網路位址轉換 (nat)

11 - 1 NAT11 - 2 11 - 3 NAT 11 - 4 NAT 11 - 5 NAT11 - 6 NAT 11 - 7 SDM NAT 11 - 8

(NAT) (Network Address Translation, NAT) NAT (Port Address Translation, PAT, NAT , NAT overload) NAT, SDM , NAT NAT , 10

11 - 1 NATNAT (Classless Inter-Domain Routing, CIDR) , IP IP , IP , NAT , NAT , NAT

NAT, NAT IP , NAT , , NAT NAT , IP ISP

NATNAT , 11.1

NATNAT , , NAT , , 11.1 NAT

11 - 2 3 NAT NAT NAT NAT IP NAT IP IP IP NAT , , NAT

IP , (overloading) NAT NAT, , IP IP () (Port Address Translation, PAT)

PAT (NAT ), IP , NAT IP ~

11 - 3 NAT NAT NAT (global address), , , (local) NAT , (inside local address)

NAT (outside local address) (), (inside global address), (outside global address) 11 - 2 , NAT

11 - 4 NAT NAT , 11.2 NAT () 11.2 , 10.1.1.1 NAT IP IP , , NAT

NAT , NAT NAT IP IP (PAT) 11.3 PAT

NAT , IP , 11.3 NAT IP IP , ,

NAT IP , NAT, PAT , IP 65000 ()

NAT NAT

NAT, ip nat inside source IP , ip nat inside source IP 10.1.1.1 IP 170.46.2.2 , ip nat ip nat inside , ip nat outside

NAT ip nat inside source , ip nat outside source

NAT NAT IP , IP NAT

NAT

ip nat inside source list 1 pool todd access-list 1 IP todd IP NAT (pool),

NAT(interesting traffic), NAT , ip nat pool todd 170.168.2.2 192.168.2.254 , NAT

(PAT) NAT, NAT PAT

(PAT)

PAT NAT , IP , ip nat inside source overload

(PAT), IP IP IP NAT , ISP IP , , ( 170.168.2.2), , IP ,

NAT NAT () , IP ,

IP NAT ,

NAT , debug ip nat NAT

NAT clear ip nat translation NAT , (*)

11 - 5 NATCisco NAT , , ,

NAT, NAT NAT

NAT, , , NAT , , CPU, NAT 160

NAT (), , , ip nat translation max-entries show ip nat statistics NAT , (active)

NAT (hit) (miss) , pool (refcount)

NAT NAT NAT , , NAT , NAT , Cisco IOS

NATclear ip nat translations , TCP UDP () , (*) , , , () NAT ,

NAT, NAT NAT NAT , (translation timeout),

NAT, NAT , Cisco 86, 400 (24 ), ip nat translation timeout , NAT ,

NAT, 11.4, NAT, NAT

NAT 11.4 , NAT , NAT (PAT) NAT , NAT

pool , , PAT NAT

NAT NAT , 11.5 11.5 NAT , 6 IP , 192.1.2.109 192.1.2.114, , 63 192.168.10.65 192.168.10.126 NAT

NAT,

ip nat pool Todd 192.1.2.109 192.1.2.109 netmask 255.255.255.248 Todd, 192.1.2.109 NAT

NAT prefix-length 29 netmask (, , ~), 192.1.2.109 ip nat pool Todd 192.1.2.109 192.1.2.114 netmask 255.255.255.248, 2 6 TCP

NAT 2 access-list , 10 ip nat inside source list 1 pool Todd overload overload (PAT) ip nat inside ip nat outside

11 - 6 NAT 64.1.1.4 / 30 Corp R3 , 64.1.1.8 / 30 R3 F0 / 0 11.6 , 11.3

NAT 11.6 , Corp R3 PAT , Corp IP (, ISP , ), NAT , , , ISP IP

NAT , Corp NAT , ,

NAT

Corp 64.1.1.5 / 30, R3

NAT , Corp IP 64.1.1.5 PAT , , NAT

NAT

PAT , , HostC telnet HostD, ping, telnet

NAT Corp debug ip nat, HostB telnet HostD Corp

NAT

, ~ 1 HostB 2 , / HostB show ip nat translation

NAT Corp show ip nat statistics

NAT

2 , , SDM NAT

11 - 7 SDM NAT SDM NAT , Configure-->NAT, , NAT 10 , 10 , NAT , , NAT

SDM NAT NAT DMZ, , NAT 1 NAT

SDM NAT NAT, Launch the Selected Task, , NAT

SDM NAT , Next,

SDM NAT , NextNAT ,

SDM NAT , Finish

SDM NAT

SDM NAT

ip nat inside source list

, SDM

SDM NAT , , SDM ( ACLVPN NAT)

11 - 8 (NAT), (PAT) NAT NAT , , , NAT (PAT), SDM NAT

網路位址轉換 (nat)

Documents