networking:cisco:dynamic-nat

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision		 Previous revision
networking:cisco:dynamic-nat [2026/02/04 23:59] – [Topologi] ilyasanetworking:cisco:dynamic-nat [2026/02/05 00:06] (current) – [Testing] ilyasa
Line 37: Line 37:
 ===== Topologi ===== ===== Topologi =====
 {{ :networking:cisco:cisco_nat.png?nolink |}} {{ :networking:cisco:cisco_nat.png?nolink |}}
-Tujuan: Kita mempunyai pool ip public 100.0.0.0/24 Gunakan pool tersebut untuk menkonfigurasi NAT static dengan Mapping IP addresses dari IP LAN 192.168.1.X, PC1, PC2, dan PC3 ke 100.0.0.x/24+Tujuan: Kita mempunyai pool ip public 100.0.0.0/24 Gunakan pool tersebut untuk menkonfigurasi NAT dynamic dengan Mapping IP addresses dari IP LAN 192.168.1.X, PC1, PC2, dan PC3 ke 100.0.0.x/24
  
 <hidden Preconfig> <hidden Preconfig>
Line 89: Line 89:
  
 ===== Konfigurasi ===== ===== Konfigurasi =====
-  * **Step 1 : Pembuatan VLANs**+ 
 +  * **R1: Tentukan Interface inside dan outsite** 
 +<code js> 
 +R1(config)#interface fastEthernet 0/0 
 +R1(config-if)#ip nat outside 
 +R1(config)#interface fastEthernet 0/1 
 +R1(config-if)#ip nat inside 
 +</code> 
 + 
 +  * **R1 : Membuat Pool Untuk IP Public** 
 + 
 +<code js> 
 +R1(config)#ip nat pool POOL1 100.0.0.1 100.0.0.3 netmask 255.255.255.01 
 +</code> 
 + 
 +  * **R1 : Membuat ACL untuk range ip internal** 
 + 
 +<code js> 
 +R1(config)#access-list 1 permit 192.168.1.0 0.0.0.255 
 +</code> 
 + 
 +  * **R1 : Mempetakan ip pool yang telah dibuat ke ip private dgn dynamic nat** 
 + 
 +<code js> 
 +R1(config)#ip nat inside source list 1 pool POOL1 
 +</code> 
 + 
 +===== Testing ===== 
 +* **PC1 Test ping dan hasil capture**
 <code> <code>
-Switch(config)#vlan 10 +PC1> ip dhcp 
-Switch(config-vlan)#name BIRU +DORA IP 192.168.1.1/24 GW 192.168.1.254
-Switch(config-vlan)#exit+
  
-Switch(config)#vlan 20 +PC1> ping 8.8.8.8 -c 1 
-Switch(config-vlan)#name MAGENTA + 
-Switch(config-vlan)#exit+84 bytes from 8.8.8.8 icmp_seq=1 ttl=62 time=48.818 ms 
 + 
 +PC1> ping google.com 
 +google.com resolved to 142.251.175.113 
 + 
 +84 bytes from 142.251.175.113 icmp_seq=1 ttl=254 time=19.530 ms 
 +84 bytes from 142.251.175.113 icmp_seq=2 ttl=254 time=26.425 ms 
 +84 bytes from 142.251.175.113 icmp_seq=3 ttl=254 time=14.858 ms 
 +84 bytes from 142.251.175.113 icmp_seq=4 ttl=254 time=15.780 ms 
 +84 bytes from 142.251.175.113 icmp_seq=5 ttl=254 time=11.737 ms
 </code> </code>
-  * **Step 2 Assign VLANs ke Ports**+{{ :networking:cisco:cisco_natdynamic-1.png?nolink |}} 
 + 
 +* **PC2 Test ping dan hasil capture** 
 <code> <code>
-Switch(config)#interface f0/1 +PC2> ip dhcp 
-Switch(config-if)#switchport mode access  +DORA IP 192.168.1.2/24 GW 192.168.1.254
-Switch(config-if)#switchport access vlan 10 +
-Switch(config-if)#exit+
  
-Switch(config)#interface f0/2 +PC2> ping 8.8.8.8 -c 1 
-Switch(config-if)#switchport mode access  + 
-Switch(config-if)#switchport access vlan 10 +84 bytes from 8.8.8.8 icmp_seq=1 ttl=62 time=29.733 ms 
-Switch(config-if)#exit+ 
 +PC2> ping google.com -c 1 
 +google.com resolved to 142.251.175.113 
 + 
 +84 bytes from 142.251.175.113 icmp_seq=1 ttl=254 time=20.108 ms
 </code> </code>
  
-===== Testing =====+{{ :networking:cisco:cisco_natdynamic-3.png?nolink |}} 
 + 
 +* **PC3 : Test ping dan hasil capture** 
 + 
 +<code> 
 +PC3> ip dhcp 
 +DORA IP 192.168.1.3/24 GW 192.168.1.254 
 + 
 +PC3> ping 8.8.8.8 -c 1 
 + 
 +84 bytes from 8.8.8.8 icmp_seq=1 ttl=62 time=26.725 ms 
 + 
 +PC3> ping google.com -c 1 
 +google.com resolved to 142.251.175.113 
 + 
 +84 bytes from 142.251.175.113 icmp_seq=1 ttl=254 time=19.783 ms 
 +</code> 
 +{{ :networking:cisco:cisco_natdynamic-2.png?nolink |}} 
 + 
 +* **R1 : logs nat translations** 
 +<code js> 
 +R1#show ip nat translations 
 +Pro Inside global      Inside local       Outside local      Outside global 
 +udp 100.0.0.1:9033     192.168.1.1:9033   8.8.8.8:53         8.8.8.8:53 
 +icmp 100.0.0.1:32494   192.168.1.1:32494  142.251.175.113:32494 142.251.175.113:32494 
 +icmp 100.0.0.1:32750   192.168.1.1:32750  142.251.175.113:32750 142.251.175.113:32750 
 +icmp 100.0.0.1:33006   192.168.1.1:33006  142.251.175.113:33006 142.251.175.113:33006 
 +icmp 100.0.0.1:33262   192.168.1.1:33262  142.251.175.113:33262 142.251.175.113:33262 
 +icmp 100.0.0.1:33518   192.168.1.1:33518  142.251.175.113:33518 142.251.175.113:33518 
 +--- 100.0.0.1          192.168.1.1        ---                --- 
 +--- 100.0.0.3          192.168.1.2        ---                --- 
 +udp 100.0.0.2:36935    192.168.1.3:36935  8.8.8.8:53         8.8.8.8:53 
 +icmp 100.0.0.2:46574   192.168.1.3:46574  142.251.175.113:46574 142.251.175.113:46574 
 +--- 100.0.0.2          192.168.1.3        ---                --- 
 +</code>
  • networking/cisco/dynamic-nat.1770224363.txt.gz
  • Last modified: 2026/02/04 23:59
  • by ilyasa