Time
13 hours 57 minutes
Difficulty
Beginner
CEU/CPE
14

Video Transcription

00:00
Oh, welcome back to Icy Newborn and her King. Acting Cisco Networking devices apart one This episode 634 Net overload or PAT configuration in Trenton Darren are very structure for this course in the last video, one over how to configure a static and dynamic net
00:17
in this episode of the current How to configure the Net overload with port Address translation.
00:22
And like I said, we're gonna do the net overload configuration. This one. You'll see why it's, ah, little more superior to the I p V for exhaustion problem than the other two
00:33
and quick pretty system here, which Nat type is a wonder man. 121 mapping that is pre configured with a pool of inside global addresses. I'll give a few seconds.
00:44
All right, it is dynamic net where the aesthetic net is a one on one mapping With that, it is always gonna be the same. Mapping net overload and pat are the same thing as you'll see here in a second. And what that does it is gonna map the the port, right?
01:02
It's gonna use that port on the end of the inside global address,
01:04
meaning you can have multiple devices on the inside local different I p addresses use that one inside global I p address. But it's gonna add that specific, unique port to it.
01:18
So we have the same live diagrams we've been using. We've just I just went through and removed the dynamic Nat's configuration on it. So we should have just based config on the router.
01:30
So we get into the net overload configuration. It's real simple. Just like the rest of, um um,
01:38
we're gonna set the i p net inside on the landside or the inside local interface we're gonna set the I P. Net outside command on the, uh would be the outside interface with the public interface inside Global. Whatever you wanna call it, Long as you know,
01:53
from there, we're gonna configure another a c l. That is gonna match all the packets that we want to use that force or in a match, the entire slash 24 network of 10 110
02:05
And from there, we're gonna enable port address translation in global configuration. So I p net source list one, uh, or whatever. We want to call it the a cell number
02:15
interface, and we'll do f A 01
02:20
since there's gonna be inside global address. That's the one we're gonna be performing Nat on
02:24
and wanted to overload overload. Tells it to use those ports to overload that one I p address. In its essence,
02:31
I'm gonna go ahead and bring up the party session here.
02:36
Where is my party session? Real.
02:38
All right, so if you do a show I p that translations, you'll see we have nothing right now. So we go figure terminal on your face F a 00 do a shut I p that inside
02:57
and still hang, so we'll give it a second.
02:59
Alright, here we go. So no one's going to just to make sure we just do it. No. Shut. I don't want to forget that.
03:07
Be halfway to configuration. Forget we know Shut it.
03:09
And I mean that outside, because that is the Elson interface. Curly.
03:15
So from the arrows configure r a c e o. So you could do access list One
03:21
permit. And we can still that we could do a named access. Listen, we want So let's just go and do that access list
03:28
was do the standard access list because we only need a match on source will call it number 10.
03:35
And so now we earned that name. So we want a permit.
03:40
We'll have the cap sucking I did
03:45
for Mitch 10 110
03:50
And when we want to match those three actives,
03:53
except,
03:57
all right, so let's go ahead and enable port address. So I p Nets, we're going inside.
04:03
We wanted to source nets,
04:05
and we want our list to be number 10.
04:11
You can do a word with that as well. But for you, when it's just however you set up that a CEO, it's fine.
04:16
So here we want to specify the interface. Since we don't need a pool, we're not doing that dynamic.
04:23
So here's where we had set up a normal interface. Every new FAA 01
04:28
overload. That is the key.
04:31
So, uh, show P and that translations. We have nothing. So I'm gonna go ahead and shoot a ping from my Kelly box here,
04:42
and she would get now. All right, we have one.
04:46
So I'm gonna go ahead and push a ping from the other two machines real quick.
04:48
All right, so now if we do a show a peanut translations. We should have all three.
04:55
Here's the cool thing. They're all the same
04:58
inside global address. They just have these different corresponding port numbers that are unique to that connection.
05:06
So it's pretty cool. Um,
05:10
So I want to show you guys before we get into the lab. I did finally figure out the SS h issue was Mike. Yeah, that's my Kelly box.
05:17
So I'm gonna bring up the virtual box real quick. So remember, if we went into S H trends at
05:25
10. 111
05:29
so couldn't, you know, sort of found. So I finally actually put it, went into it and started doing research and find figured out. Basically, just turns out was it didn't want to allow those old ciphers toe work because it sees Neal ciphers, so we can do it S S H if you guys runs this issue so you can use minus C for cipher,
05:47
and we're gonna use the strongest one that is available. So a yes to 56.
05:51
She be soon and we'll do the normal trend at 10. 111
05:58
And here. So every accepted the key. So it didn't ask me for the key, But you might have to hit Yes, to accept the key for exits. Unsigned
06:05
library. And now we're in.
06:09
Ah,
06:12
show Priv
06:15
Provisional 15.
06:17
Anyway,
06:18
I just want to show you guys that before we got the lab that we find got it. If you run the same issue, hopefully that helps you.
06:27
Um I just don't I never got around to looking it up till last night, So
06:31
anyway, so we have our port address. Translation really is in the same inside global I p two different inside locals.
06:40
Um,
06:41
so should hopefully be good with that. Anyway, we'll move on to the pool assessment here. We'll do a throwback. What does a standard a C l match on. Hopefully you get this. My now.
06:51
All right. It is the source i p address.
06:56
And in the next module, we go into I p version six. The, uh it's a little daunting at first. Just take it slow. It'll be all right. Um,
07:06
it's
07:09
That's what we're going to. So it has to be learned. I didn't want to when I first learned it either. So you're not alone
07:16
anyway? If you guys have questions, need help feel free to shoot the message. Otherwise, thank you for watching this module. And I look forward to seeing you and excellent.

Up Next

CCNA ICND1

This course will enable students to understand virtualization and cloud services, and network programmability related to LAN, access and core segments.

Instructed By

Instructor Profile Image
Trenton Darrow
Network Engineer at NCI Information Systems, Inc
Instructor