Skip to main content

CCNA NAT Simulation

nat

 

A network associate is configuring a router for the weaver company to provide internet access. The ISP has provided the company six public IP addresses of 198.18.184.105 198.18.184.110. The company has 14 hosts that need to access the internet simultaneously. The hosts in the company LAN have been assigned private space addresses in the range of 192.168.100.17 – 192.168.100.30.

The following have already been configured on the router:
- The basic router configuration
- The appropriate interfaces have been configured for NAT inside and NAT outside.
- The appropriate static route have also been configured (since the company will be a stub network, no routing protocol will be required)
- All passwords have been temporarily set to “cisco”.

The task is to complate the NAT configuration using all IP addresses assigned by the ISP to provide Internet access for the hosts in the Weaver LAN. Functionality can be tested by clicking on the host provided for testing.

Configuration information
router name – Weaver
inside global addresses – 198.18.184.105 198.18.184.110/29
inside local addresses – 192.168.100.17 – 192.168.100.30/28
number of inside hosts – 14

Answer

Step 1: Change the hostname

Step 2: Configure NAT

Step 3: Save the configuration

Step 4: Test your NAT configuration

Watch Video

Click on the Console PC (the host icon below router icon which connected to router with black dotted line). When you get the CLI mode, there will be a message exactly like “Press RETURN to get started”. Press your ENTER key once and your Router user exec mode will shown. Use the following commands to configure your router.

Command

Router>enable
Password: cisco
Router#

Step 1: Change the hostname to Weaver

Router#configure terminal
Router(config)#hostname Weaver
Weaver(config)#

n1

Step 2: Configure NAT

1. Specify the private IP address using Access Control List (ACL) statement

First we need to find the Network address of the hosts.

Note: The inside local addresses have been assigned from 192.168.100.17 to 192.168.100.30/28.
Subnet Mask of /28 = 11111111 . 11111111 . 11111111 . 11110000 = 255.255.255.240
For network address, the network bits of the IP address remain same but the host bits turned to 0′s
The last octet of  first local IP address is 17, and binary of 17 = 00010001
Network Address = 192.168.100.00010000 = 192.168.100.16

Second, we need to find the wildcard mask of /28

Note: The wildcard mask is the inverse of the subnet mask. Network bits are 0′s and Host bits are 1′s.
Subnet Mask = 11111111 . 11111111 . 11111111 . 11110000
Wildcard Mask = 00000000 . 00000000 . 00000000 . 00001111 = 0.0.0.15

Weaver(config)#access-list 1 permit 192.168.100.16 0.0.0.15

2. Specify the public IP address (198.18.184.105 – 198.18.184.110/29)

Subnet Mask of /29 = 11111111 . 11111111 . 11111111 . 11111000 = 255.255.255.248

Weaver(config)#ip nat pool mynat 198.18.184.105 198.18.184.110 netmask 255.255.255.248

3. Link private IP address list and public IP address list

From above 2 command, the ACL number is 1 and NAT pool name is mynat

Weaver(config)#ip nat inside source list 1 pool mynat overload
Weaver(config)#end
Weaver#

n2

Step 3: Save the configuration

Weaver#copy run start
Destination filename [startup-config]? [ENTER]

n3

Step 4: Test the NAT configuration

The IP address of ISP is 192.0.2.114, if the test connectivity of ISP IP address success then the above NAT configuration is working properly.

Click Show Topology button, then click on the icon “Host for Testing”. In the command prompt of PC, execute command ping 192.0.2.114

n4

Comments

  1. Any chance the PaketTracer sim can be posted for download, and practice?

    ReplyDelete
  2. This comment has been removed by a blog administrator.

    ReplyDelete
  3. Hello Guys good news for you that CCNA discounted and Microsoft vouchers are now available. Now New CCNA (200-120) vouchers on special discount of 58% for World wide, with six months expiry date till you purchase. Each voucher cost 70USD.

    Details Required For CCNA Voucher For Discount Processing:

    1-Full Name. 1st Name & Last Name (as you want to appear on certificate & documents)
    2-Country.
    3-City.
    4-State.
    5-Pin Code (or Area Code)
    6-Residential Address (or where you can collect your Certificate or further correspondence
    can be received)
    7-Date of birth
    Add me on Skype through this information which is written below:
    Skype Name: rockon660
    you can also email me at this email address which is written below:
    madeelqaiser@gmail.com
    If you have any Questions feel free to contact me.

    Thanks,
    Best regards,
    Adeel

    ReplyDelete
  4. Sorry,didn't you miss ip nat inside and ip nat outside on the interface?

    ReplyDelete
  5. It is said that Ip nat inside and ip nat outside are already configured

    ReplyDelete
  6. why didnt you begin with the .105 address in the pool???

    ReplyDelete
  7. Hello Guys good news for you that CCNA discounted and Microsoft vouchers are now available. Now New CCNA (200-120) vouchers on special discount of 58% for World wide, with six months expiry date till you purchase.

    Details Required For CCNA Voucher For Discount Processing:

    1-First Name.
    Last Name. (as your name written in your National Identity card)
    2-Country.
    3-City.
    4-State.
    5-Pin Code (or Area Code)
    6-Residential Address (or where you can collect your Certificate or further correspondence
    can be received)
    7-Date of birth
    Add me on Skype through this information which is written below:
    Skype Name: rockon660
    you can also email me at this email address which is written below:
    madeelqaiser@gmail.com
    If you have any Questions feel free to contact me.

    Thanks,
    Best regards,
    Adeel

    ReplyDelete
  8. Great simulation. I have also used the test questions from exams.eu.pn/cisco
    They helped a lot!

    ReplyDelete
  9. Hey guys, I just wrote now in UK. I Passed CCNA Security Cisco Certified Network Associate Security 210-260 exam with 96%. This dumps www.grades4sure.com/210-260-exam-questions.html is valid but a few answers are wrong. Although I don’t expect to pass with a full score, right? If your aim is just to pass the exam, only by memorizing the dumps is enough. But if you want to master skills, you really need to practice more.

    ReplyDelete
  10. Get best offer from Dumps4Download on free 210-260 dumps or all Cisco exam study material visit this link.

    watch video and share,
    How To Pass Cisco 210-260 PDF Dumps

    ReplyDelete
  11. Gosh, router configuration always was such a hard thing for me. I hardly can manage configuration of my home router, so your post is like a miracle for me. At least I can do everything properly. I even read review of EssayAcademia.com already, but didn't
    t find there anything useful for me

    ReplyDelete
  12. sorry can i download this simulation on my pc? If there is, where?

    ReplyDelete
  13. I think that the way you have described is correct and almost all of us had the chance to download this simulation without any problems encountered.

    ReplyDelete
  14. None other than real 200-101 exam dumps is reliable for me to prepare for an IT exam. I have done my best in 200-101 exam and it became possible only with the instructions and guidance from the experts at DumpsSure. Anyone can be fortunate by choosing Cisco 200-101 study guide.

    # 100% Passing Guarantee of 200-101 Exam
    # 90 Days Free Updates of 200-101 Exam
    # Full Money Back Guarantee on 200-101 Exam

    Discount Offer! Use this Coupon Code to get 20% OFF ( Off20 )

    HOT EXAMS
    AZ-300 Dumps
    HPE6-A67 Dumps
    220-702 Dumps
    SCS-C01 Dumps
    AZ-100 Dumps
    A00-240 Dumps
    JK0-023 Dumps
    300-370 Dumps
    700-505 Dumps
    1V0-605 Dumps
    PMI-100 Dumps

    2020 Latest DumpsSure Real Exam Dumps (PDF) Instant Download:
    https://www.dumpssure.com

    ReplyDelete
  15. Accurate and valid exam dumps for which are verified by our professionals. Download the lastest exam question answer from Dumpsadviser.
    https://www.dumpsadviser.com

    ReplyDelete

Post a Comment

Popular posts from this blog

Cisco Packet Tracer Multi User Connection

Multiuser communication allows multiple point-to-point (peer) connections between multiple instances of Packet Tracer. By allowing communication between Packet Tracer instances, a new door has been opened to a fun, interactive, social, collaborative, and competitive learning environment. Instructors will now be able to create a variety of activities for students to learn in groups that will facilitate greater social interaction between students. Students will benefit from this environment by working together to solve problems and share ideas. Both students and teachers should take full advantage that Multiuser will offer in their learning environment. Technical Information Communicates between instances using PTMP. PTMP is TCP based. By default, uses TCP port 38000, is customizable, and each new instances on the same PC will use the next available port. On by default. UPnP will attempt to establish port forwarding to facilitate home networks. All network co...

A network administrator is adding two new hosts to SwitchA. Which three values could be used for the configuration of these hosts?

Refer to the exhibit. A network administrator is adding two new hosts to SwitchA. Which three values could be used for the configuration of these hosts? (Choose three.) A. host A IP address: 192.168.1.79 B. host A IP address: 192.168.1.64 C. host A default gateway: 192.168.1.78 D. host B IP address: 192.168.1.128 E. host B default gateway: 192.168.1.129 F. host B IP address: 192.168.1.190 Answer : A, C, F Explanation: Refer to the exhibit. Host A connected to Port 6 and Host B connected to Port 9. Also Port 6 and Port 9 associated with VLAN10 AND VLAN 20 respectively. In router Rtr1, the sub-interface fa0/0.10 and fa0/0.20 ‘s IP address will be used for Default Gateway for Host A and Host B. First take the IP address of fa0/0.10 – 192.168.1.78 /27 (255.255.255.224) Its IP range will be 192.168.1.65 – 192.168.1.94 Network Address – 192.168.1.64, Broadcast Address – 192.168.1.95 Second take the IP address of fa0/0....

How to recover Cisco Router/Switch Password

The following is the tutorial about how recover a Cisco Passwords (Example: Console Password, Enable Password, Enable secret, VTY Password. But no need to removing case or CMOS Battery) Step 1: Restart / Power On the Router “R1” Step 2: Press Ctrl + Break, When the router is booting IOS. This key will interrupt the router boot process and prompt you ROM Monitor (ROMMON) Mode.   Step 3: Change the Configuration Register key to 0x2142 using confreg 0x2142 command. The key 0x2142 used to avoid coping configuration from NVRAM to RAM during next boot process. Then restart the router using reset command Step 4: After router restarted you will prompted for Initial Configuration. Type no to avoid Initial Configuration.   Step 5: Now the router with basic default configuration will be loaded. You can verify your passwords by show startup-config in Privilege EXEC mode.   ...