PAT Configuration - wAlber47/Tech-Journal GitHub Wiki

In Dynamic Nat, translations are made IP to IP. So you need as many global IP address as you have inside local address. That's an issue if you have few global IP address and hundreds of inside local address to translate. In such situations, you need to use PAT.

  1. First, you must configure your router interfaces on the correct ports.
  2. Set up a default route from one router to the other.
  3. Define your inside and outside interfaces.
  4. Create an Address Pool:
    1. R?(config)# ip nat pool <pool-name> <start-ip-address> <end-ip-address> netmask <netmask>
  5. Create an Access list that says which IP's can access a certain pool:
    1. R?(config)# access-list <list-number> permit <network-id> <inverted-netmask>
  6. Assign the pool and access list to a interface:
    1. R?(config)# ip nat <inside/outside> source list <list-number> <pool-name> overload
  7. PAT should be accessible now, ping your desired network from multiple PC's and then check:
    1. R?# show ip nat translations

Link to Lab

⚠️ **GitHub.com Fallback** ⚠️