1 / 13

Network Design & Configuration Exercises for Transparent NAT Implementation

Learn through exercises how to setup and troubleshoot network design with transparent NAT. Understand ARP, gateways, and load balancing. Text in English.

renee
Télécharger la présentation

Network Design & Configuration Exercises for Transparent NAT Implementation

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Exercises Network design and configuration (c) A. Mariën - Ubizen

  2. Transparent NAT (c) A. Mariën - Ubizen

  3. internet Before NAT WebServer 188.54.20.2 router firewall LAN HUB LAN HUB 10.20.0.0/16 188.54.20.0/24 (c) A. Mariën - Ubizen

  4. internet After NAT: OK? “188.54.20.2” WebServer 10.20.0.2 router firewall LAN HUB LAN HUB 188.54.20.0/24 10.20.0.0/16 “188.54.20.2” 10.20.0.2 (c) A. Mariën - Ubizen

  5. internet After NAT: Need ARP fix! “188.54.20.2” WebServer MACIF2 10.20.0.2 MACIF1 router firewall LAN HUB LAN HUB 188.54.20.0/24 10.20.0.0/16 MACIF1 = ARP(188.54.20.2) “188.54.20.2” 10.20.0.2 (c) A. Mariën - Ubizen

  6. RFC 1027 • Using ARP to implement transparent subnet gateways • Describes transparent subnet division using ARP (c) A. Mariën - Ubizen

  7. Before Machine C 10.4.5.2 MACC Machine A 10.4.5.1 MACA HUB Machine B 10.4.5.3 MACB Machine D 10.4.5.4 MACD (c) A. Mariën - Ubizen

  8. After Machine C 10.4.5.2 MACC Machine A 10.4.5.1 MACA HUB MACgwright 10.4.5.254 gateway HUB Machine B 10.4.5.3 MACB Machine D 10.4.5.4 MACD MACgwleft 10.4.5.253 (c) A. Mariën - Ubizen

  9. Gateway ARP • Left • Macgwleft = ARP(10.4.5.2) • Macgwleft = ARP(10.4.5.4) • Macgwleft = ARP(10.4.5.253) • Right • Macgwright = ARP(10.4.5.1) • Macgwright = ARP(10.4.5.3) • Macgwright = ARP(10.4.5.254) (c) A. Mariën - Ubizen

  10. Gateway routes • Route to host 10.4.5.1 via 10.5.4.253 • Route to host 10.4.5.3 via 10.5.4.253 • Route to host 10.4.5.2 via 10.5.4.254 • Route to host 10.4.5.4 via 10.5.4.254 (c) A. Mariën - Ubizen

  11. ARP for loadbalancing • N systems can handle same request • Use ARP proxy to provide loadbalancing (c) A. Mariën - Ubizen

  12. Network card in promiscuous mode • What does it mean? • What does it imply? (c) A. Mariën - Ubizen

  13. (c) A. Mariën - Ubizen

More Related