NAT (Network Address Translation or Network Address
Translator) is the translation of an Internet Protocol
address (IP address) used within one network to a different IP address
known within another network. One network is designated the inside network and
the other is the outside. Typically, a company maps it’s local
inside network addresses to one or more global outside IP addresses and unmaps
the global IP addresses on incoming packets back into local IP addresses. This
helps ensure security since each outgoing or incoming request must go through a
translation process that also offers the opportunity to qualify or authenticate
the request or match it to a previous request. NAT also conserves on the number
of global IP addresses that a company needs and it lets the company use a
single IP address in its communication with the world.
NAT is included as part of a router and is often
part of a corporate firewall. Network administrators create a NAT table that
does the global-to-local and local-to-global IP address mapping. NAT can also
be used in conjunction with policy routing. NAT can be statically
defined or it can be set up to dynamically translate from and to a pool of IP
addresses. Cisco's version of NAT lets an administrator create tables that map:
- A local IP address to one global IP address statically
- A local IP address to any of a rotating pool of global IP addresses that a company may have
- A local IP address plus a particular TCP port to a global IP address or one in a pool of them
- A global IP
address to any of a pool of local IP addresses on a round-robin basis
NAT serves three main purposes:1 Provides a type of firewall by hiding internal IP addresses2 Enables a company to use more internal IP addresses. Since they're used internally only, there's no possibility of conflict with IP addresses used by other companies and organizations.3 Allows a company to combine multiple ISDN connections into a single Internet connection.
No comments:
Post a Comment