1
00:00:00,530 --> 00:00:08,510
At the moment, the show IP net statistics shows me that I have one active translation and zero dynamic

2
00:00:08,510 --> 00:00:09,920
and zero extended.

3
00:00:10,190 --> 00:00:17,060
The outside interfaces are fast Ethernet zero one inside interfaces is Fost Ethernet zero zero.

4
00:00:17,360 --> 00:00:19,180
I've had a certain number of hits.

5
00:00:19,370 --> 00:00:22,130
Certain number of packets have been translated by SF.

6
00:00:22,280 --> 00:00:27,410
Expired translations is five now telnet back to router one.

7
00:00:33,680 --> 00:00:41,750
Show IP net translations shows me that I now have that active net translation and when I look at statistics,

8
00:00:41,750 --> 00:00:46,790
notice I have two translations, one being static and one being dynamic.

9
00:00:47,210 --> 00:00:49,880
The number of hits has also increased.

10
00:00:50,390 --> 00:00:58,550
I have one extended translation, an extended NAT translation maps, one IP address and put paid to

11
00:00:58,550 --> 00:00:59,210
another.

12
00:00:59,750 --> 00:01:04,800
So I have one IP address and port number mapped to another on my router.

13
00:01:04,819 --> 00:01:11,450
I'll use control shift six x to jump back to router three and Telnet back again to write a one.

14
00:01:12,820 --> 00:01:19,900
Looking at the statistics now, I see that I have three translations, one being static, two dynamic

15
00:01:19,900 --> 00:01:23,440
to extend it, and we can see that again by using the show.

16
00:01:23,440 --> 00:01:25,270
IP Net Translations Command.

17
00:01:25,690 --> 00:01:32,200
There's our static entry here, the two dynamic entries that have been created from that static entry.

18
00:01:33,590 --> 00:01:36,560
So that was an example of static net.

19
00:01:36,590 --> 00:01:43,730
Just to summarize, show run on router two, shows me the configuration on router to the device doing

20
00:01:43,730 --> 00:01:44,420
the net.

21
00:01:44,420 --> 00:01:52,370
I had to specify an IP address on my inside interface and specify that that was the inside interface.

22
00:01:53,920 --> 00:01:56,980
On my outside interface Fast Ethernet zero one.

23
00:01:56,980 --> 00:02:02,380
I specified an IP address and I specified that this is the net outside interface.

24
00:02:04,680 --> 00:02:14,340
And lastly, I configured IP net inside source static the actual or inside a local IP address that's

25
00:02:14,340 --> 00:02:21,300
going to be netted and the inside global address used on the Internet or outside interface.

26
00:02:22,590 --> 00:02:26,190
That's how you said upsetting that once again show run pipe include.

27
00:02:26,350 --> 00:02:34,140
Nat shows me those three commands those are the three commands that you need to use to configure static

28
00:02:34,140 --> 00:02:34,680
net.

29
00:02:36,180 --> 00:02:42,540
In this example, I have three routers out of one, rather two and rather three without a one and root

30
00:02:42,540 --> 00:02:49,890
of two on the inside network and write a two is connected to or out of three on the outside or internet

31
00:02:49,890 --> 00:02:50,760
link.

32
00:02:50,850 --> 00:02:57,420
Now typically with static network address translation, you are allowing a device on the outside to

33
00:02:57,420 --> 00:02:59,340
access a device on the inside.

34
00:02:59,670 --> 00:03:03,210
In this example, I'm using routers, but typically.

35
00:03:04,990 --> 00:03:08,920
Rather one would actually be a server of some description.

36
00:03:11,260 --> 00:03:18,310
So in your mind's eye, think of this as a server and think of this device on the right.

37
00:03:20,110 --> 00:03:23,350
As a computer or client and router.

38
00:03:23,350 --> 00:03:29,920
Three Our client is trying to access the server hosted on the inside network.

39
00:03:30,370 --> 00:03:37,000
Now in the lab I'm going to leave these as routers, but when thinking about this, think of rather

40
00:03:37,000 --> 00:03:41,290
one being a server and router, three being a PC and router.

41
00:03:41,290 --> 00:03:45,120
Three is trying to access router one on the inside network.

42
00:03:45,130 --> 00:03:52,450
Now with static net, there's a permanent mapping between the internal IP address and a specified public

43
00:03:52,450 --> 00:03:53,350
IP address.

44
00:03:53,980 --> 00:04:01,210
While in dynamic net, individual private addresses are mapped to individual public addresses in a pool

45
00:04:01,210 --> 00:04:02,260
of addresses.

46
00:04:03,090 --> 00:04:09,690
So as an example, if you had ten IP addresses in your pool, the first host that sends traffic will

47
00:04:09,690 --> 00:04:12,330
get to use the first IP address in the pool.

48
00:04:12,480 --> 00:04:16,450
The second host would use the second IP address and so forth and so on.

49
00:04:16,470 --> 00:04:23,940
You're not explicitly mapping a public IP address to a internal server's IP address.

50
00:04:24,830 --> 00:04:28,910
So when you set up dynamic, Nat, you're going to set up a pool of addresses.

51
00:04:29,750 --> 00:04:35,510
You also configure inside and outside interfaces, but you don't create a static map to a single IP

52
00:04:35,510 --> 00:04:35,910
address.

53
00:04:35,930 --> 00:04:41,060
You create a pool of addresses that can be used by hosts internally.