6.5.6 Packet Tracer – Configure Dynamic NAT (Instructor Version)
Instructor Note: Red font color or gray highlights indicate text that appears in the instructor copy only.
- Part 1: Configure Dynamic NAT
- Part 2: Verify NAT Implementation
Part 1: Configure Dynamic NAT
Step 1: Configure traffic that will be permitted.
On R2, configure one statement for ACL 1 to permit any address belonging to the 172.16.0.0/16 network.
R2(config)# access-list 1 permit 172.16.0.0 0.0.255.255
Step 2: Configure a pool of address for NAT.
Configure R2 with a NAT pool that uses two addresses in the 18.104.22.168/30 address space.
R2(config)# ip nat pool ANY_POOL_NAME 22.214.171.124 126.96.36.199 netmask 255.255.255.252
Notice in the topology there are 3 network addresses that would be translated based on the ACL created.
What will happen if more than 2 devices attempt to access the internet?
Step 3: Associate ACL 1 with the NAT pool.
Enter the command that associates ACL 1 with the NAT pool that you just created.
R2(config)# ip nat inside source list 1 pool ANY_POOL_NAME
Step 4: Configure the NAT interfaces.
Configure R2 interfaces with the appropriate inside and outside NAT commands.
R2(config)# interface s0/0/0 R2(config-if)# ip nat outside R2(config-if)# interface s0/0/1 R2(config-if)# ip nat inside
Part 2: Verify NAT Implementation
Step 1: Access services across the internet.
From the web browser of L1, PC1, or PC2, access the web page for Server1.
Step 2: View NAT translations.
View the NAT translations on R2. Identify the internal source address of the PC and the translated address from the NAT pool in the command output.
R2# show ip nat translations
enable configure terminal access-list 1 permit 172.16.0.0 0.0.255.255 ip nat pool ANY_POOL_NAME 188.8.131.52 184.108.40.206 netmask 255.255.255.252 ip nat inside source list 1 pool ANY_POOL_NAME interface s0/0/0 ip nat outside interface s0/0/1 ip nat inside end
PT is not Completed on the download
I have done 100% but I can not access the server from L1 to server. What will be the server address then?