CCNA NAT SIM Question 1
Question
A network associate is configuring a router for the CCNA Training company to provide internet access. The ISP has provided the company six public IP addresses of 198.18.184.105 198.18.184.110. The company has 14 hosts that need to access the internet simultaneously. The hosts in the CCNA Training company LAN have been assigned private space addresses in the range of 192.168.100.17 – 192.168.100.30.
The task is to complete the NAT configuration using all IP addresses assigned by the ISP to provide Internet access for the hosts in the Weaver LAN. Functionality can be tested by clicking on the host provided for testing.
Configuration information
router name – Weaver
inside global addresses – 198.18.184.105 198.18.184.110/29
inside local addresses – 192.168.100.17 – 192.168.100.30/28
number of inside hosts – 14
|
The following have already been configured on the router: - The basic router configuration - The appropriate interfaces have been configured for NAT inside and NAT outside - The appropriate static routes have also been configured (since the company will be a stub network, no routing protocol will be required.) - All passwords have been temporarily set to “cisco” |
Solution
Note: If you are not sure how NAT & PAT work, please read my Network Address Translation NAT Tutorial. You can download this sim to practice here: http://www.9tut.com/download/9tut.com_CCNA_NAT_sim_question.zip
The CCNA Training company has 14 hosts that need to access the internet simultaneously but we just have 6 public IP addresses from 198.18.184.105 to 198.18.184.110/29. Therefore we have to use NAT overload (or PAT)
Double click on the Weaver router to open it
Router>enable
Router#configure terminal
First you should change the router’s name to Weaver
Router(config)#hostname Weaver
Create a NAT pool of global addresses to be allocated with their netmask (/29 = 255.255.255.248). There were reports that the simulator in the real exam did not accept “prefix-length” keryword so you should use “netmask” keyword.
Weaver(config)#ip nat pool mypool 198.18.184.105 198.18.184.110 netmask 255.255.255.248
Create a standard access control list that permits the addresses that are to be translated
Weaver(config)#access-list 1 permit 192.168.100.16 0.0.0.15
Establish dynamic source translation, specifying the access list that was defined in the prior step
Weaver(config)#ip nat inside source list 1 pool mypool overload
This command translates all source addresses that pass access list 1, which means a source address from 192.168.100.17 to 192.168.100.30, into an address from the pool named mypool (the pool contains addresses from 198.18.184.105 to 198.18.184.110)
Overload keyword allows to map multiple IP addresses to a single registered IP address (many-to-one) by using different ports
The question said that appropriate interfaces have been configured for NAT inside and NAT outside statements.
This is how to configure the NAT inside and NAT outside, just for your understanding:
Weaver(config)#interface fa0/0
Weaver(config-if)#ip nat inside
Weaver(config-if)#exit
Weaver(config)#interface s0/0
Weaver(config-if)#ip nat outside
Weaver(config-if)#end
Finally, we should save all your work with the following command:
Weaver#copy running-config startup-config
Check your configuration by going to “Host for testing” and type:
C:\>ping 192.0.2.114
The ping should work well and you will be replied from 192.0.2.114
Other lab-sims on this site:
CCNA Configuration SIM Question (RIPv2 SIM)
OK, I realised I was wrong. It could be any ip addresses in the pool what the ISP gives. Dragonetti, you have to make a route in the ISP’s router, otherwise the ping won’t return to the hosts.
hey do u think this sim will gona come back again need to certify dis jan
thanx
9tut and ACME
i pass today ccna 936
labs
VTP , ACL, Eigrp
zulfiqarsoomro@yahoo.com
what textbook is the best and the latest one can use to prepare for this ccna exam?
could anyone help me with current dumps.
i will appreciate
thanks
can any help me with a new dump i have a test on 11 OF FEB
Hi
There seem to be alot of arabs doing this exam?
Does anyone know where can I found the latest sample test. Thanks
I am just cusrious on what pool name can be used. can we use any name ?
Or there is a given name during the exam
You can use any name for the pool just make sure you use the same name when you enable NAT (case sensitive). Also make sure your name doesn’t include any spaces otherwise the CLI will think you are moving on to the next part of the command. FYI I tested using letters, numbers, and underscore in the name and it worked. Not sure if you can use symbols but I wouldn’t make it unnecessarily complicated on yourself.
@B THANK you for the response –
i’ll continue reviewing Testinside.. I also practice all the labs on packet tracer
hey guys heard from some one that dumps by Mashti is no longer valid
can anyone confirm if it is true … thanks in advance
For those who are confused about the use of the “overload” parameter in this sim, it is necessary because the question states that the 14 users need to access the Internet simultaneously. Since there are only 6 public IP addresses, dynamic NAT without overload would leave 8 users without access at one point or another. Hope this helps.
Hi 9tut i hav 1 big ques the example problems only coming for the real ccna exam plz help me…..reply me
I had my exam today and passed. 9tut, you are my hero. this labs are so much helpfull. God bless you.
How does the ISP router know where to route 198.18.184.105 to 198.18.184.110. Seen as this router has an IP Address of 192.0.1.114.
Where can I DL the NAT SIM .zip folks? thanks guys!!!
Hi all
this simulation is working fine for me. I can see the output of SHOW IP NAT TRANSLATION
but i have a little confusion regarding the NAT pool range
it says ”ip nat pool mypool 198.18.184.105 198.18.184.110 netmask 255.255.255.248”
can we not write
ip nat pool mypool 198.18.184.105 198.18.184.110 netmask 255.255.255.0 as well.
or is it because ISP given us 6 IP address so the netmask have to be 255.255.255.248, /29 gives us 6 usable hosts.
thanks
I have mistakenly issued
ip nat pool me 198.18.184.105 198.18.184.110 netmask 255.255.255.0
now i want change it to
ip nat pool me 198.18.184.105 198.18.184.110 netmask 255.255.255.248
but
no ip nat pool me 198.18.184.105 198.18.184.110 netmask 255.255.255.0
doesnt work .
it says pool in use, what to do, please help
@tay
hi y’all. what if we were given only one IP Add by the isp……do we still use pool?
——————————————–
if ISP gives only one inside global IP address, then there is no need for pool.
That address has to be configured on S0/0 of the router:
Weaver(config)# interface s0/0
Weaver(config-if) ip address 198.18.184.105 255.255.255.248
Next will be mapping :
Weaver(config) ip nat inside source list 1 interface s0/0 overload
am writing mine next week pls what information do u ave 2 give me………and what labs wuld come out..inbox me pls….demex20022002@yahoo.com
I am failed in exam only Frame-relay question is different
ohterwise all sims are same
I got 745/1000
:(
@a.g
Don’t worry yar… best of luck next time….
What simulations are currently beind asked in the exams, I’m going to write in two weeks, pls let me know.
hi guys,
why I could not ping any IP of my nat pools 198.18.184.105 198.18.184.110 from router and any host ??
Can someone please explain this NAT-proccess…
You have been provided an ip-range (198.18.184.105 – 198.18.184.110) from the ISP, but the assiged outside-local address for the S 0/0 interface doesn´t fit into this range?
Isn´t this necessary?
Is this a common senario even in real life?
How does the ISP handle the routing? 198.18.184.104/29 —> 192.0.2.113?
outside-local = inside-global
@a.g koi nai yaar m b dene ja rha hu exam on 23rd, wish me luck bhai……….
after all, i done it
took around 1.30 hrs and i am able to ping from the pc meant for testing the connectivity with ISP
Weaver(config-if)#do sh ip nat trans
Pro Inside global Inside local Outside local Outside global
icmp 198.18.184.105:10 192.168.100.18:10 192.0.2.114:10 192.0.2.114:10
icmp 198.18.184.105:11 192.168.100.18:11 192.0.2.114:11 192.0.2.114:11
icmp 198.18.184.105:9 192.168.100.18:9 192.0.2.114:9 192.0.2.114:9
miftaul
just create a new pool – one with a different name – with the correct address range
;)
Passed Today. Questions from acme (10-15) other new..sims were vtp, acl, eigrp…You sould have deep knowledge and engineering understanding in telecommunication field to pass the exam…Dumps are just for revision…Greeting from MACEDONIA…Thanks to 9tut :)
hi guys,
I just got a question.
I am confused with the terminology.
you put Weaver(config)#access-list 1 permit 192.168.100.16 0.0.0.15
I thought we were supossed to use named access list for NAT and PAt like this:
ip access-list NAME..xxx xxx
is it the same ? does it make any difference if I use named acls? would I get scored down?
dear brother
u can use a named ACL but must be (standard)
ip access-list standard name
weaver(config)#ip nat inside source list sheno pool friends overload
weaver(config)#ip access-list standard sheno
weaver(config-std-nacl)#permit 192.168.100.16 0.0.0.15
weaver(config-std-nacl)#exit
Can someone kindly send me the latest dumps for CCNA 802 exam to cts1234586@hotmail.com
Many Thanks
Send me please the latest dumps sbbhkk@hotmail.es Thx!
Hi,
Can help me about this point, if we configure NAT on real network we need to configure default route or static route to destination. but in the answer about this sim I don’t see you configure default route. is it enough answer for exam?
Best regards,
Meun Dol
pls send me latest domes my email id : aamer.maik89@yahoo.com pls pls ……………………
Yuupppyyyyy,Thxxxxxx God,Thxxxxxxxxxxx 9tut for your help,i passed my ccna 2day with 857 ;)))))))))))))
which one should i use “netmask” or ” prefix-length” ? and how will i know which to use?
plz tell me the way to pass in ccna xam. i have 15 days for my xams
why are we using 255.255.255.248 subnet mask for 14 hosts?
shud it be 255.255.255.240?
I know you can summarize with access lists. So which process do we use for coming up with “192.168.100.16 0.0.0.15″? The first half is the network for the range .17-.30 (last octet) with a /28 prefix, but it’s also the summary for that range. The wildcard mask can also be obtained by reversing 1s and 0s in the subnet mask, but also through the summarization…
In this sim Why we didn’t issued the command ” ip access-group 1 in” on fa0/0 &
when I issue the command ” sh ip nat stat ” its showing me Hits =4 n Misses =4
pls help.
just passed exam for today with 907
sims are eigrp,acl2 and vtp
the usual
although i cant find mac address for one dest. mac
coz i forgot the command
lol
anyway thanks 9tut
for multiple choice questions there are some that i havent found with testprep acme
overall im grateful!
congrats i take my exam in 4 hours. second try im going over labs now. I fumbled the labs last time. I got this!
acl2 lab
2 is for what????
hello 9tut please help me with this query
the pool should include 198.18.184.105 198.18.184.110 but with the netmask of 255.255.255.248 it gives subnets as follows
198.18.184.0 – 7
198.18.184.8 – 15 and so on
so from the above mask it is clear that 198.18.184.105 and 198.18.184.110 are on different subnets so how it works….. im thinking 255.255.255.240 will be the correct mask …… please help with me this soon …….
Thts Right Budy,
Mask given is incorrect-/29 will end up like this :
192.18.184.102 -192.18.184.110 giving .103 to .109 hosts in one subnet however .110 in next as network address.
Hey Mate -
Very sorry-Mask is correct :
See subnet address for this would be
198.18.184.0 -8,16,…80,96,104,112…..
198.18.184.104 with .105 as first host and 110 as last usable host and hence
ip nat pool whatever 198.18.184.105 192.18.184.110 netmask 255.255.255.248 should works.
Please correct me if wrong
sorry i got misunderstood…… the above works im sorry………. its with the above subnet the address will be 1o4 – 113 so it works perfectly…………