CCNA NAT SIM Question 1
Question
A network associate is configuring a router for the CCNA Training company to provide internet access. The ISP has provided the company six public IP addresses of 198.18.184.105 198.18.184.110. The company has 14 hosts that need to access the internet simultaneously. The hosts in the CCNA Training company LAN have been assigned private space addresses in the range of 192.168.100.17 – 192.168.100.30.
The task is to complete the NAT configuration using all IP addresses assigned by the ISP to provide Internet access for the hosts in the Weaver LAN. Functionality can be tested by clicking on the host provided for testing.
Configuration information
router name – Weaver
inside global addresses – 198.18.184.105 198.18.184.110/29
inside local addresses – 192.168.100.17 – 192.168.100.30/28
number of inside hosts – 14
|
The following have already been configured on the router: - The basic router configuration - The appropriate interfaces have been configured for NAT inside and NAT outside - The appropriate static routes have also been configured (since the company will be a stub network, no routing protocol will be required.) - All passwords have been temporarily set to “cisco” |
Solution
Note: If you are not sure how NAT & PAT work, please read my Network Address Translation NAT Tutorial. You can download this sim to practice here: http://www.9tut.com/download/9tut.com_CCNA_NAT_sim_question.zip
The CCNA Training company has 14 hosts that need to access the internet simultaneously but we just have 6 public IP addresses from 198.18.184.105 to 198.18.184.110/29. Therefore we have to use NAT overload (or PAT)
Double click on the Weaver router to open it
Router>enable
Router#configure terminal
First you should change the router’s name to Weaver
Router(config)#hostname Weaver
Create a NAT pool of global addresses to be allocated with their netmask (/29 = 255.255.255.248). There were reports that the simulator in the real exam did not accept “prefix-length” keryword so you should use “netmask” keyword.
Weaver(config)#ip nat pool mypool 198.18.184.105 198.18.184.110 netmask 255.255.255.248
Create a standard access control list that permits the addresses that are to be translated
Weaver(config)#access-list 1 permit 192.168.100.16 0.0.0.15
Establish dynamic source translation, specifying the access list that was defined in the prior step
Weaver(config)#ip nat inside source list 1 pool mypool overload
This command translates all source addresses that pass access list 1, which means a source address from 192.168.100.17 to 192.168.100.30, into an address from the pool named mypool (the pool contains addresses from 198.18.184.105 to 198.18.184.110)
Overload keyword allows to map multiple IP addresses to a single registered IP address (many-to-one) by using different ports
The question said that appropriate interfaces have been configured for NAT inside and NAT outside statements.
This is how to configure the NAT inside and NAT outside, just for your understanding:
Weaver(config)#interface fa0/0
Weaver(config-if)#ip nat inside
Weaver(config-if)#exit
Weaver(config)#interface s0/0
Weaver(config-if)#ip nat outside
Weaver(config-if)#end
Finally, we should save all your work with the following command:
Weaver#copy running-config startup-config
Check your configuration by going to “Host for testing” and type:
C:\>ping 192.0.2.114
The ping should work well and you will be replied from 192.0.2.114
Other lab-sims on this site:
CCNA Configuration SIM Question (RIPv2 SIM)
@johnmaxwell: You can’t configure the ISP router in the exam. The ISP router has been configured to send traffic back to Weaver.
Hi,
@9tut
I am confused about “Bomar(config)#access-list 1 deny any” this command, just have a look on it and let me know please.
A network associate is configuring a router for the Bomar Company to provide Internet access. The ISP has provided the company with six Public IP addresses of 198.18.237.225 198.18.237.230. The company has 14 hosts that need to access the Internet simultaneously. The hosts in the company LAN have been assigned private space addresses in the range of 192.168.16.33 – 192.168.16.46.
The following have already been configured on the router:
- The basic router configuration
- The appropriate interfaces have been configured for NAT inside and NAT outside.
- The appropriate static routes have also been configured (since the company will be a stub network, no routing protocol will be required)
- All passwords have been temporarily set to “cisco”.
The task is to complete the NAT configuration using all IP addresses assigned by the ISP to provide Internet access for the hosts in the Bomar LAN. You have successfully completed this exercise when the host PC can ping the ISP.
Configuration Information:
Router Name – Bomar
Inside Global Addresses – 198.18.237.225 198.18.237.230/29
Inside Local Addresses – 192.168.16.33 – 192.168.16.46/28
Number of inside hosts – 14
Given answer is as mentioned as:
Bomar>ena
Bomar#configure terminal
Bomar(config)#access-list 1 permit 192.168.16.33 0.0.0.15
Bomar(config)#access-list 1 deny any
Bomar(config)#ip nat pool TestKiss 198.18.237.225 198.18.237.230 prefix-length 29
Bomar(config)#ip nat inside source list 1 pool TestKiss overload
Bomar(config)#interface fa0/0
Bomar(config-if)#ip nat inside
Bomar(config-if)#exit
Bomar(config)#interface s0/0
Bomar(config-if)#ip nat outside
Bomar(config-if)#end
Bomar# copy run start
As I corrected is:
Bomar>ena
Bomar#configure terminal
Bomar(config)#access-list 1 permit 192.168.16.33 0.0.0.15
Bomar(config)#access-list 1 deny any
Bomar(config)#ip nat pool TestKiss 198.18.237.225 198.18.237.230 netmask 255.255.255.248
Bomar(config)#ip nat inside source list 1 pool TestKiss overload
Bomar(config)#interface fa0/0
Bomar(config-if)#ip nat inside
Bomar(config-if)#exit
Bomar(config)#interface s0/0
Bomar(config-if)#ip nat outside
Bomar(config-if)#end
Bomar# copy run start
Today I passed with 986/1000 bcoz of God’s Grace & my effort also Thanx a lot to 9TUT.com & Examcollection.com. my sims were EIGRP, VTP, ACL2 frm 9tut. Total question 48. I solved those ques. very easily
1) i advice you that u 1st clear ur concept using study materials & notes (use Todd lammle book.It’s very helpful)
2) for dumps & Sims-> a) use 9tut. & other dumps are (Collisio.486q) (by.Jericho.632q)
(Bruce.564q) (by.DHARANI.615q) in those dumps there is l’ll bit difference. so pls go through…
get it from examcollection.com
dont mug up only, understand the concept. in real exam options comes randomly.
dont worry exam is very very easy if u follow these advise you will get above 900…………..100% true
3) One question made me confuse:–>
In which circumstance are multiple copies of the same unicast frame likely to be transmitted in the Switched LAN?
A. During high traffic periods
B. In an improperly implemented redundant topology
C. After broken links are re-established
D. When upper-layer protocols require high reliability
E. When a dual ring topology is in use
I choose>B. In an improperly implemented redundant topology
that’s why i lose 14 marks otherwise all ques 100% correct
I think the correct ans is:–E. When a dual ring topology is in use
Pls check out this ques
Best of luck guys………………..
i got 986………..thank you so much for help 9tut……