Breaking

LightBlog

Rabu, 02 September 2020

Home / AIJ Kelas XII / Konfigurasi STATIC dan DYNAMIC NAT

Konfigurasi STATIC dan DYNAMIC NAT

by on in

 

Static and Dynamic NAT

Materi Lab :

Setelah sedikit penjelasan mengenai NAT di part sebelumnya, disini akan kita coba praktikkan konfigurasi Static dan Dynamic NAT. Untuk PAT atau NAT Overload akan kita bahas di part selanjutnya.

Topologi :

Keterangan :

Disini akan kita coba konfigurasi NAT Static untuk Network 192.168.1.0/24 dan Dynamic NAT untuk network 192.168.2.0/24

Konfigurasi :

Pertama, setting IP Address beserta netmask untuk seluruh device yang sesuai topologi.

Sakti­R1(config)#interface fa0/0
Sakti­R1(config­if)#no shutdown 
Sakti­R1(config­if)#ip address 10.10.10.1 255.255.255.0
Sakti­R1(config­if)#exit
Sakti­R1(config)#interface fa0/1
Sakti­R1(config­if)#no shutdown 
Sakti­R1(config­if)#ip address 192.168.1.1 255.255.255.0
Sakti­R1(config­if)#exit
Sakti­R1(config)#
Sakti­R2(config)#interface fa0/0
Sakti­R2(config­if)#no shutdown 
Sakti­R2(config­if)#ip address 11.11.11.1 255.255.255.0
Sakti­R2(config­if)#exit
Sakti­R2(config)#interface fa0/1
Sakti­R2(config­if)#no shutdown 
Sakti­R2(config­if)#ip address 192.168.2.1 255.255.255.0
Sakti­R2(config­if)#exit
Sakti­R2(config)#
INTERNET(config)#interface fa0/0
INTERNET(config­if)#no shutdown 
INTERNET(config­if)#ip address 10.10.10.2 255.255.255.0
INTERNET(config­if)#exit
INTERNET(config)#interface fa0/1
INTERNET(config­if)#no shutdown 
INTERNET(config­if)#ip address 11.11.11.2 255.255.255.0
INTERNET(config­if)#exit
INTERNET(config)#

Selanjutnya, kita set routing dengan tipe EIGRP di ketiga router agar terhubung. Tapi ingat, jangan ikut meng-advertise ke 2 network local karena nantinya, kedua network ini akan kita setting menggunakan NAT.

Sakti­R1(config)#router eigrp 10
Sakti­R1(config­router)#network 10.10.10.0
Sakti­R1(config­router)#no auto­summary 
Sakti­R1(config­router)#exit
Sakti­R1(config)#
Sakti­R2(config)#router eigrp 10
Sakti­R2(config­router)#network 11.11.11.0
Sakti­R2(config­router)#no auto­summary 
Sakti­R2(config­router)#exit
Sakti­R2(config)#
INTERNET(config)#router eigrp 10
INTERNET(config­router)#network 10.10.10.0
INTERNET(config­router)#
%DUAL­5­NBRCHANGE: IP­EIGRP 10: Neighbor 10.10.10.1 
(FastEthernet0/0) is up: new adjacency
INTERNET(config­router)#network 11.11.11.0
INTERNET(config­router)#
%DUAL­5­NBRCHANGE: IP­EIGRP 10: Neighbor 11.11.11.1 
(FastEthernet0/1) is up: new adjacency
INTERNET(config­router)#no auto­summary 
INTERNET(config­router)#
%DUAL­5­NBRCHANGE: IP­EIGRP 10: Neighbor 10.10.10.1 
(FastEthernet0/0) resync: summary configured
%DUAL­5­NBRCHANGE: IP­EIGRP 10: Neighbor 11.11.11.1 
(FastEthernet0/1) resync: summary configured
INTERNET(config­router)#exit
INTERNET(config)#

Cek ping. Pastikan ketiga router sudah terhubung dan bisa ping

Sakti­R1#ping 11.11.11.1
Type escape sequence to abort.
Sending 5, 100­byte ICMP Echos to 11.11.11.1, timeout is 2 
seconds:
!!!!!
Success rate is 100 percent (5/5), round­trip min/avg/max = 
15/31/59 ms
Sakti­R1#
Sakti­R1#ping 10.10.10.1
Type escape sequence to abort.
Sending 5, 100­byte ICMP Echos to 11.11.11.1, timeout is 2 
seconds:
!!!!!
Success rate is 100 percent (5/5), round­trip min/avg/max = 
15/31/59 ms
Sakti­R1#

STATIC NAT

Konfigurasi NAT pertama adalah Static NAT untuk network 192.168.1.0/24. Untuk pengecekan sebelum konfigurasi NAT Static client Sakti-PC1 bisa coba ping ke INTERNET.

Packet Tracer PC Command Line 1.0
C:>ping 10.10.10.2
Pinging 10.10.10.2 with 32 bytes of data:
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Ping statistics for 10.10.10.2:
Packets: Sent = 4, Received = 0, Lost = 4 (100% loss),
C:>ping 11.11.11.2
Pinging 11.11.11.2 with 32 bytes of data:
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Ping statistics for 11.11.11.2:
Packets: Sent = 4, Received = 0, Lost = 4 (100% loss),
C:>

Agar client dapat terhubung. Kita konfigurasi NAT. Misal disini, kita akan mencoba mentranslasikan IP client Sakti-PC1 menjadi 10.10.10.10.

Pertama, tentukan mana interface NAT Inside, dan mana interface NAT Outside.

Sakti­R1(config)#interface fa0/0
Sakti­R1(config­if)#ip nat outside 
Sakti­R1(config­if)#exit
Sakti­R1(config)#interface fa0/1
Sakti­R1(config­if)#ip nat inside 
Sakti­R1(config­if)#

Selanjutnya, konfigurasi translasi NAT dari IP Private menjadi IP Public dengan tipe static NAT.

Sakti­R1(config)#ip nat inside source static 192.168.1.100 10.10.10.10
Sakti­R1(config)#

Selanjutnya bisa dicek ping lagi dari Sakti-PC1 menuju INTERNET.

Pinging 10.10.10.2 with 32 bytes of data:
Request timed out.
Reply from 10.10.10.2: bytes=32 time=29ms TTL=254
Reply from 10.10.10.2: bytes=32 time=28ms TTL=254
Reply from 10.10.10.2: bytes=32 time=28ms TTL=254
Ping statistics for 10.10.10.2:
Packets: Sent = 4, Received = 3, Lost = 1 (25% loss),
Approximate round trip times in milli­seconds:
Minimum = 28ms, Maximum = 29ms, Average = 28ms
C:>ping 11.11.11.2
Pinging 11.11.11.2 with 32 bytes of data:
Reply from 11.11.11.2: bytes=32 time=22ms TTL=254
Reply from 11.11.11.2: bytes=32 time=22ms TTL=254
Reply from 11.11.11.2: bytes=32 time=23ms TTL=254
Reply from 11.11.11.2: bytes=32 time=23ms TTL=254
Ping statistics for 11.11.11.2:
Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli­seconds:
Minimum = 22ms, Maximum = 23ms, Average = 22ms
C:>

Bisa dicek otput hasil translasi NAT :

Sakti­R1#show ip nat translations 
Pro   Inside global   Inside local   Outside local   Outside 
global
icmp  10.10.10.10     192.168.1.100  ­­­              ­­­
Sakti­R1#

DYNAMIC NAT

Pertama, tentukkan interface NAT Inside dan Interface Outside.

Sakti­R2(config)#interface fa0/0
Sakti­R2(config­if)#ip nat outside 
Sakti­R2(config­if)#exit
Sakti­R2(config)#interface fa0/1
Sakti­R2(config­if)#ip nat inside 
Sakti­R2(config­if)#exit
Sakti­R2(config)#

Selanjutnya, buat rule access-list dengan mem-permit network 192.168.2.0/24

Sakti­R2(config)#access­list 1 permit 192.168.2.0 0.0.0.255
Sakti­R2(config)#

Selanjutnya, buat pool untuk Dynamic NAT. Sesuai aturan, kita buat pool yang berisi IP Public dan akan kita gunakan untuk Dynamic NAT jaringan local agar terhubung ke INTERNET. Misal disini kita buat pool dengan range 11.11.11.11-11.11.11.22. Lalu translasikan.

Sakti­R2(config)#ip nat pool SAKTI 11.11.11.11 11.11.11.22 netmask 255.255.255.0
Sakti­R2(config)#
Sakti­R2(config)#ip nat inside source list 1 pool SAKTI

Bisa dicek dengan ping dari Sakti-PC2 ke INTERNET

C:>ping 11.11.11.2 
Pinging 11.11.11.2 with 32 bytes of data:
Reply from 11.11.11.2: bytes=32 time=29ms TTL=254
Reply from 11.11.11.2: bytes=32 time=25ms TTL=254
Reply from 11.11.11.2: bytes=32 time=30ms TTL=254
Reply from 11.11.11.2: bytes=32 time=20ms TTL=254
Ping statistics for 11.11.11.2:
Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli­seconds:
Minimum = 20ms, Maximum = 30ms, Average = 26ms
C:>ping 10.10.10.2
Pinging 10.10.10.2 with 32 bytes of data:
Reply from 10.10.10.2: bytes=32 time=17ms TTL=254
Reply from 10.10.10.2: bytes=32 time=43ms TTL=254
Reply from 10.10.10.2: bytes=32 time=32ms TTL=254
Reply from 10.10.10.2: bytes=32 time=34ms TTL=254
Ping statistics for 10.10.10.2:
Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli­seconds:
Minimum = 17ms, Maximum = 43ms, Average = 31ms
C:>

Bisa dicek output translasinya :

Sakti­R2#show ip nat translations 
Pro Inside global Inside local Outside local Outside global
icmp 11.11.11.11:16 192.168.2.100:16 10.10.10.2:16 
10.10.10.2:16
icmp 11.11.11.11:17 192.168.2.100:17 10.10.10.2:17 
10.10.10.2:17
Sakti­R2#

Sekian:)

Author Image

About Antoni Pribadi,S.Pd,M.Kom
Soratemplates is a blogger resources site is a provider of high quality blogger template with premium looking layout and robust design. The main mission of templatesyard is to provide the best quality blogger templates.

Related Posts:
By -
Label:

2 komentar:

Langganan: Posting Komentar (Atom)
Adbox