Scribd
Upload
105 views4 pages

Configuring NAT: Understanding Network Address Translation

This chapter discusses configuring network address translation (NAT) on the Cisco 910 Industrial Router. NAT allows private IP addresses to connect to the public Internet by translating those private addresses to public IP addresses. The document provides steps to configure NAT by identifying an inside and outside interface, and enabling dynamic translation of addresses on the inside interface to the outside public address. It also describes how to monitor NAT information by displaying statistics and the translation table.

Uploaded by

Akash Joseph
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
105 views4 pages

Configuring NAT: Understanding Network Address Translation

This chapter discusses configuring network address translation (NAT) on the Cisco 910 Industrial Router. NAT allows private IP addresses to connect to the public Internet by translating those private addresses to public IP addresses. The document provides steps to configure NAT by identifying an inside and outside interface, and enabling dynamic translation of addresses on the inside interface to the outside public address. It also describes how to monitor NAT information by displaying statistics and the translation table.

Uploaded by

Akash Joseph
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 4

CH A P T E R 16

Configuring NAT

This chapter provides conceptual information about network address translation (NAT) configuration
and management of NAT on the Cisco 910 Industrial Routers (hereafter referred to as the router).
• Understanding Network Address Translation, page 16-1
• Configuring NAT, page 16-2
• Monitoring NAT Information, page 16-3

Understanding Network Address Translation


Address translation substitutes the real address in a packet with a mapped address that is routable on the
destination network. As part of the process, the device also records the substitution in a translation
database; these records are known as “xlate” entries. The appropriate xlate entry must exist to allow
address translation on return packets—the substitution of the original real address for the mapped
address; this procedure is sometimes referred to as “untranslation.” Thus, network address translation
(NAT) actually consists of two steps: the translation of a real address into a mapped address, and the
reverse translation for returning traffic.
One of the main functions of NAT is to enable private IP networks to connect to the Internet. Network
address translation replaces a private IP address with a public IP address, translating the private
addresses in the internal network into legal, routable addresses that can be used on the public Internet.
In this way, NAT conserves public addresses; for example, NAT rules can be configured to utilize only
one public address for the entire network in communications with the outside world.
In the deployment of Cisco 910 Industrial Routers, multiple slave IR910 routers can be connected to the
LAN behind the master IR910 router. Before the traffic from these slave routers is sent to Internet, it can
be encrypted and filtered.

Cisco 910 Industrial Router Software Configuration Guide, Release 1.0


OL-31296-01 16-1
Chapter 16 Configuring NAT
Configuring NAT

Configuring NAT
Beginning in privileged EXEC mode, follow these steps to configure NAT on the router:

Command Purpose
Step 1 configure terminal Enter global configuration mode.
Step 2 interface type number Enter interface configuration mode.
For type, choose one of the following interfaces as an outside interface:
• dot11radio (only available for Wi-Fi model IR910W-K9)
• cellular (only available for 3G model IR910G-K9)
• Dialer
• GigabitEthernet
For number, enter the interface number.
Step 3 ip address ip-address subnet-mask Enter the IP address and subnet mask.
Step 4 ip nat outside Identify the specified interface as the NAT outside interface.
Step 5 exit Return to global configuration mode.
Step 6 interface vlan vlan-id Enter VLAN interface configuration mode.
Step 7 ip address ip-address subnet-mask Enter the IP address and subnet mask.
Step 8 ip nat inside Identify the VLAN interface as the NAT inside interface.
Step 9 exit Return to global configuration mode.
Step 10 ip nat inside source inside-network Enable dynamic translation of addresses on the inside interface. Outside
inside-network mask interface should be dot11radio, cellular, dialer, or Gigabit Ethernet.
outside-interface-name Dot11radio interface is only available for Wi-Fi model IR910W-K9 and
interface-number overload cellular interface is only available for 3G model IR910G-K9.
Step 11 exit Return to global configuration mode.
Step 12 show ip nat translation Verify the configuration.
Step 13 copy running-config startup-config (Optional) Save your entries in the configuration file.

The following example shows how to configure NAT on a IR910W-K9 router:


Router# configure terminal
Router(config)# interface dot11radio 0
Router(config-if)# ip address 200.1.1.1 255.255.255.0
Router(config-if)# ip nat outside
Router(config-if)# no shutdown
Router(config-if)# exit
Router(config)# interface vlan 1
Router(config-if)# ip address 192.168.3.254 255.255.255.0
Router(config-if)# ip nat inside
Router(config-if)# no shutdown
Router(config-if)# exit
Router(config)# ip nat inside source 192.168.3.0 255.255.255.0 dot11radio 0 overload
Router(config)# exit

Cisco 910 Industrial Router Software Configuration Guide, Release 1.0


16-2 OL-31296-01
Chapter 16 Configuring NAT
Monitoring NAT Information

Monitoring NAT Information


You can display specific statistics and the translation table of NAT. Table 16-1 lists the privileged EXEC
commands for displaying NAT information.

Table 16-1 Commands to Monitor NAT Information

Command Purpose
show ip nat statistics Display the statistics information of NAT configuration.
show ip nat translation Display the translation table.

The following example shows the output of the show ip nat statistics command:
Router# show ip nat statistics
Total Active Traslations: 0
Inside Interface: vlan 1
Inside Source: 192.168.0.1/24
Outside Interface: dot11radio 0

The following example shows the output of the show ip nat translation command:
Router# show ip nat translation
Proto NATed Address NAT-host Address Destination Address
icmp 10.0.1.220 192.168.3.168 192.168.3.254
tcp 10.0.1.220 192.168.3.168 192.168.3.254

Cisco 910 Industrial Router Software Configuration Guide, Release 1.0


OL-31296-01 16-3
Chapter 16 Configuring NAT
Monitoring NAT Information

Cisco 910 Industrial Router Software Configuration Guide, Release 1.0


16-4 OL-31296-01

You might also like

pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy