13 hours 57 minutes
Hello. Welcome back to Ice, Indy one. Interconnecting Cisco networking devices are one this up. So 633 static and dynamic Nat configuration.
I interned here and I'll be your instructor for this course
in this hips. And the less episode we went over the Net concepts the different types of nets with static dynamic and that overload we went over.
Why net is useful. And how is the kind of one of the pieces of the pie that is a savior toe? I pee before
in a subset of record, how to configure the router for aesthetic and dynamic net.
And like I said, first we're gonna hit the static in net configuration, and then we're gonna kind of reload the device and go to the negative dynamic night configuration.
It's a quick process, Mahir, which Nat type is the 11 mapping that is pre configured to always be the same mapping. I'll give you a few seconds.
All right? Hopefully you got static night. Remember, Dynamic isn't always gonna be the same mapping.
It is a 11 mapping. But remember that it is dynamic, and that is not the same. And that I p's will change depending on who's meeting the I P address on the network.
So the lab diagram is here. We just have a switch set up, which you'll see right here. That's just a quick diagram for switch. We're not using a special things with switch, so I negated too, and put it there. We have that plugged into the router on the fast Ethernet 00 dot That is the 10 1106 24 network.
I have my public network notionally set up as the 1 91 6810 network. Um, just because I had plugged into my actual SoHo network because my router there is working as a d a c P server.
and it will just allow me to connect easily to a different network.
You didn't set this up with another router within our Cisco router if you want.
it was a matter, but anyway, the static mapping is we're gonna do is the 0.50 is gonna go to that to 10.
Definitely one is gonna go to 11 and 52 is going to go to 12.
There were about trying to remember these. We'll show you in the next video. So what we want here? Uh,
so your default gateway and routers for the 1 91 681 dots one or zero. Whatever. The router is
set your gateway of last resort. If you want,
make sure that you can communicate from your router to your you're so whole Roger, you're 1 91 68 router
and then it make sure that your router one or two or whatever can ping all three devices as well.
So breeze into the night configuration. So the first thing we're gonna do is we're gonna match map each local I P address or the local or the inside local
toothy inside global I p address or that 19 to address.
So here we have the actual what would be a public I p Matt to a inside network? I just did it to show you the where each one goes. What are you going to do? The 1 91 681.2 10 to 11 to 12 instead of the 1 87 25 That's 1 23 56
After we've set up all the static map ings, we're gonna tell the router which interface the inside local is on, and then we're going to tell it which side the inside global's on.
It's a fairly simple process, actually. So I'm gonna go ahead and bring out my party Session. Where is it?
All right, buddy?
All right, so if we do a do a show I p interface brief here, someone can just show you where everything's ants.
I still have a serial dresses up. It's on the Serie, to be honest,
um, my fast u turn it is set aesthetically 2 to 10. I didn't allow the d a sheep you to do anything for on the rotor side. Um and then I have my landside dresses. Well,
so let's go ahead and just go down the line. Let's set up our map things. Here we go with configuration Terminal I P. Nat,
what options we want inside
source. We're only don't worry about destination address. Translation. That's not an icy. Any one thing we're gonna wear about source address translation.
And from there we want to do a static list,
and the inside locals will be 10 11 50
and inside global was gonna be one that you want 681.2 10
and we don't need any of that.
So we're gonna go ahead. I'm gonna do this for the other two. I p addresses here. So that 51 gets looked,
Did you miss it with me? Control A know where that? Nope. Command puts in front of it. It works fine.
So would you like to hear? Got to 10.
Okay, we're back to where it should be.
51 goes 2 to 11
on 52 goes 2 to 12.
It must go ahead and go into the interface. This is the land side interface, Elissa. Beer inside local.
We want abba I p net inside.
Sometimes this hangs here for a second. Somebody going posit video, but hang.
All right. So now if we go into interface at zero
phaser one, which is the inside global address or the public side interface,
usually a serial interface. But for this one, lab is, um it's gonna be f a 01 So here we go. T i p natch
simple. Is that so? If we go to show i p Nat translations
Here we have our three map ings. We have the inside global going to this inside local
to turn if you want. So what I'm gonna do here, I'm just gonna shoot a ping
command on all three devices or you'll see is an icy and P protocol.
Like we talked about what the access lists. So just give me a second. I'm gonna shoot a ping on all three devices.
All right? So now if we run the I peanut translations the little mess here, But just know we have icmp protocol.
We have this being matter. Here. We have this one being mapped to hear that you wanted to 11. So it's working properly, as it should be. Um, they can all paying that 1 91 succeed one that one
and then it's showing the translations. So, no, if we go to I p net statistics,
it's a little more. We can see the three static
translations that occurred. We have our outside interfaces.
We have our incited our faces. We have all of our translated packets.
It was kind of cool. No, those two commands and they're gonna be two huge troubleshooting commands and not translations
anyway, So that should bring us into the next section, which would be dynamic net. So what I'm gonna do, I'm gonna fast for the video while I remove these commands so we can get us back to a base config kind of cell thing.
So I'm gonna go, and just fast for the video here won't do this.
All right, so we're back at the base. Could figure we have no more nat translations, the interfaces or set back to normal.
So I'm gonna go ahead and minimize Putting will go over this dynamic that configuration.
So once again, we're gonna tell The interface is if you are an inside local address if you're inside global address, meaning i p net inside for the land side and I p net outside for the public address side or the inside global address
from there were actually going to configure an a C l that will match packets entering the land side interface. So we want to match the entire what's a slash 24
of $10.1. That one. Remember, we just set up the 000 to 55. So here's what I see on the access list. Come back into the translation or net.
Um, we have to create the HCL that matches these addresses. Use enough
from there. We're gonna create a nap pool for the list to pull inside global addresses from. So from this, we're gonna create the 1 91 681 to 10 through dot to 12.
We're gonna create a pool with those three addresses
that we're gonna give it a name.
And from there we're gonna pull it all together and actually enabled Dynamic Nat by saying what a c l we're gonna use to pull to allow the inside local addresses.
And then we're gonna say what pool we're gonna use for the inside global addresses.
So let's go ahead and bring up the party session and let's get going.
So I could figure terminal going to go to interface, eh? Phasers here, which is the landside I p. I mean that inside,
and we'll hang for a second.
All right, so on f one
be nets outside
exit. Now here. We're gonna build that a c l. Right. So access. We only just need to do a standard access list since we're only matching on the
source address, So I p access lis one. We're gonna permit tender one down, 1 to 0. And we want a match on the fourth act it
we're gonna match on the 1st 3 actives. We don't care about the fourth act at matching
access us one. Now we're gonna create the pool of addresses for it to pull from for the inside global addresses
pool name we're gonna do router one land
and start I p address at 1 91 Succeeded Wanda to 10.
And the end. I feel you 1 91 68 to 12
and Arnett, Mass to 35 to 45 to 35 0
Well, uh, apologize You actually have to write on that mask is what
all right. Yeah, we don't need the rest of that.
So the creator pool, we have created our A CEO. We've told the interface is what they need to d'oh. So now let's enable dynamic nets. So let's bring it all together. Hi. P nets
inside. Where were the source and adding,
we're going to use the list. Marissa, Here's where we would see normally set static,
so we want our list to be a cell number one.
And we want a pool.
Come on, pool
on to be rather one land,
and that's all we need.
So now if we run a show I p net translations. We have nothing. So I'm gonna go ahead and shoot a paying across just one device here.
It was to look here. Okay, so now we have one dynamic.
we have one dynamic translation. So if you're married 10.51 was listed 2 to 11 last time. So now I'm gonna get on 110.52 Senate pink first.
All right. So you remember 0.51 was to 11 last time,
and this time to 11 is at 110.52.
So, Moses, how dynamic work it on. Lee assigns what is needed if you notice we have three devices on the way in. But the 3rd 1 is not doing anything, so it doesn't need an address.
So you only need you set up a cz. Many
inside global peace is actually necessary.
So it's a of 30 devices again, and only 10 are being used at a time. You might not need 30 addresses. You might only need 10 because only 10 are being used at a time,
so keep down into consideration.
But that should be it for the dynamic net. Hopefully, you guys caught all that. We're gonna move on to the post assessment here.
What is the public? I p called on the source router for Nat. Think about this for a second.
All right? It is your inside global address
and the next up, So we're gonna look at Nat Overload or Pat Configuration, the wonderful in that tool.
And as always, if you have questions, need help. Feel free to shoot the message colorize thinking for washing this episode. And I look forward to seeing you the next one.
This course will enable students to understand virtualization and cloud services, and network programmability related to LAN, access and core segments.