cnc1(config)#interface FastEthernet0/0
cnc1(config-if)#ip address 192.168.30.1 255.255.255.0
cnc1(config-if)#ip nat inside
cnc1(config-if)#exit
--------------------------------------------------2.Tentukan Outside Interface dari NAT, kita asumsikan
bahwa ip 192.168.20.2 adalah IP Public (analogi IP Public yang salah
,karena sudah terlanjur ke save di router T_T)
--------------------------------------------------cnc1(config)#interface Ethernet1/0
cnc1(config-if)#ip address 192.168.20.2 255.255.255.0
cnc1(config-if)#ip nat outside
cnc1(config-if)#exit
--------------------------------------------------3.Buat a standard access list, Identify internal IP
Address to be translated and enable NAT Overload
--------------------------------------------------How to check 1 (ping dari host di dalam nat to host diluar nat)
--------------------------------------------------C:\>ipconfig
Windows IP Configuration
C:\>ping 192.168.10.2
C:\>
----------------------------------------------------How to check 2 (ping dari host di diluar nat to host didalam nat)
----------------------------------------------------C:\>ipconfig
Windows IP Configuration
C:\>ping 192.168.30.2
C:\>
Inside local
Outside local
Outside global
--------------------------------------------------------------------------------------------------------Wireshark 2 (cloud )
-----------------------------------------------------
Percobaan Selanjutnya:
----------------------------------------------------Static NAT
----------------------------------------------------ip nat inside source static [ip private] [ip public]
ex:
ip nat inside source static 192.168.30.2 192.168.20.2
----------------------------------------------------Port Static Map NAT
----------------------------------------------------ip nat inside source static tcp [ip private] [port] interface [ int public] [port]
ex:
ip nat inside source static tcp 192.168.30.2 80 interface f1/0 80
----------------------------------------------------Dynamic NAT
----------------------------------------------------ip nat pool [name-pool] [ip public-ip public] netmask []
ip nat inside soure list [access-list] pool [name-pool]
ex:
ip nat pool iwing-pool 192.168.20.2 192.168.20.3 netmask 255.255.255.0
ip nat inside source list 20 pool iwing-pool
----------------------------------------------------Dynamic NAT with Overload
----------------------------------------------------ip nat pool [name-pool] [ip public-ip public] netmask []
ip nat inside soure list [access-list] pool [name-pool] overload
ex:
ip nat pool iwing-pool 192.168.20.2 192.168.20.3 netmask 255.255.255.0
ip nat inside source list 20 pool iwing-pool overload
----------------------------------------------------Dynamic NAT with Overload + Port Static Map
----------------------------------------------------ip nat inside source static tcp [ip private] [port] interface [ int public] [port]
ip nat pool [name-pool] [ip public-public] netmask []
ip nat inside soure list [access-list] pool [name-pool] overload
ex:
ip nat inside source static tcp 192.168.30.2 80 interface f1/0 80
ip nat pool iwing-pool 192.168.20.3 192.168.20.4 netmask 255.255.255.0
ip nat inside source list 20 pool iwing-pool overload
----------------------------------------------------cnc1#sh ip access-lists
Standard IP access list 20
10 permit 192.168.30.0, wildcard bits 0.0.0.255 (2 matches)
cnc1#sh run | in ip nat
ip nat inside
ip nat outside
ip nat pool iwing-pool 192.168.20.3 192.168.20.4 netmask 255.255.255.0
ip nat inside source static tcp 192.168.30.2 80 interface FastEthernet1/0 80
ip nat inside source list 20 pool iwing-pool overload
cnc1#
----------------------------------------------------How to check 6 (sh ip nat translations)
----------------------------------------------------cnc1#sh ip nat translations
Pro Inside global
Inside local
Outside local
Outside global
---