Welcome! Thank you for joining us. We’ll get started in a few minutes. You must join the teleconference to hear the audio portion of the broadcast. You cannot listen through your computer. Dial: 1-866-708-1789 You will hear hold music until the broadcast begins. This is expected We will send the presentation and a recording of today’s broadcast to you within a few days after the session.
Layer 2 NAT offerings with Stratix Switches Genius Webinar David Englund Dan Lahr Technical Support Engineer February 25, 2016
Agenda Introduction Products that support NAT How NAT works with Stratix Switches NAT Demo Questions
Introduction Presenters David Englund Daniel Lahr Goal of Presentation Technical Support Engineer Daniel Lahr Goal of Presentation Identify what Rockwell products support NAT Explain use cases for NAT Provide example of NAT configuration in Stratix switches
Agenda Introduction How NAT works with Stratix Switches Products that support NAT NAT Demo Questions
How NAT works with Stratix Switches What is Network Address Translation (NAT) and how is it used? NAT was originally developed because the address space of IPv4 was not large enough to accommodate every device on the internet. Private IP addresses are used on Private networks and a many-to- one translation gives them a single, public IP on the Internet In automation NAT translations are one-to-one not many-to-one. In automation, one-to-one NAT allows multiple machines with identical IP schemes to coexist on the same network. NAT can also be used as a way to only allow access to certain devices on a machine but not others.
How NAT is used Multiple Machines with Identical IP Addressing 1:1 NAT Translation Inside Outside 192.168.2.2 10.20.30.21 1:1 NAT Translation Inside Outside 192.168.2.2 10.20.30.22 Machine PLC IP Address IP 192.168.2.2 Gateway 192.168.2.1
How NAT is used Access Only One Device on a Machine Stratix 5700 w/ NAT Machine IP Addresses CompactLogix 192.168.1.10 PowerFlex 192.168.1.11 PanelView 192.168.1.12 Inside to Outside Inside Outside 192.168.1.10 10.20.30.10 Outside to Inside 10.20.30.5 192.168.1.5 192.168.1.10 192.168.1.11 192.168.1.12
How NAT works with Stratix Switches What is Layer 2 NAT ? Layer 2 is the data link layer. This is where switching occurs This process only switches, it will not route to other subnets Switching takes place in hardware while routing takes place in software Layer 2 NAT is NAT that takes place through switching instead of routing Faster than layer 3 NAT Requires translations in both directions because it does not route
How NAT works with Stratix Switches What is Layer 3 NAT ? Layer 3 is the network layer. This is where routing is utilized to communicate between subnets Gateway address required for layer 3 Layer 3 NAT is NAT that takes place through a router. Translations are only required in one direction. Routing takes care of communications in the other direction Easier to configure than layer 2 NAT
How NAT Works – Layer 2 NAT Architecture Outside Subnet 10.10.10.0/24 VLAN 10 Inside Subnet 192.168.1.0/24 VLAN 10 Stratix 5700/8000 Layer 2 Outside Device IP 10.10.10.15 Src IP 10.10.10.15 Dst IP 10.10.10.10 Inside Device IP 192.168.1.10 Stratix 5700 w/NAT Inside to Outside Inside Outside 192.168.1.10 10.10.10.10 Src IP 192.168.1.15 Dst IP 192.168.1.10 Src IP 192.168.1.10 Dst IP 192.168.1.15 Src IP 10.10.10.10 Dst IP 10.10.10.15 Outside to Inside Outside Inside 10.10.10.15 192.168.1.15
How NAT Works – Layer 2 NAT With Layer 3 Uplink Stratix 8300 VLAN 10 VLAN 20 10.10.10.1 10.10.20.1 Outside Subnet 10.10.20.0/24 VLAN 20 Inside Subnet 192.168.1.0/24 VLAN 10 Stratix 8300 Layer 3 Outside Device IP 10.10.20.5 GW 10.10.20.1 Src IP 10.10.20.5 Dst IP 10.10.10.10 Inside Device IP 192.168.1.10 GW 192.168.1.1 Stratix 5700 w/NAT Src IP 10.10.20.5 Dst IP 192.168.1.10 Src IP 192.168.1.10 Dst IP 10.10.20.5 Src IP 10.10.10.10 Dst IP 10.10.20.5 Inside to Outside Inside Outside 192.168.1.10 10.10.10.10 Gateway Translation 192.168.1.1 10.10.10.1
How NAT Works – Layer 3 NAT architecture Outside Subnet 10.10.20.0/24 Inside Subnet 192.168.1.0/24 Stratix 5700/8000 Layer 2 Outside Device IP 10.10.10.25 Src IP 10.10.10.25 Dst IP 10.10.10.10 Inside Device IP 192.168.1.10 GW 192.168.1.1 9300-ENA Src IP 10.10.10.25 Dst IP 192.168.1.10 Src IP 192.168.1.10 Dst IP 10.10.10.25 Src IP 10.10.10.10 Dst IP 10.10.10.25 1:1 NAT Translation Inside Outside 192.168.1.10 10.10.10.10
Agenda Introduction How NAT works with Stratix Switches Products that support NAT NAT Demo Questions
Products that support NAT What type of NAT offerings does Rockwell Automation supply? Layer 3 NAT Devices 9300-ENA 1783-NATR Stratix 5900 Layer 2 NAT Devices Stratix 5700 Stratix 5400 Stratix 5410
Products that support NAT 9300-ENA Supports 1:1 layer 3 NAT for up to 128 devices. Supports network discovery and DHCP IP address assignment of devices Supports VPN for secure, remote connection to network. 1783-NATR Supports 1:1 layer 3 NAT for up to 32 translations. DLR or linear network support
Products that support NAT Stratix 5900 Supports 1:1 layer 3 NAT as well as Port Address Translation (PAT) for internet connection. Security router with firewall and site-to-site VPN connection. Includes 1 gigabit WAN port and four fast Ethernet switch ports.
Products that support NAT Stratix 5700 Compact layer 2 managed switch with Layer 2 NAT option NAT, DLR, POE and PTP support available on some models. NAT is supported with models 1783-BMS10CGN,1783-BMS12T4ECGNK and 1783-BMS20CGN
Products that support NAT Stratix 5400 Layer 2 or layer 3 switch available with all Gigabit ports NAT and PTP available on all models. Some models include PoE Stratix 5410 Layer 2 or layer 3 rack mount distribution switch with 24 Gigabit downlink ports and four 10-Gigabit uplink ports Up to 8 selectable NAT boundaries with capability to route after translation
Agenda Introduction Products that support NAT How NAT works with Stratix Switches NAT Demo Questions
Layer 2 NAT Demo
Layer 2 NAT Demo
Layer 2 NAT Demo
Layer 2 NAT Demo
Layer 2 NAT Demo
Layer 2 NAT Demo
Layer 2 NAT Demo w/ Router
Layer 2 NAT Demo w/ Router
Layer 2 NAT Demo w/ Router
Layer 2 NAT Demo w/ Router
Layer 3 NAT Demo (9300-ENA)
Agenda Introduction Products that support NAT How NAT works with Stratix Switches NAT Demo Questions
Helpful Documents Literature Library - http://www.rockwellautomation.com/global/literature- library/overview.page 1783-td001 - Stratix Ethernet Device Specifications iasimp-qs038 - Stratix 5700 Network Address Translation Quick Start 1783-um007 – Stratix Managed Switches User Manual Knowledgebase - https://rockwellautomation.custhelp.com/ 704765 – Rockwell Device Capable of Network Address Translation 587792 – Simple Stratix 5700 NAT Setup 619491 – How to configure the Stratix 5700 with NAT to handle multiple identical machines 502161 – 9300-ENA Introduction
Questions?