Ch27-Network Address Translation

Question 1

An RFC-standard tool for global IP address range assignment. Reduces the size of Internet routers’ IP routing tables.

Answer 1

CIDR (Classless Inter-domain Routing)

Question 2

For packets sent to and from a host that resides inside the trusted part of a network that uses NAT, a term referring to the IP address used in the headers of those packets when those packets traverse the global (public) internet

Answer 2

Inside global

Question 3

For packets sent to and from a host that resides inside the trusted part of a network that uses NAT, a term referring to the IP address used in the headers of those packets when those packets traverse the enterprise (private) network

Answer 3

Inside local

Question 4

Another term for Port Address Translation (PAT). On of several methods of configuring NAT, in this case translating TCP and UDP flows baed on port numbers in addition to using one (or only a few) inside global addresses.

Answer 4

NAT overload

Question 5

With source NAT, the one address used by the host that resides outside the enterprise, which NAT does not change.

Answer 5

Outside global

Question 6

A NAT feature in which one inside global IP address supports over 65000 concurrent TCP and UDP connections

Answer 6

PAT (Port Address Translation, NAT Overload

Question 7

Any of the the IPv4 Class A, B, or C networks that are set aside for use inside private organizations. These addresses are not routable through the Internet

Answer 7

private IP network

Question 8

The type of Network Address Translation used most commonly in networks in which the source IP address of packets entering the inside interface is translated

Answer 8

source NAT

Question 9

Command reference: Interface subcommand to enable NAT and identify whether the interface is in the inside or outside of the network

Answer 9

ip nat [inside | outside]

Question 10

Command reference: Global command that enables NAT globally, referencing an ACL that defines which source addresses to NAT, and the interface or pool from which to find global addresses

Answer 10

ip nat inside source acl [interface int-id | pool pool-name]

Question 11

Command reference: Global command to define a pool of NAT addresses

Answer 11

ip nat pool pool-name start-ip end-ip [netmask mask | prefix-length prefix-length]

Question 12

Command reference: Lists counters for packets and NAT table entries, as well as basic configuration information

Answer 12

show ip nat statistics

Question 13

Command reference: Displays the NAT table

Answer 13

show ip nat translations

Question 14

Command reference: Clears all of the dynamic entries in the NAT table

Answer 14

clear ip nat translation *

Question 15

Command reference: Issues log messages describing packets whose IP address is translated with NAT

Answer 15

debug ip nat

Question 16

According to RFC1918, what network(s) are reserved for Class A private address use?/

Answer 16

10.0.0.0/8

Question 17

How many networks are included in RFC1918 Class A?

Answer 17

one

Question 18

What is the address range of Class A private address space?

Answer 18

10.0.0.0-10.255.255.255

Question 19

According to RFC1918, what network(s) are reserved for Class B private address use?

Answer 19

172.16.0.0/12

Question 20

How many networks are defined by Class B private addressing, and what is the range of those networks?

Answer 20

16; 172.16.0.0-172.31.0.0

Question 21

What is the range of address space defined by RFC1918 Class B?

Answer 21

172.16.0.0-172.31.255.255

Question 22

According to RFC1918, what network(s) are reserved for Class C private address use?/

Answer 22

192.168.0.0/16

Question 23

How many networks are defined by Class C private addressing, and what is the range of those networks?

Answer 23

256; 192.168.0.0-192.168.255.0

Question 24

What is the range of address space defined by RFC1918 Class C?

Answer 24

192.168.0.0-192.168.255.255

Question 25

Based on the figure, what will the translated address be once the NAT router forwards the packet? Assume no NAT-translated packets have left the router yet. Also, what terminology would apply to this address?

Answer 25

200.1.1.1, inside global