NAT(Network Address Translation) Thus_11.01 NAT(Network Address Translation) 하나의 외부IP가지고 사설IP가 사용함 사설IP를 외부IP로 변경해줌 주소 변환이 되어야함 공유기에서 IP를 IP:port - 공인 IP 공인IP:port - 공인 IP https://한국인터넷정보센터.한국 - krnic - kisa.or.kr 공인IP를 관리함
NAT(Network Address Translation) Thus_11.01 NAT(Network Address Translation) //===== router1 ========================== line con 0 logg sy int f0/0 ip add 10.0.0.254 255.255.255.0 no shutdown do write int f0/1 ip add 100.100.100.1 255.255.255.248 rou os 10 net 10.0.0.0 0.0.0.255 area 10 net 100.100.100.0 0.0.0.7 area 10 passive-interface f0/0 ### NAT 쓸때 기본 설정 ### ip nat inside ip nat outside ###################### ####Static NAT 설정### 1:1 ip nat inside source static 10.0.0.1 100.100.100.3 do write ############## ### Dynamic NAT ### N:N access-list 1 permit 10.0.0.0 0.0.0.255 ip nat pool babo 100.100.100.3 100.100.100.6 netmask 255.255.255.248 ip nat inside source list 1 pool babo ################# ### Dynamic NAT-PAT ### 1:N ip nat pool babo 100.100.100.1 100.100.100.1 netmask 255.255.255.248 ip nat inside source list 1 pool babo overload ##################### show ip nat tr <- NAT 기능에 의해 IP 바뀔 때 무엇으로 바뀌는지 볼 수 있음 =======================================
NAT(Network Address Translation) Thus_11.01 NAT(Network Address Translation) //===== router2 =========================== line con 0 logg sy int f0/0 ip add 10.0.1.254 255.255.255.0 no shutdown do write int f0/1 ip add 100.100.100.2 255.255.255.248 rou os 10 net 10.0.1.0 0.0.0.255 area 10 net 100.100.100.0 0.0.0.7 area 10 passive-interface f0/0 show ip nat translations ========================================= clear ip ospf process <-- ospf 초기화 debug ip ospf adj no dbug ip os ev debug ip ospf events
Thus_11.01 NAT(Network Address Translation)
NAT(Network Address Translation) Thus_11.01 NAT(Network Address Translation) #### Router1 #### host seoul_R1 ena se babo no ip domain-l ser p line con 0 exec 0 0 logg syn pass babo1 login line vty 0 0 pass babo2 int f0/0 ip add 10.0.0.254 255.255.255.0 no shutdown int f0/1 ip add 200.200.200.1 255.255.255.248 do write exit rout ei 100 net 10.0.0.0 0.0.0.255 net 200.200.200.0 0.0.0.7 pass f0/0 #### Router2 #### enable conf ter host Busan_R1 no ip domain-l ena se babo ser p line con 0 exec 0 0 logg syn pass babo1 login line vty 0 4 pass babo2 int f0/0 ip add 172.16.0.254 255.255.255.0 no shutdown do write int f0/1 ip add 200.200.200.2 255.255.255.248 exit rout ei 100 net 172.16.0.0 0.0.0.255 net 200.200.200.0 0.0.0.7 pass f0/0 ### NAT 1:N 설정 ### access-list 1 permit 10.0.0.0 0.0.0.255 ip nat pool babo 200.200.200.1 200.200.200.1 netmask 255.255.255.248 int f0/0 ip nat inside int f0/1 ip nat outside exit ip nat inside source list 1 pool babo overload ====================================
Thus_11.01 HSRP(Hot Standby Router Protocol)
HSRP(Hot Standby Router Protocol) Thus_11.01 HSRP(Hot Standby Router Protocol) #Virtual Router 존재 알려줌 int f0/0 standby 1 ip 1.0.0.254 standby 1 priority 120 standby 1 preempt do write #Virtual Router 동작 확인 show standby bri show standby all ========================================= HSRP(Hot Stadnby Router Protocol) Cisco VRRP(Virtual Router Redundancy Protocol) IBM GLBP(Gateway Load Balancing Protocol) Down Time 시간이 없음 ========================================= ### Router 1 ### enable conf ter int f0/0 ip add 1.0.0.251 255.255.255.0 no shutdown int f0/1 ip add 10.0.0.1 255.255.255.252 exit rout os 10 net 1.0.0.0 0.0.0.255 area 0 net 10.0.0.0 0.0.0.3 area 0 do write
HSRP(Hot Standby Router Protocol) Thus_11.01 HSRP(Hot Standby Router Protocol) ========================================= ### Router 2 ### enable conf ter int f0/0 ip add 1.0.0.252 255.255.255.0 no shutdown do write int f0/1 ip add 10.0.0.5 255.255.255.252 rout os 10 net 10.0.0.4 0.0.0.3 area 0 net 1.0.0.0 0.0.0.255 area 0 #Virtual Router 존재 알려줌 standby 1 ip 1.0.0.254 standby 1 priority 120 standby 1 preempt ========================================= ### Router 3 ### enable conf ter int f0/1 ip add 10.0.0.2 255.255.255.252 no shutdown do write int f0/0 ip add 10.0.0.6 255.255.255.252 int f1/0 ip add 100.100.100.254 255.255.255.0 router os 10 net 10.0.0.0 0.0.0.3 area 0 net 10.0.0.4 0.0.0.3 area 0 net 100.100.100.0 0.0.0.255 area 0 ### PC3 ### ping 1.0.0.254 arp -a