NAT(Network Address Translation,网络地址转换),在专用网内部的一些主机分配到私有网络后能与因特网上的主机进行通信的技术。
拓扑结构 A.路由器配置 设置R1
enable conf t //先配置默认网关 interface g0/0 ip address 192.168.1.10 255.255.255.0 no shutdown //配置g0/1 interface g0/1 ip address 202.96.1.11 255.255.255.0 no shutdown
// 配置路由器R1提供静态NAT服务,配置静态NAT映射 ip nat inside source static 192.168.1.1 202.96.1.3 ip nat inside source static 192.168.1.2 202.96.1.4
//配置NAT内部接口 interface g0/0 ip nat inside
//配置NAT外部接口 interface g0/0/1 ip nat outside
//配置rip router rip version 2 no auto-summary network 202.96.1.0
配置R2 enable conf t //配置回环接口 interface loopback0 ip address 2.2.2.2 255.255.255.0 //配置g0/0接口 interface g0/0 ip address 202.96.1.22 255.255.255.0 //配置rip router rip version 2 no auto-summary netwok 202.96.1.0 netwok 2.0.0.0
B.NAT调试 (1) R1:debug ip nat PC1上进行ping 2.2.2.2 R1将输出ip nat 调试信息:
Router>enable Router# Router#debug ip nat IP NAT debugging is on Router# Router# NAT: s=192.168.1.1->202.96.1.3, d=2.2.2.2 [22]
NAT*: s=2.2.2.2, d=202.96.1.3->192.168.1.1 [54]
NAT: s=192.168.1.1->202.96.1.3, d=2.2.2.2 [23]
NAT*: s=2.2.2.2, d=202.96.1.3->192.168.1.1 [55]
NAT: s=192.168.1.1->202.96.1.3, d=2.2.2.2 [24]
NAT*: s=2.2.2.2, d=202.96.1.3->192.168.1.1 [56]
NAT: s=192.168.1.1->202.96.1.3, d=2.2.2.2 [25]
NAT*: s=2.2.2.2, d=202.96.1.3->192.168.1.1 [57]
(2) show ip nat translations 查看nat表: Router#show ip nat translations Pro Inside global Inside local Outside local Outside global — 202.96.1.3 192.168.1.1 — — — 202.96.1.4 192.168.1.2 — —
