Xin chào ! Nếu đây là lần đầu tiên bạn đến với diễn đàn, xin vui lòng danh ra một phút bấm vào đây để đăng kí và tham gia thảo luận cùng VnPro.

Announcement

Collapse
No announcement yet.

CCNA Nat SIM

Collapse
This is a sticky topic.
X
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • CCNA Nat SIM

    CCNA NAT SIM Question 1


    Question
    A network associate is configuring a router for the CCNA Training company to provide internet access. The ISP has provided the company six public IP addresses of 198.18.184.105 198.18.184.110. The company has 14 hosts that need to access the internet simultaneously. The hosts in the CCNA Training company LAN have been assigned private space addresses in the range of 192.168.100.17 – 192.168.100.30.
    The task is to complete the NAT configuration using all IP addresses assigned by the ISP to provide Internet access for the hosts in the Weaver LAN. Functionality can be tested by clicking on the host provided for testing.
    Configuration information
    router name – Weaver
    inside global addresses – 198.18.184.105 198.18.184.110/29
    inside local addresses – 192.168.100.17 – 192.168.100.30/28
    number of inside hosts – 14
    The following have already been configured on the router:
    - The basic router configuration
    - The appropriate interfaces have been configured for NAT inside and NAT outside
    - The appropriate static routes have also been configured (since the company will be a stub network, no routing protocol will be required.)
    - All passwords have been temporarily set to “cisco”


    Solution:


    The CCNA Training company has 14 hosts that need to access the internet simultaneously but we just have 6 public IP addresses from 198.18.184.105 to 198.18.184.110/29. Therefore we have to use NAT overload (or PAT)
    Double click on the Weaver router to open it
    Router>enable
    Router#configure terminal
    First you should change the router’s name to Weaver
    Router(config)#hostname Weaver
    Create a NAT pool of global addresses to be allocated with their netmask (/29 = 255.255.255.248). There were reports that the simulator in the real exam did not accept “prefix-length” keryword so you should use “netmask” keyword.
    Weaver(config)#ip nat pool mypool 198.18.184.105 198.18.184.110 netmask 255.255.255.248
    Create a standard access control list that permits the addresses that are to be translated
    Weaver(config)#access-list 1 permit 192.168.100.16 0.0.0.15
    Establish dynamic source translation, specifying the access list that was defined in the prior step
    Weaver(config)#ip nat inside source list 1 pool mypool overload
    This command translates all source addresses that pass access list 1, which means a source address from 192.168.100.17 to 192.168.100.30, into an address from the pool named mypool (the pool contains addresses from 198.18.184.105 to 198.18.184.110)
    Overload keyword allows to map multiple IP addresses to a single registered IP address (many-to-one) by using different ports
    The question said that appropriate interfaces have been configured for NAT inside and NAT outside statements.
    This is how to configure the NAT inside and NAT outside, just for your understanding:
    Weaver(config)#interface fa0/0
    Weaver(config-if)#ip nat inside
    Weaver(config-if)#exit
    Weaver(config)#interface s0/0
    Weaver(config-if)#ip nat outside
    Weaver(config-if)#end
    Finally, we should save all your work with the following command:
    Weaver#copy running-config startup-config
    Check your configuration by going to “Host for testing” and type:
    C:\>ping 192.0.2.114
    The ping should work well and you will be replied from 192.0.2.114
    Last edited by phamminhtuan; 17-12-2010, 12:05 AM.
    Phạm Minh Tuấn

    Email : phamminhtuan@vnpro.org
    Yahoo : phamminhtuan_vnpro
    -----------------------------------------------------------------------------------------------
    Trung Tâm Tin Học VnPro
    149/1D Ung Văn Khiêm P25 Q.Bình thạnh TPHCM
    Tel : (08) 35124257 (5 lines)
    Fax: (08) 35124314

    Home page: http://www.vnpro.vn
    Support Forum: http://www.vnpro.org
    - Chuyên đào tạo quản trị mạng và hạ tầng Internet
    - Phát hành sách chuyên môn
    - Tư vấn và tuyển dụng nhân sự IT
    - Tư vấn thiết kế và hỗ trợ kỹ thuật hệ thống mạng

    Network channel: http://www.dancisco.com
    Blog: http://www.vnpro.org/blog

  • #2
    CCNA NAT SIM Question 2

    Question:
    You work as a network technician at 9tut.com. Study the exhibit carefully. You are required to perform configurations to enable Internet access. The Router ISP has given you six public IP addresses in the 198.18.32.65 198.18.32.70/29 range.
    9tut.com has 62 clients that needs to have simultaneous internet access. These local hosts use private IP addresses in the 192.168.6.65 – 192.168.6.126/26 range.
    You need to configure Router1 using the PC1 console.
    You have already made basic router configuration. You have also configured the appropriate NAT interfaces; NAT inside and NAT outside respectively.
    Now you are required to finish the configuration of Router1. Solution:


    The company has 62 hosts that need to access the internet simultaneously but we just have 6 public IP addresses from 198.18.32.65 to 198.18.32.70/29 => we have to use NAT overload (or PAT)
    Double click on PC1 to access Router1′s command line interface
    Router1>enable
    Router1#configure terminal
    Create a NAT pool of global addresses to be allocated with their netmask (notice that /29 = 248)
    Router1(config)#ip nat pool mypool 198.18.32.65 198.18.32.70 netmask 255.255.255.248
    Create a standard access control list that permits the addresses that are to be translated
    Router1(config)#access-list 1 permit 192.168.6.64 0.0.0.63
    Establish dynamic source translation, specifying the access list that was defined in the prior step
    Router1(config)#ip nat inside source list 1 pool mypool overload
    This command translates all source addresses that pass access list 1, which means a source address from 192.168.6.65 to 192.168.6.126, into an address from the pool named mypool (the pool contains addresses from 198.18.32.65 to 198.18.32.70)
    Overload keyword allows to map multiple IP addresses to a single registered IP address (many-to-one) by using different ports
    The question said that appropriate interfaces have been configured for NAT inside and NAT outside statements.
    This is how to configure the NAT inside and NAT outside, just for your understanding:
    Router1(config)#interface fa0/0
    Router1(config-if)#ip nat inside
    Router1(config-if)#exit
    Router1(config)#interface s0/0
    Router1(config-if)#ip nat outside
    Before leaving Router1, you should save the configuration:
    Router1(config)#end (or Router1(config-if)#end)
    Router1#copy running-config startup-config
    Check your configuration by going to PC2 and type:
    C:\>ping 192.0.2.114
    The ping should work well and you will be replied from 192.0.2.114
    Phạm Minh Tuấn

    Email : phamminhtuan@vnpro.org
    Yahoo : phamminhtuan_vnpro
    -----------------------------------------------------------------------------------------------
    Trung Tâm Tin Học VnPro
    149/1D Ung Văn Khiêm P25 Q.Bình thạnh TPHCM
    Tel : (08) 35124257 (5 lines)
    Fax: (08) 35124314

    Home page: http://www.vnpro.vn
    Support Forum: http://www.vnpro.org
    - Chuyên đào tạo quản trị mạng và hạ tầng Internet
    - Phát hành sách chuyên môn
    - Tư vấn và tuyển dụng nhân sự IT
    - Tư vấn thiết kế và hỗ trợ kỹ thuật hệ thống mạng

    Network channel: http://www.dancisco.com
    Blog: http://www.vnpro.org/blog

    Comment


    • #3
      2 bài LAB này, trên con Router kết nối với Router ISP có nên sữ dụng default root: ip route 0.0.0.0 0.0.0.0 192.0.2.114 không?

      Thấy trên trang 9tut.com cũng không có thêm cái default root, mà không gỏ thì làm sao PC ping 192.0.2.114 thành công.

      Túm lại là khi đi thi thật, chúng ta có nên thêm default root trên con ROuter ko?:-S

      Comment

      Working...
      X