Blog

Network Address Translation

Configurations:

R2
object-group network RFC1918
10.0.0.0 255.0.0.0
172.16.0.0 255.240.0.0
192.168.0.0 255.255.0.0

ip access-list extended BLOCK-RFC1918
deny ip any object-group RFC1918
permit ip 128.0.0.0 0.0.0.3 any
permit ip 128.0.0.4 0.0.0.3 any
permit ip 129.0.0.0 0.0.0.3 any
permit ip 129.0.0.4 0.0.0.3 any


int range e0/0-1
ip access-group BLOCK-RFC1918 in

R1
ip access-list standard ACL-4-NAT
permit 192.168.1.0 0.0.0.255
ip nat pool NAT-PUBLIC-IP 128.0.0.5 128.0.0.5 netmask 255.255.255.252
ip nat in source list ACL-4-NAT pool NAT-PUBLIC-IP overload

int e0/0
ip nat outside
int e0/1
ip nat inside

R6
Router(config)#ip nat inside source static 172.16.1.2 129.0.0.5
Router(config)#ip nat inside source static 172.16.1.3 129.0.0.6
int e0/0
ip nat outside
int e0/1
ip nat inside

Leave a Reply