Introduction
To Network Address Translation (NAT)
Introduction
Network Address Translation,
defined by RFC 1631, is becoming very popular in today's networks as
it's supported by almost every operating system, firewall appliance
and application. NAT was born thanks to
the fast depletion of public IP Addresses, in other words real IP Addresses
that can only exist on the Internet.
As IP Addresses are 32 Bit, in theory we could have upto
4,294,967,296 IP Addresses (that's 2^32) ! In practice though the number
is a lot smaller, somewhere around 3.2 billion, because of the way the
IP Addresses are separated into Classes (Class A, B , C e.t.c) and the
need to set aside special addresses for multicasting (also known as
Class D), broadcasting and other functions.
You might have heard or read about IPv6. This new addressing
scheme has been designed to make sure we don't face the same problem
as IPv4, but its implementation requires the modification of the entire
Internet infustructure, so don't expect anytime soon to deal with IPv6.
Chances are it's going to co-exist with IPv4, since IPv6 isn't the best
solution for small to medium sized companies or small private networks.
This exciting section will show, and explain in detail,
what NAT is, its different modes and how they work. We will also see
how NAT helps protect your network and minimise network security threats.
Oh, and keep in mind...
You should also be up to scratch in your IP Addressing
and Subnetting topics. In the following sections, there are new concepts
introduced which will require you to a have basic understanding on IP
Addressing and Subnetting. Please check the relevant sections if you
think you need to brush up on these before proceeding!
There's more to NAT than
meets the eye !
When NAT was released, it was created to provide solutions
to almost every type of network configuration. This is achieved by the
various modes in which NAT can function. Depending on your network structure,
your available real (public) IP Addresses and the results you need,
you can enable NAT in 3
different modes! Now don't assume it's hard to understand this
cool stuff, cause I'm telling you it's definitely not! Once you get
the hang of the NAT Concept, the rest is easy to digest, even late at
night :)
So What's Covered ?
As with most cool networking topics, it's impossible to
cover NAT on one page and if you happen
to find another site that covers NAT in
one page, I assure you you're missing out on a lot of important information,
so stick to Firewall.cx
:)
With all this in mind, I've split NAT into 6 sections.
Each section deals with a particular NAT mode or NAT topic, giving you
an in-depth look on how each NAT mode works
using a few examples, and its advantages over the rest available NAT
modes. The information provided has been carefully selected and written
to make sure it covers all ranges of user levels, meaning from intermediate
to advanced.
Section 1: NAT
Concepts. A good introduction to NAT
followed by its basic functions, how it works and which devices in a
network usually implement NAT. Simple,
clear and colourful diagrams will ensure you grasp this concept without
any trouble.
Section 2: NAT
Table. This section will introduce the NAT
Table, which is the heart of NAT. Here
you will learn the purpose of the NAT table, where it's stored along
with a lot of other interesting information.
Section 3: Static
NAT Mode. Learn what Static
NAT is and how it functions. Two pages of detailed diagrams,
well thought examples and their analysis along with other rich information
ensures you will learn everything there is about Static
NAT.
Section 4: Dynamic
NAT Mode. Learn what Dynamic
NAT is and how it functions. Simple diagrams are available to
help you understand how Dynamic NAT works
and what its advantages are over Static NAT.
Dynamic NAT is analysed over two pages
using examples and step by step analysis, ensuring to capture all the
required information and answer every question you might have.
Section 5: NAT
Overload Mode. Also known as IP Masquerading
(in the Linux world), Port
Address Translation (PAT) or Dynamic
NAT with PAT. Discover the most
common NAT mode for small networks. This
NAT mode is used by most Internet sharing software. This section will
help you understand how NAT Overload works and what its benefits are
over the rest. Again, simple diagrams have been designed to make sure
you grasp all this cool stuff :)
Section 6: Advanced
NAT (Coming Soon). This pages deals with more advanced
NAT concepts and analysis. It contains more detailed and technical
information about NAT, thus requires a slightly more advanced level
of networking knowledge and TCP/IP. It also outlines security concerns
and using NAT through VPN's and other complex network configurations.
The type of NAT mode you choose to use, depends on your
network resources, capabilities of your NAT-enabled
device and, lastly, your needs. Together we will discover the power
of NAT and understand why its become so popular.
|
NAT is
truly a masterpeice and one of my favourites! I've been
eager to develop this section to show you how cool it is! So grab
a cuppa and maybe something to munch on and get
ready for an awesome ride!
There's nothing better than knowing how your Firewall/router manipulates
all them cool packets so you can 'safely' access the Internet!
|
Next - NAT Concepts
|
