- Shuffle
Toggle OnToggle Off
- Alphabetize
Toggle OnToggle Off
- Front First
Toggle OnToggle Off
- Both Sides
Toggle OnToggle Off
Front
How to study your flashcards.
Right/Left arrow keys: Navigate between flashcards.right arrow keyleft arrow key
Up/Down arrow keys: Flip the card between the front and back.down keyup key
H key: Show hint (3rd side).h key
PLAY BUTTON
PLAY BUTTON
24 Cards in this Set
- Front
- Back
|
Interface based NAT is by default when what takes place?
|
Packet travels from trusted zone to untrusted zone
|
|
In route mode how can NAT take place?
|
By creating a policy
|
|
What are the three Unidirectional NATs?
|
1) NAT-src
2) NAT-dst 3)VIP address |
|
What is the Bidirectional NAT?
|
MIP address
|
|
What is Source NAT (NAT-src)?
|
Translates a private IP address to a public IP address. Only works from Private to Public.
|
|
What is Destination NAT (NAT-dst)?
|
Translates a public destination address to a internal private address. Must be accessed from a public IP to a Private IP
|
|
What is Virtual IP (VIP)
|
A one to many mapping that staticlly associates a public address with many internal addresses.
|
|
When should you use NAT-src?
|
When sessions will only be initiated from the private side connecting to the public side.
|
|
When would you want to use NAT-dst?
|
When specific devices or services need to be accessed from the internet and these devices do not need to access the internet and the public facing zone is untrusted.
|
|
When should a VIP Address be used?
|
When mapping one public IP to many internal IP addresses. Public zone must be untrusted.
|
|
When should a MIP address be used?
|
When a one to one address mapping along with bi-direction translation is needed to be used.
|
|
What is a DIP address set and what does it allow to be done?
|
Dynamic IP addres
it allows you to configure a pool of IP addresses that can be used for NAT |
|
What are the four different configurations for NAT-src?
|
1) NAT-src
2)DIP address pool with port translation 3)DIP address pool with no port translation 4)IP Address Shifting |
|
In NAT-src what does Port Translation ensure?
|
That each session is uniquely Identified with a randomly assigned port number.
|
|
In DIP addressing Port Translation allows for what?
|
A larger number of private IP addresses to use a smaller number of Public IP Addresses by ensuring each session is uniquely Identified by a port number.
|
|
When doing DIP address pool with out port translation you need to ensure what?
|
There are equal number of private and public IP addresses, Needs to be a one to one ratio.
|
|
What is IP Shifting?
|
A one to one mapping of a range of private address to a range of public addresses with out port translation. This means you need to have the same number of public and private IP Addresses.
|
|
What are the four variations of NAT-dst?
|
1) one to one mapping
2) many to one mapping 3) many to many mapping 4 Port Mapping |
|
how does NAT-dst using one to one configuring work?
|
One public IP Address is mapped to one private IP address.
|
|
When using NAT-dst configured with Many to one how does it work?
|
Many public addresses are configured to one private address.
|
|
When NAT-dst is configured for Many to Many how does it work?
|
Many public addresses are mapped to many Private addresses. This is done by using the DIP shifting addresses. Must have equal number public and private IP addresses
|
|
What does port mapping allow you to do with NAT-dst?
|
Allows you to add port translation.
|
|
What is VIP addressing and what does it allow?
|
VIP addressing in a one to many translation. Maps individual ports to diffrent internal IP addresses. VIP addressing must be done on the same subnet as the interface address.
|
|
What is MIP addressing?
|
One to one static mapping for bidirectional communitcation no port translation is done. MIP addresses are defined on the outward facing interface. MIP addresses can be defined in any subject.
|
