蓝色字体为注释
加粗下滑为完整命令
在此打问号显示每个命令下可作的操作并做了保留了,作为理解之用。
本例是将10.8.10.0 255.255.255.0 转换为24.17.3.3-24.17.3.9 255.255.255.0 范围内的地址
》》进入全局模式
Router#configure terminal
Enter configuration commands, one per line. End with CNTL/Z.
》》进入接口定义出/入口
Router(config)#interface fastEthernet 0/0
Router(config-if)#ip nat inside
Router(config-if)#exit
Router(config)#interface fastEthernet 0/1
Router(config-if)#ip nat outside
Router(config-if)#exit
》》定义地址池
Router(config)#ip ?
access-list Named access-list
default-network Flags networks as candidates for default routes
dhcp Configure DHCP server and relay parameters
domain IP DNS Resolver
domain-lookup Enable IP Domain Name System hostname translation
domain-name Define the default domain name
forward-protocol Controls forwarding of physical and directed IP broadcasts
host Add an entry to the ip hostname table
name-server Specify address of name server to use
nat NAT configuration commands
route Establish static routes
Router(config)#ip nat ?
inside Inside address translation
pool Define pool of addresses
Router(config)#ip nat pool ?
WORD Pool name
Router(config)#ip nat pool a ?
A.B.C.D Start IP address
Router(config)#ip nat pool a 24.17.3.3 ?
A.B.C.D End IP address
Router(config)#ip nat pool a 24.17.3.3 24.17.3.9 ?
netmask Specify the network mask
Router(config)#ip nat pool a 24.17.3.3 24.17.3.9 netmask ?
A.B.C.D Network mask
Router(config)#ip nat pool a 24.17.3.3 24.17.3.9 netmask 255.255.255.0 ?
<cr>
Router(config)#ip nat pool a 24.17.3.3 24.17.3.9 netmask 255.255.255.0
》》定义访问控制列表
Router(config)#access-list ?
<1-99> IP standard access list
<100-199> IP extended access list
Router(config)#access-list 30 ?
deny Specify packets to reject
permit Specify packets to forward
remark Access list entry comment
Router(config)#access-list 30 permit ?
A.B.C.D Address to match
any Any source host
host A single host address
Router(config)#access-list 30 permit 10.8.10.0 ?
A.B.C.D Wildcard bits
<cr>
Router(config)#access-list 30 permit 10.8.10.0 0.0.0.255 ?
<cr>
Router(config)#access-list 30 permit 10.8.10.0 0.0.0.255
》》应用
Router(config)#ip ?
access-list Named access-list
default-network Flags networks as candidates for default routes
dhcp Configure DHCP server and relay parameters
domain IP DNS Resolver
domain-lookup Enable IP Domain Name System hostname translation
domain-name Define the default domain name
forward-protocol Controls forwarding of physical and directed IP broadcasts
host Add an entry to the ip hostname table
name-server Specify address of name server to use
nat NAT configuration commands
route Establish static routes
Router(config)#ip nat ?
inside Inside address translation
pool Define pool of addresses
Router(config)#ip nat inside ?
source Source address translation
Router(config)#ip nat inside source ?
list Specify access list describing local addresses
static Specify static local->global mapping
Router(config)#ip nat inside source list ?
<1-199> Access list number for local addresses
WORD Access list name for local addresses
Router(config)#ip nat inside source list 30 ?
interface Specify interface for global address
pool Name pool of global addresses
Router(config)#ip nat inside source list 30 pool ?
WORD Name pool of global addresses
Router(config)#ip nat inside source list 30 pool a ?
overload Overload an address translation
<cr>
Router(config)#ip nat inside source list 30 pool a overload ?
<cr>
Router(config)#ip nat inside source list 30 pool a overload
Router#configure terminal
Enter configuration commands, one per line. End with CNTL/Z.
》》进入接口定义出/入口
Router(config)#interface fastEthernet 0/0
Router(config-if)#ip nat inside
Router(config-if)#exit
Router(config)#interface fastEthernet 0/1
Router(config-if)#ip nat outside
Router(config-if)#exit
》》定义地址池
Router(config)#ip ?
access-list Named access-list
default-network Flags networks as candidates for default routes
dhcp Configure DHCP server and relay parameters
domain IP DNS Resolver
domain-lookup Enable IP Domain Name System hostname translation
domain-name Define the default domain name
forward-protocol Controls forwarding of physical and directed IP broadcasts
host Add an entry to the ip hostname table
name-server Specify address of name server to use
nat NAT configuration commands
route Establish static routes
Router(config)#ip nat ?
inside Inside address translation
pool Define pool of addresses
Router(config)#ip nat pool ?
WORD Pool name
Router(config)#ip nat pool a ?
A.B.C.D Start IP address
Router(config)#ip nat pool a 24.17.3.3 ?
A.B.C.D End IP address
Router(config)#ip nat pool a 24.17.3.3 24.17.3.9 ?
netmask Specify the network mask
Router(config)#ip nat pool a 24.17.3.3 24.17.3.9 netmask ?
A.B.C.D Network mask
Router(config)#ip nat pool a 24.17.3.3 24.17.3.9 netmask 255.255.255.0 ?
<cr>
Router(config)#ip nat pool a 24.17.3.3 24.17.3.9 netmask 255.255.255.0
》》定义访问控制列表
Router(config)#access-list ?
<1-99> IP standard access list
<100-199> IP extended access list
Router(config)#access-list 30 ?
deny Specify packets to reject
permit Specify packets to forward
remark Access list entry comment
Router(config)#access-list 30 permit ?
A.B.C.D Address to match
any Any source host
host A single host address
Router(config)#access-list 30 permit 10.8.10.0 ?
A.B.C.D Wildcard bits
<cr>
Router(config)#access-list 30 permit 10.8.10.0 0.0.0.255 ?
<cr>
Router(config)#access-list 30 permit 10.8.10.0 0.0.0.255
》》应用
Router(config)#ip ?
access-list Named access-list
default-network Flags networks as candidates for default routes
dhcp Configure DHCP server and relay parameters
domain IP DNS Resolver
domain-lookup Enable IP Domain Name System hostname translation
domain-name Define the default domain name
forward-protocol Controls forwarding of physical and directed IP broadcasts
host Add an entry to the ip hostname table
name-server Specify address of name server to use
nat NAT configuration commands
route Establish static routes
Router(config)#ip nat ?
inside Inside address translation
pool Define pool of addresses
Router(config)#ip nat inside ?
source Source address translation
Router(config)#ip nat inside source ?
list Specify access list describing local addresses
static Specify static local->global mapping
Router(config)#ip nat inside source list ?
<1-199> Access list number for local addresses
WORD Access list name for local addresses
Router(config)#ip nat inside source list 30 ?
interface Specify interface for global address
pool Name pool of global addresses
Router(config)#ip nat inside source list 30 pool ?
WORD Name pool of global addresses
Router(config)#ip nat inside source list 30 pool a ?
overload Overload an address translation
<cr>
Router(config)#ip nat inside source list 30 pool a overload ?
<cr>
Router(config)#ip nat inside source list 30 pool a overload
转载于:https://blog.51cto.com/xuefan/152011
1万+
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
