Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 Chapter 7: NAT in Internet and Intranet Designs Designs That Include NAT Essential NAT Design Concepts Data Protection in NAT Designs NAT Design Optimization.

Published byGeraldine Barker Modified over 8 years ago

Similar presentations

Presentation on theme: "1 Chapter 7: NAT in Internet and Intranet Designs Designs That Include NAT Essential NAT Design Concepts Data Protection in NAT Designs NAT Design Optimization."— Presentation transcript:

1 1 Chapter 7: NAT in Internet and Intranet Designs Designs That Include NAT Essential NAT Design Concepts Data Protection in NAT Designs NAT Design Optimization

2 2 NAT and Microsoft Windows 2000 Network Address Translation (NAT) Is included in Routing and Remote Access Provides small office or home office (SOHO) connectivity Supports translated connections only Is not available in Windows 2000 Professional

3 3 NAT Design Review Amount and confidentiality of data Network resources accessed by remote users Future growth plans Existing routers Network uptime

4 4 NAT Characteristics NAT modifies the IP packet. IP header Transmission Control Protocol (TCP) header User Datagram Protocol (UDP) header IP packet data NAT does not work with many protocols.

5 5 NAT Design Decisions Base on organizational requirements. Decide what the design will support. Connection type Client type Connection method Network filters Remote access methods Number of connections

6 6 Stand-Alone SOHO Design

7 7 NAT in SOHO Designs Provides automatic IP configuration to Dynamic Host Configuration Protocol (DHCP) clients Uses IP filters to restrict access Provides automatic network address translation Supports public and private IP addressing Provides shared Internet access Provides Internet connectivity over Windows 2000 network interface

8 8 Branch Office Connectivity Design

9 9 NAT in the Network Design

10 10 NAT Server Interfaces Minimum of two network interfaces Persistent or nonpersistent connections IP address and subnet mask

11 11 IP Address Assignment NAT automatic address assignment Manual configuration Automatic Private IP Assignment (APIPA) DHCP server

12 12 DNS Name Resolution Clients need fully qualified domain name (FQDN)–to–IP resolution. Clients use the DNS server to resolve FQDNs. Manually configure for specific DNS servers Specify automatic use of the DNS server NAT

13 13 Protecting SOHO Network Resources Routing and Remote Access IP packet filters NAT address mapping NAT address pools

14 14 Restricting Internet Access Use Routing and Remote Access IP packet filters. Restrict outbound traffic by specifying IP headers. Allow or disallow users access to Internet resources.

15 15 Protecting Corporate Network Resources

16 16 NAT Optimization Dedicate a computer to running NAT. Choose persistent Internet connection. Consider using Microsoft Proxy Server 2.0 or Routing and Remote Access routing.

17 17 Chapter Summary NAT is cost effective. The NAT server should be placed between the network and the Internet. Resources can be protected by using Routing and Remote Access packet filters NAT address mapping NAT address pools Use virtual private network (VPN) to protect confidential data. NAT can be optimized.

Download ppt "1 Chapter 7: NAT in Internet and Intranet Designs Designs That Include NAT Essential NAT Design Concepts Data Protection in NAT Designs NAT Design Optimization."

Similar presentations

Configuring Internet Access for a Network. Overview Options for Connecting a Network to the Internet Configuring Internet Access by Using a Router Configuring.

Configuring Internet Access for a Network. Overview Options for Connecting a Network to the Internet Configuring Internet Access by Using a Router Configuring.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Implementing IP Addressing Services Accessing the WAN – Chapter 7.

© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Implementing IP Addressing Services Accessing the WAN – Chapter 7.
CMPE 150- Introduction to Computer Networks 1 CMPE 150 Fall 2005 Lecture 25 Introduction to Computer Networks.

CMPE 150- Introduction to Computer Networks 1 CMPE 150 Fall 2005 Lecture 25 Introduction to Computer Networks.
Understanding Internet Protocol

Understanding Internet Protocol
Configuring and Troubleshooting Network Connections

Configuring and Troubleshooting Network Connections
© 2007 Cisco Systems, Inc. All rights reserved.ICND1 v1.0—1-1 Building a Simple Network Understanding the TCP/IP Internet Layer.

© 2007 Cisco Systems, Inc. All rights reserved.ICND1 v1.0—1-1 Building a Simple Network Understanding the TCP/IP Internet Layer.
©2012 ClearOne Communications. Confidential and proprietary. COLLABORATE ® Video Conferencing Networking Basics.

©2012 ClearOne Communications. Confidential and proprietary. COLLABORATE ® Video Conferencing Networking Basics.
CSIT 320 (Blum) 1 DHCP. CSIT 320 (Blum) 2 Dynamic Host Configuration Protocol does not require an administrator to add an entry for a computer into the.

CSIT 320 (Blum) 1 DHCP. CSIT 320 (Blum) 2 Dynamic Host Configuration Protocol does not require an administrator to add an entry for a computer into the.
1 Chapter 2: Networking Protocol Design Designs That Include TCP/IP Essential TCP/IP Design Concepts TCP/IP Data Protection TCP/IP Optimization.

1 Chapter 2: Networking Protocol Design Designs That Include TCP/IP Essential TCP/IP Design Concepts TCP/IP Data Protection TCP/IP Optimization.
Module 5: Configuring Access for Remote Clients and Networks.

Module 5: Configuring Access for Remote Clients and Networks.
Module 1: Microsoft Windows 2000 Networking Services Infrastructure Overview.

Module 1: Microsoft Windows 2000 Networking Services Infrastructure Overview.
Lesson 17 – UNDERSTANDING OTHER NETWARE SERVICES.

Lesson 17 – UNDERSTANDING OTHER NETWARE SERVICES.
Chapter 8 Administering TCP/IP.

Chapter 8 Administering TCP/IP.
Chapter 2 Internet Protocol DoD Model Four layers: – Process/Application layer – Host-to-Host layer – Internet layer – Network Access layer.

Chapter 2 Internet Protocol DoD Model Four layers: – Process/Application layer – Host-to-Host layer – Internet layer – Network Access layer.
Chapter 8: Configuring Network Connectivity. Installing Network Adapters Network adapter cards connect a computer to a network. Installation –Plug and.

Chapter 8: Configuring Network Connectivity. Installing Network Adapters Network adapter cards connect a computer to a network. Installation –Plug and.
Virtual Private Network (VPN) © N. Ganesan, Ph.D..

Virtual Private Network (VPN) © N. Ganesan, Ph.D..
Module 6: NAT As a Solution for Internet Connectivity.

Module 6: NAT As a Solution for Internet Connectivity.
Chapter 11: Dial-Up Connectivity in Remote Access Designs

Chapter 11: Dial-Up Connectivity in Remote Access Designs
Hands-On Microsoft Windows Server 2008 Chapter 8 Managing Windows Server 2008 Network Services.

Hands-On Microsoft Windows Server 2008 Chapter 8 Managing Windows Server 2008 Network Services.
VPN Scenarios © N. Ganesan, Ph.D.. Chapter Objectives.

VPN Scenarios © N. Ganesan, Ph.D.. Chapter Objectives.

Similar presentations

Ads by Google