10
Network Address Translation
10.1 Overview
This chapter discusses how to configure NAT on the
NAT (Network Address Translation - NAT, RFC 1631) is the translation of the IP address of a host in a packet. For example, the source address of an outgoing packet, used within one network is changed to a different IP address known within another network.
Each packet has two addresses – a source address and a destination address. For outgoing packets, NAT maps private (local) IP addresses to globally unique ones required for communication with hosts on other networks. It replaces the original IP source address in each packet and then forwards it to the Internet. The
Figure 72 NAT Example
A: 192.168.1.33 |
| LAN |
| WAN |
|
| |||
FTP, Telnet, SNMP |
|
| ||
| ||||
Ports 21 to 25 |
|
|
|
|
|
|
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
192.168.1.1
B: 192.168.1.34
Port 80
IP address assigned by ISP
C: 192.168.1.35
For more information on IP address translation, refer to RFC 1631, The IP Network Address Translator (NAT).
Note: You must create a firewall rule in addition to setting up NAT, to allow traffic from the WAN to be forwarded through the
| 101 |
|
|