Skip to main content

CCNA NAT Simulation

A network associate is configuring a router for the Weaver company to provide internet access. The ISP has provided the company six public IP addresses of 198.18.184.105 - 198.18.184.110. The company has 14 hosts that need to access the internet simultaneously. The hosts in the company LAN have been assigned private space addresses in the range of 192.168.100.17 – 192.168.100.30.

natq

The following have already been configured on the router:

  • The basic router configuration
  • The appropriate interfaces have been configured for NAT inside and NAT outside
  • The appropriate static routes have also been configured (since the company will be a stub network, no routing protocol will be required.)
  • All passwords have been temporarily set to “cisco”



The task is to complete the NAT configuration using all IP addresses assigned by the ISP to provide internet access for the hosts in the weaver LAN. Functionality can be tested by clicking on the host provided for testing.

Configuration information:

Router name - Weaver
Inside global addresses - 198.18.184.105 – 198.18.184.110 /29
Inside local addresses - 192.168.100.17 – 192.168.100.30 /28
Number of inside hosts - 14


Answer :

Step 1: Router Name

Router>enable
Router#configure terminal
Router(config)#hostname Weaver
Weaver(config)#


Step 2: NAT Configuration

Weaver(config)#access-list 10 permit 192.168.100.16 0.0.0.15
Weaver(config)#ip nat pool  mynatpool 198.18.184.105 198.18.184.110 netmask 255.255.255.248
Weaver(config)#ip nat inside source list 10 pool mynatpool overload
Weaver(config)#end


Step 3: Save Configuration

Weaver#copy run start



Verification:

We can verify the answer by pinging the ISP IP Address (192.0.2.114) from Host for testing.

Click “Host for testing”

In command prompt, type “ping 192.0.2.114”. If ping succeeded then the NAT is working properly.


Screen Shots:

nat1


nat2


nat3




To download this Lab: https://app.box.com/s/ljdgzhhzaubocmmutjje
Labels:

Comments

  1. AnonymousSeptember 24, 2013 at 9:49 AM

    thanks for your help i'm not sure but i guess you forgot add Router1(config)#interface fa0/0

    Weaver(config-if)#ip nat inside

    Weave(config-if)#exit

    Weave(config)#interface s0/0

    Weave(config-if)#ip nat outside

    ReplyDelete
  2. AdiOctober 10, 2013 at 4:09 AM

    Hello Guys I hope you will be fine there.Now New CCNA (200-120) and CCNA security (640-554) Vouchers on special discount of 58% for World wide, with six months expiry date till you purchase. Each voucher cost 70USD.

    Details Required For CCNA Voucher For Discount Processing:

    1-Full Name. 1st Name & Last Name (as you want to appear on certificate & documents)
    2-Country.
    3-City.
    4-State.
    5-Pin Code (or Area Code)
    6-Residential Address (or where you can collect your Certificate or further correspondence
    can be received)
    7-Date of birth
    Add me on Skype through this information which is written below:
    Skype Name: rockon660
    you can also email me at this email address which is written below:
    madeelqaiser@gmail.com
    If you have any Questions feel free to contact me.

    Thanks,
    Best regards,
    Adeel

    ReplyDelete
  3. AnonymousNovember 26, 2013 at 9:16 AM

    This comment has been removed by a blog administrator.

    ReplyDelete
  4. UnknownDecember 21, 2013 at 8:57 PM

    please, how can I download this simulation?

    ReplyDelete
  5. AnonymousDecember 24, 2013 at 11:40 AM

    No need for the ip nat inside/ip nat outside command
    Question it self says appropriate NAT commands applied at the interface.

    ReplyDelete
  6. AnonymousNovember 2, 2014 at 10:40 PM

    in the testing host, please change the default gateway to 255.255.255.240 not 255.255.255.0 this was an issue. Another thing to test the nat is to see the translation "sh ip nat tran" and "sh ip nat stat" to see live translation: 1. enable debug nat "debug ip nat" 2. ping the ISP from the host and you should see the translation it is a PAT. Thank you very much for this snack lab. Michael Flutie.

    ReplyDelete

Post a Comment

Popular posts from this blog

Cisco Packet Tracer Multi User Connection

Multiuser communication allows multiple point-to-point (peer) connections between multiple instances of Packet Tracer. By allowing communication between Packet Tracer instances, a new door has been opened to a fun, interactive, social, collaborative, and competitive learning environment. Instructors will now be able to create a variety of activities for students to learn in groups that will facilitate greater social interaction between students. Students will benefit from this environment by working together to solve problems and share ideas. Both students and teachers should take full advantage that Multiuser will offer in their learning environment. Technical Information Communicates between instances using PTMP. PTMP is TCP based. By default, uses TCP port 38000, is customizable, and each new instances on the same PC will use the next available port. On by default. UPnP will attempt to establish port forwarding to facilitate home networks. All network co...
2 comments
Read more

Access Control List (ACL) Simlet

An administrator is trying to ping and telnet from Switch to Router with the results shown below: For this question we only need to use the show running-config command to answer all the questions below: Router>enable Router#show running-config   Question 1 Which will fix the issue and allow ONLY ping to work while keeping telnet disabled? A. Correctly assign an IP address to interface fa0/1 B. Change the ip access-group command on fa0/0 from “in” to “out” C. Remove access-group 106 in from interface fa0/0 and add access-group 115 in. D. Remove access-group 102 out from interface s0/0/0 and add access-group 114 in E. Remove access-group 106 in from interface fa0/0 and add access-group 104 in Answer : E Explanation: The question was not about FTP so skip line #1 and line #2. The line #3 denies telnet traffic and line #4 permits icmp-echo traffic. L...
29 comments
Read more

Host A pings interface S0/0 on router 3. What is the TTL value for that ping?

Refer to the exhibit. Host A pings interface S0/0 on router 3. What is the TTL value for that ping? A. 252 B. 253 C. 254 D. 255 Answer : B Explanation: The TTL or Time-To-Live gives you an indication of the number of routers between the source and destination. The TTL is used to prevent an IP packet from looping inside an IP network and causing a network meltdown. The initial TTL packet value for an IP packet is 255 and then it is decremented by 1 each time it encounters a router. When this value reaches 0, the packet is discarded by a router. The TTL value is contained in each IP packet including ICMP packets. The TTL value given by the ping command is in fact the TTL value of an echo_response packet. By default, Windows will decrease the TTL by 128 and Ubuntu Linux by 192. The above the exact topology of this questions. I used 10.0.0.1 for Host A’s IP address and 12.0.0.2 for R3 S0/0’s IP address. All router has been config...
7 comments
Read more