In this post, I briefly summary NAT terms which are inside local, inside global, ouside local, and outside global.
I would like to elaborate the terms using the ablove topology.
ip nat inside source static 10.10.10.1 171.16.68.5
interface s 0
ip nat inside
interface s 1
ip nat outside
In order to verify the NAT tranlations, we can use show ip nat translations command.
If you look at the output above, you can grasp the difference between local and global.
Based on the router that handles NAT, it is local before ip translation occurs and global after that.
When the packet moves from the inside network to the outside network, the output is as shown below.
The protocol is displayed as icmp because NAT configuration is verified by ping.
In the same way, when receiving a packet from the outside, the settings for IP address translation can be done as follows.
ip nat outside source static 171.16.68.1 10.10.10.5
To sum up, the terms local and global are straight forward to understand. Also, the inside and outside keyward mean where they locate in the network.
Reference site: https://www.cisco.com/c/en/us/support/docs/ip/network-address-translation-nat/4606-8.html
'<개인공부> - IT > [Network&Security]' 카테고리의 다른 글
UDLD란 (0) | 2020.09.16 |
---|---|
Etherchannel - Intro (PAgP, LACP) (0) | 2020.07.24 |
Dynamic Trunking Protocol (DTP) (0) | 2020.04.17 |
XSS vs CSRF (0) | 2019.08.28 |
Security Engineer (Analyst) Intern Interview Questions (0) | 2019.02.19 |