PACE-IT: Introducing_NAT - N10 006
Download as PPTX, PDF0 likes442 views
The document introduces Network Address Translation (NAT), explaining its function in routing non-routable IP addresses by transforming private addresses into public ones for network communication. It details two main categories of NAT: Static NAT (SNAT), which assigns a specific public IP for each private IP, and Dynamic NAT (DNAT), which assigns public IPs from a reusable pool. Additionally, it describes Port Address Translation (PAT) as a method to enhance DNAT's scalability by allocating port numbers along with public IPs.
PACE-IT: Introducing_NAT - N10 006
- 2. Page 2 Instructor, PACE-IT Program – Edmonds Community College Areas of Expertise Industry Certifications PC Hardware Network Administration IT Project Management Network Design User Training IT Troubleshooting Qualifications Summary Education M.B.A., IT Management, Western Governor’s University B.S., IT Security, Western Governor’s University Entrepreneur, executive leader, and proven manger with 10+ years of experience turning complex issues into efficient and effective solutions. Strengths include developing and mentoring diverse workforces, improving processes, analyzing business needs and creating the solutions required— with a focus on technology.
- 3. Page 3 PACE-IT. – The purpose of network address translation. – How network address translation works.
- 4. Page 4 Introducing network address translation.
- 5. Page 5 Network address translation (NAT) solves the problem of how to route non-routable IP addresses. As a partial effort to conserve the IPv4 address space, the private IPv4 addressing spaces were developed. These address spaces were removed from the public IPv4 address spaces and made non-routable across public IPv4 networks. Being non-routable prevents the private IPv4 addresses from communicating with remote public networks. NAT very simply solves this problem. A router with NAT enabled will translate a private IP address into a routable public IP address. When the response returns to the router, it passes the response back to the device that requested it. Introducing network address translation.
- 6. Page 6 Introducing network address translation.
- 7. Page 7 Introducing network address translation. – The two categories of NAT. » Static NAT (SNAT): each private IP address is assigned to a specific routable public IP address. This relationship is kept and maintained by the NAT enabled router. • When a device needs access outside of the local network, the router translates the local IP address to the assigned public IP address. When the response comes back, the router will translate the public IP address back into the local one. • SNAT is not flexible and leads to scalability issues. An individual routable IP address must be kept for every device that requires to access outside of the local network. » Dynamic NAT (DNAT): the NAT enabled router dynamically assigns a routable IP address to devices from a pool of available public IP addresses. • When a device needs access outside of the local network, the router performs the NAT function, only the public IP address comes from a re-useable pool of public IP addresses. • As initially designed, DNAT was more flexible than SNAT, but still led to some scalability issues. As more network traffic requires access to remote networks, the pool of available public IP addresses needs to increase or outside access cannot be achieved.
- 8. Page 8 Introducing network address translation. – Port address translation (PAT). » PAT is a type of DNAT that was developed to increase the scalability of NAT. • When a local network device requires access to a public network, the NAT enabled router dynamically assigns the public IP address to the device with the addition of dynamically assigning a port number to the end of the public IP address. • The router tracks the IP addresses and port numbers to ensure that network traffic is routed to and from the proper devices. • PAT still requires a pool of public IP addresses, but the pool may only contain one address or it may contain several for a large private network. • This is the preferred method of implementing NAT for two reasons: less public IP addresses are required and it is also easier for administrators to maintain.
- 9. Page 9 Introducing network address translation. – The NAT terminology. » Inside local address: a private IP address on the local network. • The private IP address assigned to a specific device. » Inside global address: a public IP address referencing an inside device. • The public IP address assigned to the inside device by the NAT enabled router to allow access outside of the network. » Outside global address: a public IP address referencing an outside device. • The public IP address assigned to a device outside of the local network. » Outside local address: a private IP address assigned to an outside device. • The private IP address assigned to an outside device on the interior of the local network.
- 10. Page 10 Introducing network address translation. NAT solves the problem of how to route non-routable IP addresses. Private IP addresses cannot cross public IP networks, limiting private IP networks to being local only. NAT transforms the private IP address into a routable public IP address, which allows access outside of the local network. Topic The purpose of network address translation. Summary There are two main categories of NAT—static and dynamic. With SNAT, each private IP address that is allowed access outside of the local network is assigned a specific public IP address that is used for that access. With DNAT, when a device requires access outside of the local network, it is dynamically assigned a public IP address from a pool of available addresses. PAT was developed as a method of extending the capabilities of DNAT. NAT uses specific terminology to refer to IP addresses: inside local, inside global, outside global, and outside local. How network address translation works.
- 12. This workforce solution was 100 percent funded by a $3 million grant awarded by the U.S. Department of Labor's Employment and Training Administration. The solution was created by the grantee and does not necessarily reflect the official position of the U.S. Department of Labor. The Department of Labor makes no guarantees, warranties, or assurances of any kind, express or implied, with respect to such information, including any information on linked sites and including, but not limited to, accuracy of the information or its completeness, timeliness, usefulness, adequacy, continued availability or ownership. Funded by the Department of Labor, Employment and Training Administration, Grant #TC-23745-12-60-A-53. PACE-IT is an equal opportunity employer/program and auxiliary aids and services are available upon request to individuals with disabilities. For those that are hearing impaired, a video phone is available at the Services for Students with Disabilities (SSD) office in Mountlake Terrace Hall 159. Check www.edcc.edu/ssd for office hours. Call 425.354.3113 on a video phone for more information about the PACE-IT program. For any additional special accommodations needed, call the SSD office at 425.640.1814. Edmonds Community College does not discriminate on the basis of race; color; religion; national origin; sex; disability; sexual orientation; age; citizenship, marital, or veteran status; or genetic information in its programs and activities.