1
00:00:00,660 --> 00:00:08,520
At the moment the show I.P not statistics shows me that I have one active translation and zero dynamic

2
00:00:08,670 --> 00:00:12,190
and zero extended the outside interfaces all fast.

3
00:00:12,190 --> 00:00:15,630
Ethan at 0 1 inciting to faces is first.

4
00:00:15,630 --> 00:00:17,240
Ethan it is 0 0.

5
00:00:17,550 --> 00:00:23,550
I've had a certain number of hits a certain number of packets have been translated by Ceph expired translations

6
00:00:23,550 --> 00:00:24,630
is five.

7
00:00:24,910 --> 00:00:27,310
Now telnet back to Rotto 1

8
00:00:33,900 --> 00:00:41,070
show Oppy net translations shows me that I now have about active net translation and when I look at

9
00:00:41,070 --> 00:00:41,800
statistics.

10
00:00:41,820 --> 00:00:47,110
Notice I have two translations one being static and one being dynamic.

11
00:00:47,430 --> 00:00:50,560
The number of hits has also increased.

12
00:00:50,580 --> 00:00:58,620
I have one extended translation and extended nattered translation maps one IP address and port pay to

13
00:00:58,620 --> 00:01:05,980
another so I have one IP address and port number mapped to another on my Rodda all use Control shift

14
00:01:05,980 --> 00:01:14,180
6 x to jump back to router 3 and back again to Rotto one looking at the statistics.

15
00:01:14,180 --> 00:01:22,190
Now I see that I have three translations one being static to dynamic to extended and we can see that

16
00:01:22,190 --> 00:01:25,850
again by using the show IP net translations command.

17
00:01:25,850 --> 00:01:27,360
These are static entry.

18
00:01:27,530 --> 00:01:33,670
Here the two dynamic entries that have been created from that static entry.

19
00:01:33,810 --> 00:01:36,620
So that was an example of a static net.

20
00:01:36,840 --> 00:01:38,190
Just to summarize.

21
00:01:38,580 --> 00:01:44,490
Show run on Rodda to shows me the configuration on brought it to the device doing the NAT.

22
00:01:44,510 --> 00:01:52,290
I had to specify an IP address on my inside interface and specify that that was the inside interface

23
00:01:54,110 --> 00:01:55,650
on my onsite interface.

24
00:01:55,670 --> 00:01:57,090
Ethan it is 0 1.

25
00:01:57,110 --> 00:02:02,270
I specified an IP address and I specified that this is the Nat outside interface

26
00:02:04,880 --> 00:02:09,350
and lastly I configure it ip not inside source.

27
00:02:09,350 --> 00:02:18,260
Static The actual or inside a local IP address that's going to be Nottage and the inside global address

28
00:02:18,350 --> 00:02:22,780
used on the Internet or outside interface.

29
00:02:22,790 --> 00:02:29,870
That's how you set up setting that once again show run pipes include Nat shows me those three commands.

30
00:02:29,870 --> 00:02:36,260
Those are the three commands that you need to use to configure static Nat.

31
00:02:36,360 --> 00:02:46,020
In this example I have three routers router one a rotas 3 Rato 1 and 2 on the inside network and ratus

32
00:02:46,020 --> 00:02:51,090
connected to routed 3 on the outside or Internet link.

33
00:02:51,120 --> 00:02:57,960
Now typically with static network address translation you are allowing a device on the outside to access

34
00:02:57,960 --> 00:02:59,880
a device from the inside.

35
00:02:59,880 --> 00:03:11,490
In this example I'm using routers but typically Rato one would actually be a server of some description.

36
00:03:11,510 --> 00:03:17,360
So in your minds I think of this as a server and think of this device.

37
00:03:17,360 --> 00:03:28,390
On the bright as a computer or client and router 3 Our client is trying to access the server hosted

38
00:03:28,510 --> 00:03:30,360
on the inside network.

39
00:03:30,510 --> 00:03:37,570
Now in the lab I'm going to leave these as roads but when thinking about this think of Route One being

40
00:03:37,570 --> 00:03:45,370
a server and Rodda 3 being a PC and router 3 is trying to access Rato one on the inside network.

41
00:03:45,370 --> 00:03:52,510
Now with static Nat This is a permanent mapping between the internal IP address and a specified public

42
00:03:52,510 --> 00:03:53,910
IP address.

43
00:03:54,190 --> 00:04:01,210
While in dynamic Nat individual private addresses are mapped to individual public addresses in a pool

44
00:04:01,330 --> 00:04:09,570
of addresses so as an example if you had 10 IP addresses in your pool the first host that sends traffic

45
00:04:09,570 --> 00:04:12,660
will get to use the first IP address in the pool.

46
00:04:12,750 --> 00:04:19,320
The second host would use the second IP address and so forth and so one you're not explicitly mapping

47
00:04:19,680 --> 00:04:24,210
a public IP address to a internal server's IP address.

48
00:04:25,060 --> 00:04:31,210
So when you set up a dynamic Nat you're going to set up a pool of addresses you also configure inside

49
00:04:31,210 --> 00:04:32,570
and outside interfaces.

50
00:04:32,770 --> 00:04:36,000
But you don't create a static map to a single IP address.

51
00:04:36,010 --> 00:04:40,950
You create a pool of addresses that can be used by hosts internally.