• Shuffle
    Toggle On
    Toggle Off
  • Alphabetize
    Toggle On
    Toggle Off
  • Front First
    Toggle On
    Toggle Off
  • Both Sides
    Toggle On
    Toggle Off
  • Read
    Toggle On
    Toggle Off
Reading...
Front

How to study your flashcards.

Right/Left arrow keys: Navigate between flashcards.right arrow keyleft arrow key

Up/Down arrow keys: Flip the card between the front and back.down keyup key

H key: Show hint (3rd side).h key

A key: Read text to speech.a key

image

Play button

image

Play button

image

Progress

1/24

Click to flip

24 Cards in this Set

  • Front
  • Back
Interface based NAT is by default when what takes place?
Packet travels from trusted zone to untrusted zone
In route mode how can NAT take place?
By creating a policy
What are the three Unidirectional NATs?
1) NAT-src
2) NAT-dst
3)VIP address
What is the Bidirectional NAT?
MIP address
What is Source NAT (NAT-src)?
Translates a private IP address to a public IP address. Only works from Private to Public.
What is Destination NAT (NAT-dst)?
Translates a public destination address to a internal private address. Must be accessed from a public IP to a Private IP
What is Virtual IP (VIP)
A one to many mapping that staticlly associates a public address with many internal addresses.
When should you use NAT-src?
When sessions will only be initiated from the private side connecting to the public side.
When would you want to use NAT-dst?
When specific devices or services need to be accessed from the internet and these devices do not need to access the internet and the public facing zone is untrusted.
When should a VIP Address be used?
When mapping one public IP to many internal IP addresses. Public zone must be untrusted.
When should a MIP address be used?
When a one to one address mapping along with bi-direction translation is needed to be used.
What is a DIP address set and what does it allow to be done?
Dynamic IP addres
it allows you to configure a pool of IP addresses that can be used for NAT
What are the four different configurations for NAT-src?
1) NAT-src
2)DIP address pool with port translation
3)DIP address pool with no port translation
4)IP Address Shifting
In NAT-src what does Port Translation ensure?
That each session is uniquely Identified with a randomly assigned port number.
In DIP addressing Port Translation allows for what?
A larger number of private IP addresses to use a smaller number of Public IP Addresses by ensuring each session is uniquely Identified by a port number.
When doing DIP address pool with out port translation you need to ensure what?
There are equal number of private and public IP addresses, Needs to be a one to one ratio.
What is IP Shifting?
A one to one mapping of a range of private address to a range of public addresses with out port translation. This means you need to have the same number of public and private IP Addresses.
What are the four variations of NAT-dst?
1) one to one mapping
2) many to one mapping
3) many to many mapping
4 Port Mapping
how does NAT-dst using one to one configuring work?
One public IP Address is mapped to one private IP address.
When using NAT-dst configured with Many to one how does it work?
Many public addresses are configured to one private address.
When NAT-dst is configured for Many to Many how does it work?
Many public addresses are mapped to many Private addresses. This is done by using the DIP shifting addresses. Must have equal number public and private IP addresses
What does port mapping allow you to do with NAT-dst?
Allows you to add port translation.
What is VIP addressing and what does it allow?
VIP addressing in a one to many translation. Maps individual ports to diffrent internal IP addresses. VIP addressing must be done on the same subnet as the interface address.
What is MIP addressing?
One to one static mapping for bidirectional communitcation no port translation is done. MIP addresses are defined on the outward facing interface. MIP addresses can be defined in any subject.