Davinder Chauhan, profile picture
Uploaded byDavinder Chauhan
DOCX, PDF888 views

Nat report2

The document discusses securing a private network environment using Network Address Translation (NAT). It summarizes the configuration of routers, switches, and NAT for three separate organizations (Org1, Org2, Org3) to allow internal clients to access the internet through public IP addresses while protecting private servers. VLANs are used to separate server and client networks in each organization. NAT is configured on the routers to translate private to public IP addresses for internal clients to access the internet and expose specific internal servers to the internet.

Embed presentation

Downloaded 115 times
SECURING PRIVATE ENVIORNMENT BY USING NAT PROJECT REPORT
ACKNOWLDGEMENT The project is based on network addressing translation(nat). The beauty of configuring nat on routers is that it can help users access internet on private ip address which are otherwise excluded by internet service provider(isp). We have used inter VLAN technology to make work efficient between 3 different and independent organisations. The vlans have been divided into web servers and internet clients.
DESCRIPTION We have three organisations. Org1, org2 and org3. Each organisation comprises a router, to route the data from and to isp. There are manageable switches in each organisation and we have created separate vlans for servers and internet clients. If we want the communication between the internet clients and servers then we configure inter vlan concept on the router. And if we want to block some internet clients cannot access our servers then we create acl for that particular user. These organisations are linked externally to an isp which provides live(public) ip addresses to each organisation, and isp also provides the internet connections to others.
CONFIGURATION FOR ORG1 %SYS-5-CONFIG_I: Configured frROUTER ORG1 Router>en Router#config t Enter configuration commands, one per line. End with CNTL/Z. Router(config)#hostname ORG1 ORG1(config)#line console 0 ORG1(config-line)#password net ORG1(config-line)#login ORG1(config-line)#exit ORG1(config)#line vty 0 4 ORG1(config-line)#password net ORG1(config-line)#login ORG1(config-line)#exit
ORG1(config)#enable password net ORG1(config)#enable secret net1 ORG1(config)#int f0/0 ORG1(config-if)#no sh %LINK-5-CHANGED: Interface FastEthernet0/0, changed state to up ORG1(config-if)#exit ORG1(config)#int f0/0.1 %LINK-5-CHANGED: Interface FastEthernet0/0.1, changed state to upRouter(config-subif)#encapsulation dot1q 2 ORG1(config-subif)#ip nat inside ORG1(config-subif)#ip address 10.0.0.1 255.0.0.0 ORG1(config-subif)#no sh ORG1(config-subif)#exit ORG1(config)#int f0/0.2 ORG1(config-subif)#encapsulation dot1q 3 ORG1(config-subif)#ip nat inside ORG1(config-subif)#ip address 192.168.10.1 255.255.255.240 ORG1(config-subif)#no sh ORG1(config-subif)#exit ORG1(config)#int s0/0/0 ORG1(config-if)#ip nat outside ORG1(config-if)#clock rate 64000 ORG1(config-if)#ip address 200.10.10.5 255.255.255.252 ORG1(config-if)#no sh %LINK-5-CHANGED: Interface Serial0/0/0, changed state to down ORG1(config-if)#exit ORG1(config)#ip route 0.0.0.0 0.0.0.0 serial 0/0/0 We have place our web server in the private area so that the internet client cannot directly access it. So, we have configured static nat and open port number 80(http) only. ORG1(config)#ip nat inside source static tcp 10.0.0.2 80 200.10.10.17 80 In our organisation our clients want to access internet so we will configure dynamic nat with overload for clients.
ORG1(config)#access-list 20 permit any ORG1(config)#ip nat pool netmax 200.10.10.18 200.10.10.18 netmask 255.255.255.240 ORG1(config)#ip nat inside source list 20 pool netmax overload ORG1(config)#exit ORG1#wr Building configuration... [OK] ORG1# SWITCH
Switch>en Switch#vlan database % Warning: It is recommended to configure VLAN from config mode, as VLAN database mode is being deprecated. Please consult user documentation for configuring VTP/VLAN in config mode. Switch(vlan)#vlan 2 name server VLAN 2 added: Name: server Switch(vlan)#vlan 3 name clients VLAN 3 added: Name: clients Switch(vlan)#exit APPLY completed. Exiting.... Switch#config t Enter configuration commands, one per line. End with CNTL/Z. Switch(config)#int f0/1 Switch(config-if)#switchport access vlan 2 Switch(config-if)#exit Switch(config)#int range f0/2 - 3 Switch(config-if-range)#switchport access vlan 3 Switch(config-if-range)#exit Switch(config)#int f0/24 Switch(config-if)#switchport mode trunk Switch(config-if)#exit Switch(config)#exit Switch#wr
FOR ORG2 ROUTER Router>en Router#config t Enter configuration commands, one per line. End with CNTL/Z. Router(config)#hostname ORG2 ORG2(config)#line console 0 ORG2(config-line)#password net ORG2(config-line)#login ORG2(config-line)#exit ORG2(config)#line vty 0 4 ORG2(config-line)#password net ORG2(config-line)#login ORG2(config-line)#exit ORG2(config)#enable password net ORG2(config)#enable secret net1 ORG2(config)#int f0/0 ORG2(config-if)#no sh %LINK-5-CHANGED: Interface FastEthernet0/0, changed state to up ORG2(config-if)#exit ORG2(config)#int f0/0.1 %LINK-5-CHANGED: Interface FastEthernet0/0.1, changed state to upRouter(config-subif)#encapsulation dot1q 2 ORG2(config-subif)#ip nat inside ORG2(config-subif)#ip address 10.0.0.1 255.0.0.0 ORG2(config-subif)#no sh ORG2(config-subif)#exit ORG2(config)#int f0/0.2 ORG2(config-subif)#encapsulation dot1q 3 ORG2(config-subif)#ip nat inside ORG2(config-subif)#ip address 192.168.10.1 255.255.255.240 ORG2(config-subif)#no sh ORG2(config-subif)#exit
ORG2(config)#int s0/0/0 ORG2(config-if)#ip nat outside ORG2(config-if)#clock rate 64000 ORG2(config-if)#ip address 200.10.10.9 255.255.255.252 ORG2(config-if)#no sh %LINK-5-CHANGED: Interface Serial0/0/0, changed state to down ORG2(config-if)#exit ORG2(config)#ip route 0.0.0.0 0.0.0.0 serial 0/0/0 ORG2(config)#ip nat inside source static 10.0.0.2 200.10.10.33 ORG2(config)#access-list 20 permit any ORG2(config)#ip nat pool netmax 200.10.10.34 200.10.10.36 netmask 255.255.255.240 ORG2(config)#ip nat inside source list 20 pool netmax ORG2(config)#exit %SYS-5-CONFIG_I: Configured from console by console ORG2#wr Building configuration... [OK] ORG2# SWITCH Switch>en Switch#vlan database % Warning: It is recommended to configure VLAN from config mode, as VLAN database mode is being deprecated. Please consult user documentation for configuring VTP/VLAN in config mode. Switch(vlan)#vlan 2 name server VLAN 2 added: Name: server Switch(vlan)#vlan 3 name clients VLAN 3 added: Name: clients Switch(vlan)#exit APPLY completed. Exiting....
Switch#config t Enter configuration commands, one per line. End with CNTL/Z. Switch(config)#int f0/1 Switch(config-if)#switchport access vlan 2 Switch(config-if)#exit Switch(config)#int range f0/2 - 3 Switch(config-if-range)#switchport access vlan 3 Switch(config-if-range)#exit Switch(config)#int f0/24 Switch(config-if)#switchport mode trunk Switch(config-if)#exit Switch(config)#exit Switch#wr
FOR ORG3 ROUTER Router>en Router#config t Enter configuration commands, one per line. End with CNTL/Z. Router(config)#hostname ORG3 ORG3(config)#line console 0 ORG3(config-line)#password net ORG3(config-line)#login ORG3(config-line)#exit ORG3(config)#line vty 0 4 ORG3(config-line)#password net ORG3(config-line)#login ORG3(config-line)#exit ORG3(config)#enable password net ORG3(config)#enable secret net1 ORG3(config)#int f0/0 ORG3(config-if)#no sh %LINK-5-CHANGED: Interface FastEthernet0/0, changed state to up ORG3(config-if)#exit ORG3(config)#int f0/0.1 %LINK-5-CHANGED: Interface FastEthernet0/0.1, changed state to upRouter(config-subif)#encapsulation dot1q 2 ORG3(config-subif)#ip nat inside ORG3(config-subif)#ip address 10.0.0.1 255.0.0.0 ORG3(config-subif)#no sh ORG3(config-subif)#exit ORG3(config)#int f0/0.2 ORG3(config-subif)#encapsulation dot1q 3 ORG3(config-subif)#ip nat inside ORG3(config-subif)#ip address 192.168.10.1 255.255.255.240 ORG3(config-subif)#no sh ORG3(config-subif)#exit
ORG3(config)#int s0/0/0 ORG3(config-if)#ip nat outside ORG3(config-if)#clock rate 64000 ORG3(config-if)#ip address 200.10.10.13 255.255.255.252 ORG3(config-if)#no sh %LINK-5-CHANGED: Interface Serial0/0/0, changed state to down ORG3(config-if)#exit ORG3(config)#ip route 0.0.0.0 0.0.0.0 serial 0/0/0 ORG3(config)#ip nat inside source static 10.0.0.2 200.10.10.50 ORG3(config)#access-list 20 permit any ORG3(config)#ip nat pool netmax 200.10.10.51 200.10.10.51 netmask 255.255.255.240 ORG3(config)#ip nat inside source list 20 pool netmax overload ORG3(config)#exit %SYS-5-CONFIG_I: Configured from console by console ORG3#wr Building configuration... [OK] ORG3# SWITCH Switch>en Switch#vlan database % Warning: It is recommended to configure VLAN from config mode, as VLAN database mode is being deprecated. Please consult user documentation for configuring VTP/VLAN in config mode. Switch(vlan)#vlan 2 name server VLAN 2 added: Name: server Switch(vlan)#vlan 3 name clients VLAN 3 added: Name: clients Switch(vlan)#exit APPLY completed. Exiting.... Switch#config t Enter configuration commands, one per line. End with CNTL/Z.
Switch(config)#int f0/1 Switch(config-if)#switchport access vlan 2 Switch(config-if)#exit Switch(config)#int range f0/2 - 3 Switch(config-if-range)#switchport access vlan 3 Switch(config-if-range)#exit Switch(config)#int f0/24 Switch(config-if)#switchport mode trunk Switch(config-if)#exit Switch(config)#exit Switch#wr
REFERENCES • Wikipedia • Google • www.edu.ac.in • NETMAX TECHNOLOGIES • CISCO

More Related Content

DOCX
How to configure vlan, stp, dtp step by step guide
byIT Tech
 
PDF
Switching
byNetwax Lab
 
PDF
Ccna Commands In 10 Minutes
byCCNAResources
 
PDF
Router commands
byAkshay Bhardwaj
 
PDF
Packet Tracer Simulation Lab Layer3 Routing
byJohnson Liu
 
DOCX
Ccna command
bySiddhartha Rajbhatt
 
PDF
Ccnp3 lab 3_5_en (hacer)
byOmar Herrera
 
DOCX
Packet Tracer: Cisco, Spanning tree protocol
byRafat Khandaker
 
How to configure vlan, stp, dtp step by step guide
byIT Tech
 
Switching
byNetwax Lab
 
Ccna Commands In 10 Minutes
byCCNAResources
 
Router commands
byAkshay Bhardwaj
 
Packet Tracer Simulation Lab Layer3 Routing
byJohnson Liu
 
Ccna command
bySiddhartha Rajbhatt
 
Ccnp3 lab 3_5_en (hacer)
byOmar Herrera
 
Packet Tracer: Cisco, Spanning tree protocol
byRafat Khandaker
 

What's hot

PDF
Cisco commands List for Beginners (CCNA, CCNP)
byDH Da Lat
 
PDF
CCNA - Routing & Switching Commands
byEng. Emad Al-Atoum
 
PDF
Ccnp3 lab 3_4_en
byOmar Herrera
 
PDF
Layer 3 redundancy hsrp
byEdgardo Scrimaglia
 
PDF
ccna cheat_sheet
byGuntaka Reddy
 
PDF
Ncat ccna cheat sheet
byEZREIG OMAR
 
PDF
Composants et fonctionnement d'un Switch Cisco
byDJENNA AMIR
 
PDF
Ccnpswitch
bySiddhartha Rajbhatt
 
PDF
2.3.1.5 packet tracer configuring rapid pvst+ answer
byNarayana Samy
 
PPSX
Packet Tracer Tutorial # 2
byAbdul Basit
 
PDF
STP (spanning tree protocol)
byNetwax Lab
 
PDF
Vrrp
byAnuj Kumar
 
DOC
Cisco switch commands cheat sheet
by3Anetwork com
 
DOCX
How to create and delete vlan on cisco catalyst switch
byIT Tech
 
DOCX
Packet Tracer: WAN, point to point links.
byRafat Khandaker
 
DOC
Cisco router command configuration overview
by3Anetwork com
 
DOCX
First Hop Redundancy Protocols in IPv6 HSRP + GLBP
byIT Tech
 
PPS
Ccna Imp Guide
byabhijitgnbbl
 
PDF
Basic Configurations on Router
byMansour Naslcheraghi
 
PPT
Chapter13ccna
byernestlithur
 
Cisco commands List for Beginners (CCNA, CCNP)
byDH Da Lat
 
CCNA - Routing & Switching Commands
byEng. Emad Al-Atoum
 
Ccnp3 lab 3_4_en
byOmar Herrera
 
Layer 3 redundancy hsrp
byEdgardo Scrimaglia
 
ccna cheat_sheet
byGuntaka Reddy
 
Ncat ccna cheat sheet
byEZREIG OMAR
 
Composants et fonctionnement d'un Switch Cisco
byDJENNA AMIR
 
Ccnpswitch
bySiddhartha Rajbhatt
 
2.3.1.5 packet tracer configuring rapid pvst+ answer
byNarayana Samy
 
Packet Tracer Tutorial # 2
byAbdul Basit
 
STP (spanning tree protocol)
byNetwax Lab
 
Vrrp
byAnuj Kumar
 
Cisco switch commands cheat sheet
by3Anetwork com
 
How to create and delete vlan on cisco catalyst switch
byIT Tech
 
Packet Tracer: WAN, point to point links.
byRafat Khandaker
 
Cisco router command configuration overview
by3Anetwork com
 
First Hop Redundancy Protocols in IPv6 HSRP + GLBP
byIT Tech
 
Ccna Imp Guide
byabhijitgnbbl
 
Basic Configurations on Router
byMansour Naslcheraghi
 
Chapter13ccna
byernestlithur
 

Viewers also liked

PDF
Basic concepts in_matlab
byMohammad Alauddin
 
PPT
Hot Latina Stereotype
bySkylar Smith
 
PPTX
Grindingmachine
byBhuban Fomb
 
PPT
презентация метод вертебропластика
byvalerasuccess
 
DOCX
Nat report1
byDavinder Chauhan
 
PPTX
Jaringan
byMadiyantosetiyon
 
PPT
Healthy eating
byudgamschool
 
PDF
Ask the XPages Experts
byTeamstudio
 
PPTX
Mini Evaluation (Posters)
byChloeandRachel
 
PPT
Course 14 days-5-march-2013
byGalina Perova
 
PPTX
Tester cards evidence template
byChloeandRachel
 
PPTX
Working To A Brief Pro Forma
byChloeandRachel
 
PDF
Firm level determinants to small and medium sized enterprises’ access to fina...
byrrpidani
 
PDF
Catalogo infissi in alluminio e pvc profinagency
byProgettieFinanza
 
PDF
Catalogo infissi in legno profinagency
byProgettieFinanza
 
Basic concepts in_matlab
byMohammad Alauddin
 
Hot Latina Stereotype
bySkylar Smith
 
Grindingmachine
byBhuban Fomb
 
презентация метод вертебропластика
byvalerasuccess
 
Nat report1
byDavinder Chauhan
 
Jaringan
byMadiyantosetiyon
 
Healthy eating
byudgamschool
 
Ask the XPages Experts
byTeamstudio
 
Mini Evaluation (Posters)
byChloeandRachel
 
Course 14 days-5-march-2013
byGalina Perova
 
Tester cards evidence template
byChloeandRachel
 
Working To A Brief Pro Forma
byChloeandRachel
 
Firm level determinants to small and medium sized enterprises’ access to fina...
byrrpidani
 
Catalogo infissi in alluminio e pvc profinagency
byProgettieFinanza
 
Catalogo infissi in legno profinagency
byProgettieFinanza
 

Similar to Nat report2

PDF
apprentissage CCNA Network Engineer Workbook.pdf
bygerardokoffi
 
PDF
Cisco Commands
byFredrick Hall
 
PPTX
Network Design on cisco packet tracer 6.0
bySaurav Pandey
 
PPTX
VLAN (Virtual Local Area Network) Full details.pptx
byVignesh kumar
 
PDF
cisco ccna cheat_sheet
byGuntaka Reddy
 
PPT
Nat 03
byDavinder Chauhan
 
DOC
Enterprise Network Manager: the Router-On-A-stick
by3Anetwork com
 
PDF
Basic Cisco 800 Router Configuration for Internet Access
byHarris Andrea
 
PDF
Zdalna komunikacja sieciowa - zagadnienia sieciowe
byAgnieszka Kuba
 
DOCX
CCNA 2 Skills Assessment - SBCCNA 2 Skills Assessment - SBTopolo.docx
byrobert345678
 
PDF
Case study
bymohsin225
 
PDF
corporate network
byKaushal Kishore
 
PPTX
labffbhhhhjjjjjjjjj bnbbnv material.pptx
byBinyamBekeleMoges
 
PPTX
lab 2 (1)bbbbhbbbvvvvvvccccbbvvvccc.pptx
byBinyamBekeleMoges
 
PPTX
Switching techniques in networking and uses
bylochanraj1
 
PPT
07 module extending switched netwroks with virtual la ns
byAsif
 
PPT
Training Day Slides
byadam_merritt
 
PPTX
CCNA ppt Day 7
byVISHNU N
 
PDF
Vlan
byM Salim Sajid
 
PDF
Open stack advanced_part
bylilliput12
 
apprentissage CCNA Network Engineer Workbook.pdf
bygerardokoffi
 
Cisco Commands
byFredrick Hall
 
Network Design on cisco packet tracer 6.0
bySaurav Pandey
 
VLAN (Virtual Local Area Network) Full details.pptx
byVignesh kumar
 
cisco ccna cheat_sheet
byGuntaka Reddy
 
Nat 03
byDavinder Chauhan
 
Enterprise Network Manager: the Router-On-A-stick
by3Anetwork com
 
Basic Cisco 800 Router Configuration for Internet Access
byHarris Andrea
 
Zdalna komunikacja sieciowa - zagadnienia sieciowe
byAgnieszka Kuba
 
CCNA 2 Skills Assessment - SBCCNA 2 Skills Assessment - SBTopolo.docx
byrobert345678
 
Case study
bymohsin225
 
corporate network
byKaushal Kishore
 
labffbhhhhjjjjjjjjj bnbbnv material.pptx
byBinyamBekeleMoges
 
lab 2 (1)bbbbhbbbvvvvvvccccbbvvvccc.pptx
byBinyamBekeleMoges
 
Switching techniques in networking and uses
bylochanraj1
 
07 module extending switched netwroks with virtual la ns
byAsif
 
Training Day Slides
byadam_merritt
 
CCNA ppt Day 7
byVISHNU N
 
Vlan
byM Salim Sajid
 
Open stack advanced_part
bylilliput12
 

More from Davinder Chauhan

PPT
Sports nutrition
byDavinder Chauhan
 
PPTX
old age
byDavinder Chauhan
 
DOCX
Nat report 1
byDavinder Chauhan
 
PPTX
Nat 07
byDavinder Chauhan
 
DOC
Nat report103
byDavinder Chauhan
 
DOCX
Nat report
byDavinder Chauhan
 
Sports nutrition
byDavinder Chauhan
 
old age
byDavinder Chauhan
 
Nat report 1
byDavinder Chauhan
 
Nat 07
byDavinder Chauhan
 
Nat report103
byDavinder Chauhan
 
Nat report
byDavinder Chauhan
 

Recently uploaded

PPTX
UNIT 1- Introduction to Basic of Computer Fundamentals
bypawarbhaktiit
 
PDF
Using Change Data Capture (CDC) to Ingest Data into Apache Kafka
byGiovanni Marigi
 
PDF
January Patch Tuesday
byIvanti
 
PDF
Top 5 Best Dedicated Server Providers in Los Angeles (Updated Edition)
byAtal Networks
 
PDF
XonTel Plus IP-PBX Business Phone System
byXonTel Technology
 
PPTX
The Abomination of AI – keynote at ICoSCI 2026
byAlan Dix
 
PDF
2025-CB-NCAE-slide-deck.pptx-1-83.pdf Virtual Orientation on the Administrati...
byNelizabethEsplaguera1
 
PDF
Hart, Inc. M&A Data Transition Checklist
byHart, Inc.
 
PDF
65 AI-related Posts Catalog https://tinyurl.com/mpavkr8z
byBob Marcus
 
PDF
Effective Ai powered mock interview .pdf
byamazingnishusingh766
 
PPTX
On-Device AI with Gemma 3n and PaliGemma 2 Session Slides - GDG VESIT
bygdgcodecellcmpn
 
PPTX
02_Extended Warehouse Management Functions and Features.pptx
byUdayakumar218983
 
PDF
Presentation on Four Stroke Engine of Ic engine
bySonam Sherpa
 
PDF
Early Signs of Constraint Loss in Modern System Design
byReality Drift Archive
 
PPTX
Grade 8 LESSON 7 - VIDEO EDITING lessonb
byclarizzairahmanansal
 
PDF
Best Bank Statement Converter Software - A Documentation-Based Meta-Analysis ...
bylewisconrada
 
PPTX
Full course that Prymehat uploads for you
byOhenebaManu1
 
PPTX
AI_in_Cybersecurity_Insights_Case_Studies.pptx
bywrksmith9
 
PPTX
Why GEO Is the Next Big Shift in Content Marketing.pptx
bySambitParhi2
 
PDF
Chapter 2 Computer Threat .pdf
byGetnet Tigabie Askale -(GM)
 
UNIT 1- Introduction to Basic of Computer Fundamentals
bypawarbhaktiit
 
Using Change Data Capture (CDC) to Ingest Data into Apache Kafka
byGiovanni Marigi
 
January Patch Tuesday
byIvanti
 
Top 5 Best Dedicated Server Providers in Los Angeles (Updated Edition)
byAtal Networks
 
XonTel Plus IP-PBX Business Phone System
byXonTel Technology
 
The Abomination of AI – keynote at ICoSCI 2026
byAlan Dix
 
2025-CB-NCAE-slide-deck.pptx-1-83.pdf Virtual Orientation on the Administrati...
byNelizabethEsplaguera1
 
Hart, Inc. M&A Data Transition Checklist
byHart, Inc.
 
65 AI-related Posts Catalog https://tinyurl.com/mpavkr8z
byBob Marcus
 
Effective Ai powered mock interview .pdf
byamazingnishusingh766
 
On-Device AI with Gemma 3n and PaliGemma 2 Session Slides - GDG VESIT
bygdgcodecellcmpn
 
02_Extended Warehouse Management Functions and Features.pptx
byUdayakumar218983
 
Presentation on Four Stroke Engine of Ic engine
bySonam Sherpa
 
Early Signs of Constraint Loss in Modern System Design
byReality Drift Archive
 
Grade 8 LESSON 7 - VIDEO EDITING lessonb
byclarizzairahmanansal
 
Best Bank Statement Converter Software - A Documentation-Based Meta-Analysis ...
bylewisconrada
 
Full course that Prymehat uploads for you
byOhenebaManu1
 
AI_in_Cybersecurity_Insights_Case_Studies.pptx
bywrksmith9
 
Why GEO Is the Next Big Shift in Content Marketing.pptx
bySambitParhi2
 
Chapter 2 Computer Threat .pdf
byGetnet Tigabie Askale -(GM)
 

Nat report2

  • 1.
    SECURING PRIVATE ENVIORNMENT BY USING NAT PROJECT REPORT
  • 3.
    ACKNOWLDGEMENT The project isbased on network addressing translation(nat). The beauty of configuring nat on routers is that it can help users access internet on private ip address which are otherwise excluded by internet service provider(isp). We have used inter VLAN technology to make work efficient between 3 different and independent organisations. The vlans have been divided into web servers and internet clients.
  • 4.
    DESCRIPTION We have threeorganisations. Org1, org2 and org3. Each organisation comprises a router, to route the data from and to isp. There are manageable switches in each organisation and we have created separate vlans for servers and internet clients. If we want the communication between the internet clients and servers then we configure inter vlan concept on the router. And if we want to block some internet clients cannot access our servers then we create acl for that particular user. These organisations are linked externally to an isp which provides live(public) ip addresses to each organisation, and isp also provides the internet connections to others.
  • 5.
    CONFIGURATION FOR ORG1 %SYS-5-CONFIG_I: ConfiguredfrROUTER ORG1 Router>en Router#config t Enter configuration commands, one per line. End with CNTL/Z. Router(config)#hostname ORG1 ORG1(config)#line console 0 ORG1(config-line)#password net ORG1(config-line)#login ORG1(config-line)#exit ORG1(config)#line vty 0 4 ORG1(config-line)#password net ORG1(config-line)#login ORG1(config-line)#exit
  • 6.
    ORG1(config)#enable password net ORG1(config)#enablesecret net1 ORG1(config)#int f0/0 ORG1(config-if)#no sh %LINK-5-CHANGED: Interface FastEthernet0/0, changed state to up ORG1(config-if)#exit ORG1(config)#int f0/0.1 %LINK-5-CHANGED: Interface FastEthernet0/0.1, changed state to upRouter(config-subif)#encapsulation dot1q 2 ORG1(config-subif)#ip nat inside ORG1(config-subif)#ip address 10.0.0.1 255.0.0.0 ORG1(config-subif)#no sh ORG1(config-subif)#exit ORG1(config)#int f0/0.2 ORG1(config-subif)#encapsulation dot1q 3 ORG1(config-subif)#ip nat inside ORG1(config-subif)#ip address 192.168.10.1 255.255.255.240 ORG1(config-subif)#no sh ORG1(config-subif)#exit ORG1(config)#int s0/0/0 ORG1(config-if)#ip nat outside ORG1(config-if)#clock rate 64000 ORG1(config-if)#ip address 200.10.10.5 255.255.255.252 ORG1(config-if)#no sh %LINK-5-CHANGED: Interface Serial0/0/0, changed state to down ORG1(config-if)#exit ORG1(config)#ip route 0.0.0.0 0.0.0.0 serial 0/0/0 We have place our web server in the private area so that the internet client cannot directly access it. So, we have configured static nat and open port number 80(http) only. ORG1(config)#ip nat inside source static tcp 10.0.0.2 80 200.10.10.17 80 In our organisation our clients want to access internet so we will configure dynamic nat with overload for clients.
  • 7.
    ORG1(config)#access-list 20 permitany ORG1(config)#ip nat pool netmax 200.10.10.18 200.10.10.18 netmask 255.255.255.240 ORG1(config)#ip nat inside source list 20 pool netmax overload ORG1(config)#exit ORG1#wr Building configuration... [OK] ORG1# SWITCH
  • 8.
    Switch>en Switch#vlan database % Warning:It is recommended to configure VLAN from config mode, as VLAN database mode is being deprecated. Please consult user documentation for configuring VTP/VLAN in config mode. Switch(vlan)#vlan 2 name server VLAN 2 added: Name: server Switch(vlan)#vlan 3 name clients VLAN 3 added: Name: clients Switch(vlan)#exit APPLY completed. Exiting.... Switch#config t Enter configuration commands, one per line. End with CNTL/Z. Switch(config)#int f0/1 Switch(config-if)#switchport access vlan 2 Switch(config-if)#exit Switch(config)#int range f0/2 - 3 Switch(config-if-range)#switchport access vlan 3 Switch(config-if-range)#exit Switch(config)#int f0/24 Switch(config-if)#switchport mode trunk Switch(config-if)#exit Switch(config)#exit Switch#wr
  • 9.
    FOR ORG2 ROUTER Router>en Router#config t Enterconfiguration commands, one per line. End with CNTL/Z. Router(config)#hostname ORG2 ORG2(config)#line console 0 ORG2(config-line)#password net ORG2(config-line)#login ORG2(config-line)#exit ORG2(config)#line vty 0 4 ORG2(config-line)#password net ORG2(config-line)#login ORG2(config-line)#exit ORG2(config)#enable password net ORG2(config)#enable secret net1 ORG2(config)#int f0/0 ORG2(config-if)#no sh %LINK-5-CHANGED: Interface FastEthernet0/0, changed state to up ORG2(config-if)#exit ORG2(config)#int f0/0.1 %LINK-5-CHANGED: Interface FastEthernet0/0.1, changed state to upRouter(config-subif)#encapsulation dot1q 2 ORG2(config-subif)#ip nat inside ORG2(config-subif)#ip address 10.0.0.1 255.0.0.0 ORG2(config-subif)#no sh ORG2(config-subif)#exit ORG2(config)#int f0/0.2 ORG2(config-subif)#encapsulation dot1q 3 ORG2(config-subif)#ip nat inside ORG2(config-subif)#ip address 192.168.10.1 255.255.255.240 ORG2(config-subif)#no sh ORG2(config-subif)#exit
  • 10.
    ORG2(config)#int s0/0/0 ORG2(config-if)#ip natoutside ORG2(config-if)#clock rate 64000 ORG2(config-if)#ip address 200.10.10.9 255.255.255.252 ORG2(config-if)#no sh %LINK-5-CHANGED: Interface Serial0/0/0, changed state to down ORG2(config-if)#exit ORG2(config)#ip route 0.0.0.0 0.0.0.0 serial 0/0/0 ORG2(config)#ip nat inside source static 10.0.0.2 200.10.10.33 ORG2(config)#access-list 20 permit any ORG2(config)#ip nat pool netmax 200.10.10.34 200.10.10.36 netmask 255.255.255.240 ORG2(config)#ip nat inside source list 20 pool netmax ORG2(config)#exit %SYS-5-CONFIG_I: Configured from console by console ORG2#wr Building configuration... [OK] ORG2# SWITCH Switch>en Switch#vlan database % Warning: It is recommended to configure VLAN from config mode, as VLAN database mode is being deprecated. Please consult user documentation for configuring VTP/VLAN in config mode. Switch(vlan)#vlan 2 name server VLAN 2 added: Name: server Switch(vlan)#vlan 3 name clients VLAN 3 added: Name: clients Switch(vlan)#exit APPLY completed. Exiting....
  • 11.
    Switch#config t Enter configurationcommands, one per line. End with CNTL/Z. Switch(config)#int f0/1 Switch(config-if)#switchport access vlan 2 Switch(config-if)#exit Switch(config)#int range f0/2 - 3 Switch(config-if-range)#switchport access vlan 3 Switch(config-if-range)#exit Switch(config)#int f0/24 Switch(config-if)#switchport mode trunk Switch(config-if)#exit Switch(config)#exit Switch#wr
  • 12.
    FOR ORG3 ROUTER Router>en Router#config t Enterconfiguration commands, one per line. End with CNTL/Z. Router(config)#hostname ORG3 ORG3(config)#line console 0 ORG3(config-line)#password net ORG3(config-line)#login ORG3(config-line)#exit ORG3(config)#line vty 0 4 ORG3(config-line)#password net ORG3(config-line)#login ORG3(config-line)#exit ORG3(config)#enable password net ORG3(config)#enable secret net1 ORG3(config)#int f0/0 ORG3(config-if)#no sh %LINK-5-CHANGED: Interface FastEthernet0/0, changed state to up ORG3(config-if)#exit ORG3(config)#int f0/0.1 %LINK-5-CHANGED: Interface FastEthernet0/0.1, changed state to upRouter(config-subif)#encapsulation dot1q 2 ORG3(config-subif)#ip nat inside ORG3(config-subif)#ip address 10.0.0.1 255.0.0.0 ORG3(config-subif)#no sh ORG3(config-subif)#exit ORG3(config)#int f0/0.2 ORG3(config-subif)#encapsulation dot1q 3 ORG3(config-subif)#ip nat inside ORG3(config-subif)#ip address 192.168.10.1 255.255.255.240 ORG3(config-subif)#no sh ORG3(config-subif)#exit
  • 13.
    ORG3(config)#int s0/0/0 ORG3(config-if)#ip natoutside ORG3(config-if)#clock rate 64000 ORG3(config-if)#ip address 200.10.10.13 255.255.255.252 ORG3(config-if)#no sh %LINK-5-CHANGED: Interface Serial0/0/0, changed state to down ORG3(config-if)#exit ORG3(config)#ip route 0.0.0.0 0.0.0.0 serial 0/0/0 ORG3(config)#ip nat inside source static 10.0.0.2 200.10.10.50 ORG3(config)#access-list 20 permit any ORG3(config)#ip nat pool netmax 200.10.10.51 200.10.10.51 netmask 255.255.255.240 ORG3(config)#ip nat inside source list 20 pool netmax overload ORG3(config)#exit %SYS-5-CONFIG_I: Configured from console by console ORG3#wr Building configuration... [OK] ORG3# SWITCH Switch>en Switch#vlan database % Warning: It is recommended to configure VLAN from config mode, as VLAN database mode is being deprecated. Please consult user documentation for configuring VTP/VLAN in config mode. Switch(vlan)#vlan 2 name server VLAN 2 added: Name: server Switch(vlan)#vlan 3 name clients VLAN 3 added: Name: clients Switch(vlan)#exit APPLY completed. Exiting.... Switch#config t Enter configuration commands, one per line. End with CNTL/Z.
  • 14.
    Switch(config)#int f0/1 Switch(config-if)#switchport accessvlan 2 Switch(config-if)#exit Switch(config)#int range f0/2 - 3 Switch(config-if-range)#switchport access vlan 3 Switch(config-if-range)#exit Switch(config)#int f0/24 Switch(config-if)#switchport mode trunk Switch(config-if)#exit Switch(config)#exit Switch#wr
  • 15.
    REFERENCES • Wikipedia • Google • www.edu.ac.in • NETMAX TECHNOLOGIES • CISCO