion NAT CISCO(Ok)](https://reader030.fdocuments.us/reader030/viewer/2022020715/5535828c4a795920178b45ea/html5/thumbnails/2.jpg)
© 2006 Cisco Systems, Inc. All rights reserved. Cisco Public 2
Objectivos Socializar el concepto de NAT.
Describir la justificación de NAT.
Socializar los diferentes tipos de NAT.
Configurar NAT sobre routers Cisco.
![Page 3: Configuracion NAT CISCO(Ok)](https://reader030.fdocuments.us/reader030/viewer/2022020715/5535828c4a795920178b45ea/html5/thumbnails/3.jpg)
© 2006 Cisco Systems, Inc. All rights reserved. Cisco Public 3
Configuración de NAT sobre Router Cisco Operacion y Beneficio de usar direccionamiento
Privado y Publico
![Page 4: Configuracion NAT CISCO(Ok)](https://reader030.fdocuments.us/reader030/viewer/2022020715/5535828c4a795920178b45ea/html5/thumbnails/4.jpg)
© 2006 Cisco Systems, Inc. All rights reserved. Cisco Public 4
Configuracion de NAT sobre Router Cisco Caracteristicas Claves de NAT y NAT overload
![Page 5: Configuracion NAT CISCO(Ok)](https://reader030.fdocuments.us/reader030/viewer/2022020715/5535828c4a795920178b45ea/html5/thumbnails/5.jpg)
© 2006 Cisco Systems, Inc. All rights reserved. Cisco Public 5
Configure NAT on a Cisco Router
Ventajas y Desventajas de NAT
![Page 6: Configuracion NAT CISCO(Ok)](https://reader030.fdocuments.us/reader030/viewer/2022020715/5535828c4a795920178b45ea/html5/thumbnails/6.jpg)
© 2006 Cisco Systems, Inc. All rights reserved. Cisco Public 6
Tipos de NAT
NAT Estático
NAT Dinámico
NAT/PAT
![Page 7: Configuracion NAT CISCO(Ok)](https://reader030.fdocuments.us/reader030/viewer/2022020715/5535828c4a795920178b45ea/html5/thumbnails/7.jpg)
© 2006 Cisco Systems, Inc. All rights reserved. Cisco Public 7
Configuración NAT estático en CISCO Como Configurar NAT estatico y conservar el espacio
de direcciones IP en una red.
![Page 8: Configuracion NAT CISCO(Ok)](https://reader030.fdocuments.us/reader030/viewer/2022020715/5535828c4a795920178b45ea/html5/thumbnails/8.jpg)
© 2006 Cisco Systems, Inc. All rights reserved. Cisco Public 8
Ejemplo NAT estático
![Page 9: Configuracion NAT CISCO(Ok)](https://reader030.fdocuments.us/reader030/viewer/2022020715/5535828c4a795920178b45ea/html5/thumbnails/9.jpg)
© 2006 Cisco Systems, Inc. All rights reserved. Cisco Public 9
Configuración Básica Routing EIGRP
Hostname Router1(EIGRP)
interface FastEthernet0/1ip address 190.1.190.1 255.255.255.0duplex autospeed auto
interface Serial0/0/0ip address 200.30.75.2 255.255.255.0
router eigrp 1network 200.30.75.0 0.0.0.3network 190.1.190.0 0.0.0.255no auto-summary
![Page 10: Configuracion NAT CISCO(Ok)](https://reader030.fdocuments.us/reader030/viewer/2022020715/5535828c4a795920178b45ea/html5/thumbnails/10.jpg)
© 2006 Cisco Systems, Inc. All rights reserved. Cisco Public 10
Configuración Router NAT estático(1)Hostname Router(NAT)
interface FastEthernet0/1ip address 192.168.1.10 255.255.255.0ip nat insideduplex autospeed auto
interface Serial0/0/0ip address 200.30.75.1 255.255.255.0ip nat outsideclock rate 64000
ip nat inside source static 192.168.1.2 200.30.75.3 ip nat inside source static 192.168.1.3 200.30.75.4 ip classlessip route 190.1.190.0 255.255.255.0 200.30.75.2
Referencia Estática
Referencia Estática
![Page 11: Configuracion NAT CISCO(Ok)](https://reader030.fdocuments.us/reader030/viewer/2022020715/5535828c4a795920178b45ea/html5/thumbnails/11.jpg)
© 2006 Cisco Systems, Inc. All rights reserved. Cisco Public 11
Comandos Depuración NAT
Router(NAT)#sh ip nat translations Pro Inside global Inside local Outside local Outside global
--- 200.30.75.3 192.168.1.2 --- ---
--- 200.30.75.4 192.168.1.3 --- ---
![Page 12: Configuracion NAT CISCO(Ok)](https://reader030.fdocuments.us/reader030/viewer/2022020715/5535828c4a795920178b45ea/html5/thumbnails/12.jpg)
© 2006 Cisco Systems, Inc. All rights reserved. Cisco Public 12
Comandos Depuración NAT
Router(NAT)#debug ip nat NAT: s=192.168.1.2->200.30.75.3, d=190.1.190.2[0] (request)NAT*: s=190.1.190.2, d=200.30.75.3->192.168.1.2[0] (reply)
NAT: s=192.168.1.2->200.30.75.3, d=190.1.190.2[0]NAT*: s=190.1.190.2, d=200.30.75.3->192.168.1.2[0]NAT: s=192.168.1.2->200.30.75.3, d=190.1.190.2[0]NAT*: s=190.1.190.2, d=200.30.75.3->192.168.1.2[0]NAT: s=192.168.1.2->200.30.75.3, d=190.1.190.2[0]NAT*: s=190.1.190.2, d=200.30.75.3->192.168.1.2[0]
WEB SERVER
PC
![Page 13: Configuracion NAT CISCO(Ok)](https://reader030.fdocuments.us/reader030/viewer/2022020715/5535828c4a795920178b45ea/html5/thumbnails/13.jpg)
© 2006 Cisco Systems, Inc. All rights reserved. Cisco Public 13
Comandos Depuración NAT
Router(EIGRP)#debug ip icmp
ICMP: echo reply sent, src 190.1.190.1, dst 200.30.75.3
ICMP: echo reply sent, src 190.1.190.1, dst 200.30.75.3
ICMP: echo reply sent, src 190.1.190.1, dst 200.30.75.3
Dirección Transladada (host 192.168.1.2)
![Page 14: Configuracion NAT CISCO(Ok)](https://reader030.fdocuments.us/reader030/viewer/2022020715/5535828c4a795920178b45ea/html5/thumbnails/14.jpg)
© 2006 Cisco Systems, Inc. All rights reserved. Cisco Public 14
Configuración NAT dinamico en CISCO Como Configurar NAT dinamico para conservar el
espacio de direcciones IP de la red.
![Page 15: Configuracion NAT CISCO(Ok)](https://reader030.fdocuments.us/reader030/viewer/2022020715/5535828c4a795920178b45ea/html5/thumbnails/15.jpg)
© 2006 Cisco Systems, Inc. All rights reserved. Cisco Public 15
Configuración Básica Routing EIGRP
Hostname Router1(EIGRP)
interface FastEthernet0/1ip address 190.1.190.1 255.255.255.0duplex autospeed auto
interface Serial0/0/0ip address 200.30.75.2 255.255.255.0
router eigrp 1network 200.30.75.0 0.0.0.3network 190.1.190.0 0.0.0.255no auto-summary
![Page 16: Configuracion NAT CISCO(Ok)](https://reader030.fdocuments.us/reader030/viewer/2022020715/5535828c4a795920178b45ea/html5/thumbnails/16.jpg)
© 2006 Cisco Systems, Inc. All rights reserved. Cisco Public 16
Configuración Router NAT dinamico(3)Hostname Router(NAT)
interface FastEthernet0/1ip address 192.168.1.10 255.255.255.0ip nat insideduplex autospeed auto
interface Serial0/0/0ip address 200.30.75.1 255.255.255.0ip nat outsideclock rate 64000
ip nat pool RANGO 200.30.75.3 200.30.75.5 netmask 255.255.255.0access-list 10 permit 192.168.1.0 0.0.0.255ip nat inside source list 10 pool RANGOip classlessip route 190.1.190.0 255.255.255.0 200.30.75.2
Rango Global
ACL direcciones LAN
Translación de Direcciones IP
![Page 17: Configuracion NAT CISCO(Ok)](https://reader030.fdocuments.us/reader030/viewer/2022020715/5535828c4a795920178b45ea/html5/thumbnails/17.jpg)
© 2006 Cisco Systems, Inc. All rights reserved. Cisco Public 17
Comandos Depuración NAT
Router(NAT)#sh ip nat translations Pro Inside global Inside local Outside local Outside global
--- 200.30.75.3 192.168.1.2 --- ---
--- 200.30.75.4 192.168.1.3 --- ---
--- 200.30.75.5 192.168.1.4 --- ---
![Page 18: Configuracion NAT CISCO(Ok)](https://reader030.fdocuments.us/reader030/viewer/2022020715/5535828c4a795920178b45ea/html5/thumbnails/18.jpg)
© 2006 Cisco Systems, Inc. All rights reserved. Cisco Public 18
Comandos Depuración NAT
Router(NAT)#debug ip nat
NAT: s=192.168.1.2->200.30.75.3, d=190.1.190.2[1] (request)
NAT*: s=190.1.190.2, d=200.30.75.3->192.168.1.2[1] (reply)
NAT: s=192.168.1.3->200.30.75.4, d=190.1.190.2[2]
NAT*: s=190.1.190.2, d=200.30.75.4->192.168.1.3[2]
NAT: s=192.168.1.4->200.30.75.5, d=190.1.190.2[3]
NAT*: s=190.1.190.2, d=200.30.75.5->192.168.1.4[3]
WEB SERVER
Translación
![Page 19: Configuracion NAT CISCO(Ok)](https://reader030.fdocuments.us/reader030/viewer/2022020715/5535828c4a795920178b45ea/html5/thumbnails/19.jpg)
© 2006 Cisco Systems, Inc. All rights reserved. Cisco Public 19
Configuración NAT/PAT sobre Router Cisco Como Configurar NAT /PAT para conservar el espacio
de direcciones IP de la red.
![Page 20: Configuracion NAT CISCO(Ok)](https://reader030.fdocuments.us/reader030/viewer/2022020715/5535828c4a795920178b45ea/html5/thumbnails/20.jpg)
© 2006 Cisco Systems, Inc. All rights reserved. Cisco Public 20
Configuración Básica Routing EIGRP
Hostname Router1(EIGRP)
interface FastEthernet0/1ip address 190.1.190.1 255.255.255.0duplex autospeed auto
interface Serial0/0/0ip address 200.30.75.2 255.255.255.0
router eigrp 1network 200.30.75.0 0.0.0.3network 190.1.190.0 0.0.0.255no auto-summary
![Page 21: Configuracion NAT CISCO(Ok)](https://reader030.fdocuments.us/reader030/viewer/2022020715/5535828c4a795920178b45ea/html5/thumbnails/21.jpg)
© 2006 Cisco Systems, Inc. All rights reserved. Cisco Public 21
Configuración Router NAT dinamico(2)Hostname Router(NAT)
interface FastEthernet0/1ip address 192.168.1.10 255.255.255.0ip nat insideduplex autospeed auto
interface Serial0/0/0ip address 200.30.75.1 255.255.255.0ip nat outsideclock rate 64000
ip nat inside source list 10 interface Serial0/0/0 overloadaccess-list 10 permit 192.168.1.0 0.0.0.255ip classlessip route 190.1.190.0 255.255.255.0 200.30.75.2
Interface Global
ACL direcciones LAN
Translación de Direcciones IP
![Page 22: Configuracion NAT CISCO(Ok)](https://reader030.fdocuments.us/reader030/viewer/2022020715/5535828c4a795920178b45ea/html5/thumbnails/22.jpg)
© 2006 Cisco Systems, Inc. All rights reserved. Cisco Public 22
Comandos Depuración NAT
Router(NAT)#sh ip nat translations Pro Inside global Inside local Outside local Outside globaltcp 200.30.75.1:1025 192.168.1.2:1025 190.1.190.2:80 190.1.190.2:80tcp 200.30.75.1:1024 192.168.1.3:1025 190.1.190.2:80 190.1.190.2:80tcp 200.30.75.1:1026 192.168.1.4:1026 190.1.190.2:80 190.1.190.2:80
Uso de Puertos en la Translación de Direcciones IP
IP interface S0/0/0
![Page 23: Configuracion NAT CISCO(Ok)](https://reader030.fdocuments.us/reader030/viewer/2022020715/5535828c4a795920178b45ea/html5/thumbnails/23.jpg)
© 2006 Cisco Systems, Inc. All rights reserved. Cisco Public 23
Comandos Depuración NAT
Router(NAT)#debug ip nat
NAT: s=192.168.1.2->200.30.75.1, d=190.1.190.2[20]
NAT*: s=190.1.190.2, d=200.30.75.1->192.168.1.2[20](reply)
NAT: s=192.168.1.3->200.30.75.1, d=190.1.190.2[21]
NAT*: s=190.1.190.2, d=200.30.75.1->192.168.1.3[21]
NAT: s=192.168.1.4->200.30.75.1, d=190.1.190.2[22]
NAT*: s=190.1.190.2, d=200.30.75.1->192.168.1.4[22]
WEB SERVER
TranslaciónIP S0/0/0
![Page 24: Configuracion NAT CISCO(Ok)](https://reader030.fdocuments.us/reader030/viewer/2022020715/5535828c4a795920178b45ea/html5/thumbnails/24.jpg)
© 2006 Cisco Systems, Inc. All rights reserved. Cisco Public 24
Configure NAT on a Cisco Router Describe how to configure NAT Overload to conserve
IP address space in a network
![Page 25: Configuracion NAT CISCO(Ok)](https://reader030.fdocuments.us/reader030/viewer/2022020715/5535828c4a795920178b45ea/html5/thumbnails/25.jpg)
© 2006 Cisco Systems, Inc. All rights reserved. Cisco Public 25
Resumen Network Address Translation (NAT)
–A means of translating private IP addresses to public IP addresses–Type s of NAT
•Static•Dynamic
–Some commands used for troubleshooting•Show ip nat translations•Show ip nat statistics•Debug ip nat
![Page 26: Configuracion NAT CISCO(Ok)](https://reader030.fdocuments.us/reader030/viewer/2022020715/5535828c4a795920178b45ea/html5/thumbnails/26.jpg)
© 2006 Cisco Systems, Inc. All rights reserved. Cisco Public 26