home news blogs forums events research newsletter whitepapers careers


Network Computing Network Computing Network Computing
HOT PICKS

IMMERSE YOURSELF:

SOA

  |

Data Center

  |

802.11n

  |

Data Privacy

  |		 APO  |

Virtualization

  |

NAC

  |

Security

  |

Network Mgmt

  |

Enterprise Apps

  |

Storage & Servers





Cisco IOS: It's Not Just for Routing Anymore
May 31, 1999
Additional Information
Related Links
Network Computing, Feb. 22, 1999
"The Cost of Security on Cisco Routers"

Network Computing, Feb. 8, 1999
"Cisco 1720 Ensures Secure Links"

Network Computing, April 15, 1998
"Demystifying Cisco Access Control Lists"
Company Directory
Browse our directory to get data, starting with a particular company.
Reader Service
Allows you to request additional product information from our advertisers.
Print The Full Article
ClickHere
E-mail this URL
Clicke-mailHere
Buy the Book
By Greg Shipley  Cisco Systems' Internetwork Operating System (IOS), the software that runs on the vendor's routers, has become the network administrator's Swiss Army knife. We found that IOS version 12, the most recent revision, continues to improve upon fundamental routing principles and is chock-full of new features--NAT (Network Address Translation) support and expanded ACL (access control list) and VPN functionality, for starters--that go beyond basic routing. Knowing how to leverage these features can save an administrator much time and effort.

On the security front, IOS has supported ACLs for IP, SAP, IPX and other protocols. Version 12 adds NAT, which had been available only in traditional firewall products; it lets administrators map internal/hidden IP addresses to external/public ones. This functionality is useful to organizations using RFC1918-based addressing, as well as those needing quick fixes for address-duplication conflicts between remote sites. With NAT, administrators have the choice to hide an entire network behind a single address/interface. Known as IP masquerading--or PAT (Port Address Translation) in Cisco-speak--this technique is helpful to remote offices that use an ISDN connection for inexpensive Internet access.

We configured a Cisco 3640 router running IOS 12 for NAT (also available in some builds of the IOS version 11.x firewall edition) with little difficulty. First, we simply defined our NAT table within the global configuration mode:

ip nat inside source list 1 interface Serial1 overload

!

access-list 1 permit 10.9.100.0 0.0.0.255

We then defined the NAT table within the interfaces of the internal and external networks:

interface Ethernet0/0

ip address 10.9.100.254 255.255.255.0

ip nat inside

interface Serial1/0

ip nat outside

The above configuration lets any host on the Ethernet segment 10.9.100.0/24 masquerade as the serial interface's IP address. In this case, we configured the serial port for dial-on-demand routing, and we were able to "hide" an entire RFC1918-based, Class C address range behind a dynamically assigned PPP address (see "Using NAT," to the right).

Page 1 | 2 | 3 | Next Page





Ready to take that job and shove it?

Function:

Keyword(s):

State:
SPONSOR
RECENT JOB POSTINGS
CAREER NEWS
10 Search Engines You Don't Know About
Go beyond Google and get vertical. These specialized search sites will help you find the business information you need -- fast.

Yahoo Profits Fall 23%, Cuts 1,000 Jobs
Ari Balogh was named to the post of chief technology officer as the companys for a "realignment" of employees.

More articles from our career center










InformationWeek U.S. IT Salary Survey 2008
Salaries for business technology professionals are falling. Here's what you need to know in order to make good hiring decisions and personal career choices. Purchase Today: $299
 
ROLLING RIGHT ALONG
Follow key Network Computing Reviews from conception to completion. This Week: Holistic APM.



Network Computing Reports Emerging Enterprise Podcast Series: Secrets to Success








TechSearch
Microsite of the Week


Powerful Information at Your Fingertips



techweb
Online Communities TechWebInformationWeekLight ReadingIntelligent EnterprisebMightyNetwork ComputingDark ReadingDigital LibraryWall Street & Technology
Byte & SwitchNo JitterInternet EvolutionLight Reading's Cable Digital NewsContentinopleUnStrungBank Systems & TechnologyAdvanced TradingInsurance & Technology
Face-to-Face Events
InteropWeb 2.0 ExpoWeb 2.0 SummitVoiceConBlack HatCSISoftwareEntrprise 2.0 ConferenceGTEC
 Mobile Business Expo
InformationWeek 500 ConferenceBuy Side Trading XchangeBuy Side Trading SummitBank Executive SummitInsurance Executive SummitTelcoTVEthernet ExpoOptical Expo
Magazines  
InformationWeekWall Street & TechnologyInsurance & TechnologyBank Systems & TechnologyAdvanced TradingMSDNTechNetSmart EnterpriseThe Architecture JournalDatabase Magazine
 
Research & Analyst Services  
Heavy ReadingInformationWeek ReportsInformationWeek Analytics
 
   
   
App Infrastructure   |   Messaging & Collaboration   |   Network & Systems Mgmt   |   Network Infrastructure   |   Security  |   Storage & Servers   |   Wireless   |   Enterprise Apps
About Us  |  Contact Us  |  Site Map  |  Technology Marketing Solutions  |   Briefing Centers
Copyright © 2008  United Business Media LLC  |  Privacy Statement  |  Terms of Service  |  Your California Privacy Rights