Home
 
 
General
 
Cisco basics
 
Switching
 
Network management
 
HSRP
 
SSH
 
IPsec
 
Routing protocols
 
Address translation
Network Address Translation
Configure IP NAT hide mode
 
Unified communication
 
Quality of service
 
Wireless
 
CCIE
 
Cisco NX-OS / Nexus
 
ASA / PIX Security Appliances
 

What is Network Address Translation (NAT)

Network Address Translation (NAT) is the translation of source and/or destination IP addresses. The reasons to use this can be:
• Lack of address space
• Migration of network(s)
• Security

The following types of NAT are used by Cisco:
• Static NAT
• Dynamic NAT
• Overloading

Static NAT
Mapping an (unregistered) IP address to a (registered) IP address on a one-to-one basis.

Dynamic NAT
Maps an unregistered IP address to a registered IP address from a group of registered IP addresses.

Overloading
A form of dynamic NAT that maps multiple unregistered IP addresses to a single registered IP address by using different ports. Known also as PAT (Port Address Translation) or hide NAT.

At least two interfaces are necessary for a NAT configuration. One inside interface and one outside interface.

The following addresses are known by a Cisco NAT configuration:
• Inside Local
• Inside Global
• Outside Local
• Outside Global

Inside Local
A local host is known from the inside by the inside local IP address.

Inside Global
A local host is known from the outside by the inside global IP address.

Outside Local
A local host is known from the outside by the outside global IP address.

Outside Global
An outside host is known from the outside by the outside global IP address.

Vulnerability Announcements
Multiple Vulnerabilities in Cisco Unified IP Phones 7900 Series

Default Credentials Vulnerability in Cisco Network Registrar

Cisco RVS4000 and WRVS4400N Web Management Interface Vulnerabilities

Cisco Content Services Gateway Denial of Service Vulnerability

Multiple Vulnerabilities in Cisco AnyConnect Secure Mobility Client

Cisco SA 500 Series Security Appliances Web Management Interface Vulnerabilities

Cisco ASR 9000 Series Routers Line Card IP Version 4 Denial of Service Vulnerability

Field Notices
(Cisco CRS Series Routers) Field Notice: FN - 63126 - CRS: 1OC768-ITU/C cards may experience High Bit Error Rate (BER) or loss of Transmit power incidents in certain batch of optical module - Workaround Fix on Failure

(Cisco CRS Series Routers) Field Notice: FN - 63046 - CRS - 1OC768-POS-SR cards May Experience Bit Error Rate (BER) Incidents Due to Onboard Short - Fix on Failure

(Cisco MGX 8800 Series Switches) Field Notice: FN - 63319 - MGX - VXSM-SW May Report Error Code 400 for CAS Signaling Call - Workaround Available

(Cisco 7800 Series Media Convergence Servers) Field Notice: FN - 63324 - A Limited Number of HP DL380-G6 Servers Shipped Prior to November 16, 2009 May Unexpectedly Reboot

(Cisco 800 Series Routers) Field Notice: FN - 63343 - PCEX-3G-HSPA-R6 Modem not Recognized in Cisco IOS 15.1(1)T of Cisco 880G Series Router - Cisco IOS Upgrade Required

(Cisco MDS 9500 Series Multilayer Directors) Field Notice: FN - 63132 - MDS9000 - Potential DIMM Memory Issue in a Small Number of DS-X9530-SF2-K9 Supervisor Cards Manufactured Between September 2007 and February 2008