<td id="954ce"></td>

溫馨提示×

溫馨提示×

您好，登錄后才能下訂單哦！

密碼登錄×

忘記密碼？

登錄注冊×

獲取短信驗證碼

其他方式登錄

點擊登錄注冊即表示同意《億速云用戶服務(wù)條款》

用戶登錄×

賬戶密碼登錄

請使用微信掃描上方二維碼

使用幫助

請求超時！

請點擊重新獲取二維碼

NAT實驗組合實戰(zhàn)-靜態(tài)+端口映射

發(fā)布時間：2020-05-12 10:29:22 來源：網(wǎng)絡(luò) 閱讀：341 作者：qq5d47f509174fe 欄目：系統(tǒng)運維

NAT實驗組-靜態(tài)+端口映射

靜態(tài)NAT

拓?fù)鋱D如下：

NAT實驗組合實戰(zhàn)-靜態(tài)+端口映射

實驗步驟

1、設(shè)置sw三層交換機

sw#conf t 
Enter configuration commands, one per line.  End with CNTL/Z.
sw(config)#no ip routing                    //關(guān)閉路由功能
sw(config)#

2、設(shè)置路由R1

R1#conf t 
Enter configuration commands, one per line.  End with CNTL/Z.
R1(config)#int f0/0
R1(config-if)#ip add 192.168.10.1 255.255.255.0          //僅設(shè)定IP地址與子網(wǎng)掩碼
R1(config-if)#no shut 
*Mar  1 00:03:21.575: %LINK-3-UPDOWN: Interface FastEthernet0/0, changed state to up
*Mar  1 00:03:22.575: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0, changed state to up
R1(config-if)#int f 0/1 
R1(config-if)#ip add 8.0.0.1 255.0.0.0                   //僅設(shè)定IP地址與字網(wǎng)掩碼
R1(config-if)#no shut 
*Mar  1 00:03:42.443: %LINK-3-UPDOWN: Interface FastEthernet0/1, changed state to up
*Mar  1 00:03:43.443: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/1, changed state to up
R1(config-if)#ex
R1(config)#ip route 0.0.0.0 0.0.0.0 8.0.0.2             //設(shè)置默認(rèn)路由
R1(config)#do show ip route                             //查看路由表
Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP
       D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area 
       N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
       E1 - OSPF external type 1, E2 - OSPF external type 2
       i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
       ia - IS-IS inter area, * - candidate default, U - per-user static route
       o - ODR, P - periodic downloaded static route

Gateway of last resort is 8.0.0.2 to network 0.0.0.0

C    192.168.10.0/24 is directly connected, FastEthernet0/0
C    8.0.0.0/8 is directly connected, FastEthernet0/1
S*   0.0.0.0/0 [1/0] via 8.0.0.2
R1(config)#

3、設(shè)置路由R2

R2#conf t 
Enter configuration commands, one per line.  End with CNTL/Z.
R2(config)#int f 0/1
R2(config-if)#ip add 8.0.0.2 255.0.0.0                //僅設(shè)定IP地址與子網(wǎng)掩碼
R2(config-if)#no shut 
R2(config-if)#int f 0/0
R2(config-if)#
*Mar  1 00:05:13.815: %LINK-3-UPDOWN: Interface FastEthernet0/1, changed state to up
*Mar  1 00:05:14.815: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/1, changed state to up
R2(config-if)#ip add 192.168.200.1 255.255.255.0          //僅設(shè)定IP地址與字網(wǎng)掩碼
R2(config-if)#no shut 
R2(config-if)#
*Mar  1 00:05:40.643: %LINK-3-UPDOWN: Interface FastEthernet0/0, changed state to up
*Mar  1 00:05:41.643: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0, changed state to up
R2(config-if)#ex
R2(config)#ip route 192.168.10.0 255.255.255.0 8.0.0.1       //設(shè)置靜態(tài)路由
R2(config)#do show ip route                                  //查看路由表
Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP 
       D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area 
       N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
       E1 - OSPF external type 1, E2 - OSPF external type 2
       i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
       ia - IS-IS inter area, * - candidate default, U - per-user static route
       o - ODR, P - periodic downloaded static route

Gateway of last resort is not set

S    192.168.10.0/24 [1/0] via 8.0.0.1
C    192.168.200.0/24 is directly connected, FastEthernet0/0
C    8.0.0.0/8 is directly connected, FastEthernet0/1
R2(config)#

4、設(shè)定三臺PC機

PC1

PC1> 
PC1> ip 192.168.10.10 192.168.10.1
Checking for duplicate address...
PC1 : 192.168.10.10 255.255.255.0 gateway 192.168.10.1

PC1>

PC2

PC2> 
PC2> ip 192.168.10.20 192.168.10.1
Checking for duplicate address...
PC1 : 192.168.10.20 255.255.255.0 gateway 192.168.10.1

PC2>

PC3

PC3> 
PC3> ip 192.168.200.20 192.168.200.1
Checking for duplicate address...
PC1 : 192.168.200.20 255.255.255.0 gateway 192.168.200.1

PC3>

此時，整個實驗結(jié)構(gòu)已完成，已經(jīng)可以做到全網(wǎng)互通，參考如下：（如不能聯(lián)通，請自行檢查）

NAT實驗組合實戰(zhàn)-靜態(tài)+端口映射

為滿足實驗?zāi)康?，接下來將進(jìn)行靜態(tài)NAT的設(shè)置

在R1上設(shè)置靜態(tài)NAT


R1(config)#ip nat source static 192.168.10.10 8.8.8.8            //靜態(tài)NAT1

*Mar  1 00:13:12.995: %LINEPROTO-5-UPDOWN: Line protocol on Interface NVI0, changed state to up
R1(config)#ip nat source static 192.168.10.20 8.8.8.10           //靜態(tài)NAT2

R1(config)#int f 0/0
R1(config-if)#ip nat inside                                      //啟用外部NAT
R1(config-if)#int f 0/1     
R1(config-if)#ip nat outside                                     //啟用內(nèi)部NAT
R1(config-if)#

實驗完成\~\~\~\~\~

靜態(tài)NAT-端口映射

拓?fù)鋱D如下：

NAT實驗組合實戰(zhàn)-靜態(tài)+端口映射

實驗步驟

1、設(shè)置Linux服務(wù)器

將端口進(jìn)行綁定，綁定在VMnet1上，并設(shè)置靜態(tài)IP

[root@localhost ~]# vim /etc/sysconfig/network-scripts/ifcfg-ens33 
改dhcp為static
在末行按o在下行插入
IPADDR=192.168.100.100
NETMASK=255.255.255.0
GATEWAY=192.168.100.1
[root@localhost ~]# service network restart
Restarting network (via systemctl):                        [  確定  ]
[root@localhost ~]# ifconfig
ens33: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
        inet 192.168.100.100  netmask 255.255.255.0  broadcast 192.168.100.255

安裝http服務(wù)并自定義首頁

[root@localhost ~]# yum install httpd -y
[root@localhost ~]# vim /var/www/html/index.html        //寫測試網(wǎng)頁
<h2>this is inside web</h2>
[root@localhost ~]# systemctl start httpd
[root@localhost ~]# systemctl stop firewalld.service 
[root@localhost ~]# setenforce 0

2、設(shè)置路由R1

R1#conf t 
Enter configuration commands, one per line.  End with CNTL/Z.
R1(config)#int f 0/0
R1(config-if)#ip add 192.168.10.1 255.255.255.0              //僅設(shè)置IP地址和子網(wǎng)掩碼
R1(config-if)#no shut 
*Mar  1 00:00:44.895: %LINK-3-UPDOWN: Interface FastEthernet0/0, changed state to up
*Mar  1 00:00:45.895: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0, changed state to up
R1(config-if)#int f 0/1
R1(config-if)#ip add 8.0.0.1 255.0.0.0                       //僅設(shè)置IP地址和子網(wǎng)掩碼
R1(config-if)#no shut 
R1(config-if)#ex
*Mar  1 00:01:03.159: %LINK-3-UPDOWN: Interface FastEthernet0/1, changed state to up
*Mar  1 00:01:04.159: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/1, changed state to up
R1(config-if)#ex
R1(config)#

3、設(shè)置Host2主機

綁定VMnet2，并設(shè)置靜態(tài)IP

NAT實驗組合實戰(zhàn)-靜態(tài)+端口映射

此時，通過在瀏覽器在輸入192.168.100.100，即可訪問對方網(wǎng)頁

NAT實驗組合實戰(zhàn)-靜態(tài)+端口映射

為了滿足實驗要求，下面將進(jìn)行端口映射

R1

R1(config)#ip nat inside source static tcp 192.168.100.100 80 12.0.0.100 8080 extendable R1(config)#int f0/0
R1(config-if)#ip nat inside
R1(config-if)#int f0/1
R1(config-if)#ip nat outsid
R1(config-if)#end
R1#debug ip nat
IP NAT debugging is on

*Mar  1 00:36:59.327: NAT*: TCP s=49160, d=8080->80
*Mar  1 00:36:59.327: NAT*: s=12.0.0.12, d=12.0.0.100->192.168.100.100 [364]
//端口和地址都進(jìn)行了轉(zhuǎn)換

驗證結(jié)果

使用Host2主機再次進(jìn)行訪問，輸入http://12.0.0.100:8080同樣可以訪問。

NAT實驗組合實戰(zhàn)-靜態(tài)+端口映射

向AI問一下細(xì)節(jié)

推薦閱讀：

免責(zé)聲明：本站發(fā)布的內(nèi)容（圖片、視頻和文字）以原創(chuàng)、轉(zhuǎn)載和分享為主，文章觀點不代表本網(wǎng)站立場，如果涉及侵權(quán)請聯(lián)系站長郵箱：is@yisu.com進(jìn)行舉報，并提供相關(guān)證據(jù)，一經(jīng)查實，將立刻刪除涉嫌侵權(quán)內(nèi)容。

上一篇新聞：
列表按索引賦值和按切片賦值的區(qū)別
下一篇新聞：
HTML5互聯(lián)網(wǎng)：交通信息化

猜你喜歡

AI
助
手

產(chǎn)品服務(wù)

地區(qū)劃分

專題活動

幫助支持

關(guān)于我們

售后咨詢

7*24小時在線電話：400-100-2938

7*24小時在線 QQ：800811969

關(guān)注億速云

億速云公眾號

手機網(wǎng)站二維碼

<ol id="6gntt"><ul id="6gntt"><strike id="6gntt"></strike></ul></ol>