Manuals / Avocent / Computer Equipment / Network Router

Avocent Cyclades-PR2000 installation manual Nat Network Address Translation, 200.240.230.2

Models: Cyclades-PR2000

1 136

Download 136 pages 56.31 Kb

Page 90

CHAPTER 11 NAT (NETWORK ADDRESS TRANSLATION)

Cyclades-PR2000

CHAPTER 11 NAT (NETWORK ADDRESS TRANSLATION)

NAT exists to convert local IP addresses into Internet “global” IP addresses. Internet IP addresses are assigned by Internet providers. Due to the explosion of the internet, these numbers are scarce. Certain ranges of IP addresses are reserved for internal use only — they may not have a direct connection to the Internet (for reference, they are 10.0.0.0 - 10.255.255.255, 172.16.0.0 - 172.16.255.255, and 192.168.0.0 - 192.168.255.255). These are used as local IP addresses. Figure 11.1 shows an example of the utility of NAT:

200.240.230.2

PR2000 With Expanded NAT

Global Address Range	ftp
- Network: 200.240.230.224	Server
- Mask: 255.255.255.240	192.168.0.30
	192.168.0.30
Host
Host
	PC

200.200.200.11

200.200.200.10

192.168.0.5

Router Ethernet Port

Primary IP Address: 192.168.0.1

Secondary IP Address: 200.200.200.1

FIGURE 11.1 NAT EXAMPLE

Networks 192.168.0.0 & 200.200.200.0

WWW

Server

192.168.0.31

In this example, the company has:

•14 global IP addresses available for NAT, 200.240.230.225 to 200.240.230.238,

•Two networks connected to the router via the Ethernet Interface, one of which will be translated,

•Two servers that are accessed via the same global IP address, assigned statically.

Chapter 11 - NAT

90

Image 90

Avocent Cyclades-PR2000 installation manual Nat Network Address Translation, 200.240.230.2, 200.200.200.11 200.200.200.10

Contents

Cyclades-PR2000 Installation ManualAccess Router Cyclades CorporationCyclades-PR2000 Installation Manual FCC Warning StatementCanadian DOC Notice Table of Contents Special KeysIP Bridge The IP Protocol OSPF Configuration on the InterfaceOSPF Global Configurations Static RoutingCreation of user accounts and passwords The WAN Interfaces DB-25 Loopback ConnectorTable of Contents The LAN InterfaceCHAPTER 1 HOW TO USE THIS MANUAL Installation Assumptions Text ConventionsIcons ConventionDescription IconCyclades Technical Support and Contact Information Phone + 01 510 Fax + 01 510 41829 Albrae Street Fremont, CA USA Cyclades CorporationChapter 1 - How to Use This Manual Cyclades-PR2000CHAPTER 2 WHAT IS IN THE BOX DB-25Back Panel of PR2000 Quick Installation Manual Back Panel of PR2000PR2000 login super PR2000 Password Chapter 3 Using CyROS MenusConnection Using the Console Cable and a Computer or Terminal ConfigAll menus have the following elements Special Keys The CyROS Management Utility Cyros Management UtilityChapter 3 - Using CyROS Menus Cyclades-PR2000Speed 38.4k Example 1 Connection to an Internet Access Provider via ModemCHAPTER 4 STEP-BY-STEP INSTRUCTIONS FOR COMMON APPLICATIONS Network MaskYour Application ParameterExample FIGURE 4.2 ETHERNET NETWORK PROTOCOL MENU PARAMETERSExample STEP TWOParameter Your ApplicationYour Application ParameterExample FIGURE 4.4 SWAN NETWORK PROTOCOL IP MENU PARAMETERSYour Application ParameterExample FIGURE 4.5 PPP ENCAPSULATION MENU PARAMETERSYour Application ParameterExample ParameterExample STEP SEVENParameter Your ApplicationInstructions for creating a backup of the configuration file Instructions for listing the configurationRemote Site’s Example 2 A LAN-to-LAN Example Using Frame RelayCentral Offices 100.130.130.1Your Application ParameterExample FIGURE 4.10 ETHERNET NETWORK PROTOCOL MENU PARAMETERSYour Application ParameterExample DSU/CSU, the Clock Source is ExternalYour Application ParameterExample FIGURE 4.12 SWAN NETWORK PROTOCOL IP MENU PARAMETERSExample sending end must be using the same headerParameter Your ApplicationExample FIGURE 4.14 DLC CONFIGURATION MENU PARAMETERSParameter Your ApplicationYour Application ParameterExample FIGURE 4.15 STATIC ROUTE MENU PARAMETERSCyclades-PR2000 Instructions for creating a backup of the configuration fileInstructions for listing the configuration Chapter 4 - Step-by-Step InstructionsExample 3 Link Backup FIGURE 4.16 PRIMARY AND SECONDARY BACKUP LINKS BETWEEN TWO LANSYour Application ParameterExample ParameterYour Application ParameterExample ParameterParameter This parameter has no effect for link backup. For loadThis parameter has no effect for link backup. For load ExampleExample FIGURE 4.21 STATIC BACKUP ROUTE PARAMETERSParameter Your ApplicationInstructions for creating a backup of the configuration file Instructions for listing the configurationParameter CHAPTER 5 CONFIGURATION OF THE ETHERNET INTERFACEThe IP Network Protocol DescriptionParameter DescriptionIncoming IP Accounting IP Bridge FIGURE 5.1 IP BRIDGE EXAMPLEOther Parameters ParameterDescription Description CHAPTER 6 THE SWAN AND ASYNC INTERFACESParameter the Clock Source is always ExternalSTEP TWO Parameter DescriptionConfig CHAPTER 7 NETWORK PROTOCOLSThe IP Protocol ParameterDescription Parameter DescriptionDetailed Incoming IP Accounting Description The Transparent Bridge ProtocolParameter For the Spanning Tree Algorithm, a priority is given to each link in the router and toApplies when Enable Van Jacobson IP Header Compression is Yes . This CHAPTER 8 DATA-LINK PROTOCOLS ENCAPSULATIONPPP The Point-to-Point Protocol ParameterParameter DescriptionLCP Link Control Protocol messages are normally exchanged to monitor the status of Parameter CHARcommunication. When Start is used, a connection is attempted as soon as the line DescriptionFrame Relay PPPCHARHDLC Traffic Control based on Data Link Connectionend must be using the same header type NLPID or SNAP as the router on the receiving end ParameterDescription DLCI 200.1.1.1200.1.1.2 Router200.1.1.1 200.1.1.4 200.1.1.3Parameter DescriptionX.25 X.25Switch / DCE FIGURE 8.2 PUBLIC X.25 NETWORK EXAMPLEX.25 Menu CONFIG=INTERFACE=LINK=ENCAPSULATION =X.25 ParameterDescription X.25 Menu Continued ParameterDescription X.25 with PAD Packet Assembler/Disassembler ParameterDescription CHAPTER 9 ROUTING PROTOCOLS Routing Strategies Static RoutingDynamic Routing 142.10.0.3 Static RoutesNetwork 142.10.0.4ETH0 Slot192.168.100.1 A NetworkBoth Examples -- To access all hosts in Network 3, its mask, 255.255.255.0, is used ParameterDescription RIP Configuration ParameterDescription AN AUTONOMOUS SYSTEM OSPFAREA AREA BackboneOSPF Configuration on the Interface ParameterDescription are configured in CONFIG = INTERFACE =LINK =NETWORK PROTOCOL =IP OSPF Global Configurations ParameterDescription Parameter ParameterDescription DescriptionParameter Descriptiononly when Virtual Link Status is Active ParameterDescription BGP-4 Configuration FIGURE 9.4 EXAMPLE SYSTEM WITH PR2000 IN AS 100 BEING CONFIGURED Tele Popeye200.50.50.0 Parameter ParameterDescription DescriptionParameter DescriptionCONFIG=IP=BGP4=NEIGHBOR=ADD continued esir d ParameterDescription ROUTE MAP Applies only for Access List Type equal to AS Path. Limits the search on AS number to ParameterDescription FIGURE 9.7 ROUTE MAP ASSOCIATED WITH AN ACCESS LIST Alters the weight used to determine the best path. This value replaces the importance ParameterDescription Parameter DescriptionCreation of user accounts and passwords CHAPTER 10 CYROS, THE OPERATING SYSTEMCreation of the host table User Name Password User Type Super, Usr, Auto, or PPPAuto IP Accounting CHAPTER 11 NAT NETWORK ADDRESS TRANSLATION 200.240.230.2200.200.200.11 200.200.200.10 NAT Global Addresses # address range 1 200.240.230.225 to NAT Enabled NAT mode Expanded Port map translation EnabledUDP Timeout min DNS Timeout min TCP Timeout min TCP flags Timeout min NAT Local Addresses # address rangeTypes of Address Translation Menu Option Menu OptionDescription DescriptionParameter DescriptionParameter DescriptionConfiguration of IP Filters CHAPTER 12 RULES AND FILTERSRule List ConfigSame as Add FIGURE 12.1 THE RULES LIST MENU TREEFIGURE 12.2 FIREWALL EXAMPLE DENY Exterior RouterSteps necessary to activate filtering on the exterior router in the example exteriorout FIGURE 12.4 OUTPUT FOR EXTERIOR ROUTER EXAMPLELinked Destination IP OperatorFIGURE 12.4 OUTPUT FOR EXTERIOR ROUTER EXAMPLE CONTINUED PERMIT Interior RouterFIGURE 12.6 OUTPUT FOR INTERIOR ROUTER EXAMPLE Filterlist Name slot1inDestination Port Operator Traffic Rule Lists 3 Service Prioritization FIGURE 12.8 OUTPUT SHOWING PARAMETERS FOR TRAFFIC RULE EXAMPLE 11.11.11.0Destination Port Page Data PortRequests Port AnyThe configured rules will appear as shown in the following listing Slot CHAPTER 13 IPX INTERNETWORK PACKET EXCHANGEETH0 FIGURE 13.1 IPX NETWORK EXAMPLEConfiguring the Ethernet Interface Configuring Other InterfacesEnabling IPX Routing Frame RelayX.25 Value for the ExampleThe SAP Service Advertisement Protocol Table FIGURE 13.2 ROUTING TABLE FOR THE EXAMPLECHAPTER 14 VIRTUAL PRIVATE NETWORK CONFIGURATION PR3000PR4000 Page PR2000 REMOTE SECURITY NETWORKLOCAL SECURITY NETWORK REMOTE SECURITY NETWORKSTEP THREE Parameter DescriptionBoot Code step APPENDIX A TROUBLESHOOTINGWhat to Do if the Login Screen Does Not Appear When Using a Console TestWhat to Do if the Router Does Not Work or Stops Working EventCPU LED Morse code Testing the Ethernet Interface Testing the WAN Interfaces The next 4 columns indicate bytes and packets sent and received LEDs Cyclades - PR2000Physical Specifications APPENDIX B HARDWARE SPECIFICATIONS General SpecificationsPower Requirements external DC adapter SafetyThe LAN Interface External InterfacesThe WAN Interfaces ETHERNET PORTThe Console Interface The Asynchronous InterfaceASYNCHRONOUS PORT CONSOLE PORTCables The Straight-Through CableDB-25 - M.34 Adaptor FIGURE B.7 DB-25 - M.34 ADAPTOR - DB-25 FEMALE TO M.34 MALESignal The ASY/Modem CableThe Cross Cable SignalFIGURE B.9 CROSS CABLE - DB-25 MALE TO DB-25 MALE Appendix B - Hardware Specifications DB-25 Loopback ConnectorFIGURE B.10 LOOPBACK CONNECTOR - DB-25 MALE Cyclades-PR2000APPENDIX C CONFIGURATION WITHOUT A CONSOLE ProcedureRequirements C Cables IndexCyclades Philippines