About Me
MikroTik Certified Internetworking Engineer (MTCINE)
1 Introduction to Networking
1-1 Basic Networking Concepts
1-2 OSI Model
1-3 TCPIP Model
1-4 Network Devices
1-5 Network Topologies
2 MikroTik RouterOS Basics
2-1 Introduction to RouterOS
2-2 RouterOS Interface
2-3 Basic Configuration
2-4 User Management
2-5 System Logging
3 IP Addressing and Subnetting
3-1 IPv4 Addressing
3-2 Subnetting
3-3 IPv6 Addressing
3-4 IPv6 Subnetting
3-5 NAT and PAT
4 Routing
4-1 Static Routing
4-2 Dynamic Routing Protocols
4-3 OSPF
4-4 BGP
4-5 EIGRP
5 Wireless Networking
5-1 Wireless Basics
5-2 Wireless Security
5-3 Wireless Configuration
5-4 Wireless Bridging
5-5 Wireless Repeaters
6 VPN Technologies
6-1 VPN Basics
6-2 IPsec VPN
6-3 OpenVPN
6-4 L2TPPPTP
6-5 SSL VPN
7 Quality of Service (QoS)
7-1 QoS Basics
7-2 Traffic Shaping
7-3 Policing
7-4 Prioritization
7-5 Queue Types
8 Firewall and Security
8-1 Firewall Basics
8-2 Firewall Rules
8-3 NAT Rules
8-4 Filtering Rules
8-5 Hotspot and Captive Portal
9 Advanced Topics
9-1 VLANs
9-2 MPLS
9-3 High Availability
9-4 Load Balancing
9-5 Monitoring and Troubleshooting
8.3 NAT Rules Explained

8.3 NAT Rules Explained

Key Concepts

1. NAT Overview

Network Address Translation (NAT) is a method used to modify IP address information in IP packet headers while they are in transit across a traffic routing device. NAT helps in conserving IP addresses, enhancing security, and simplifying network management.

Example: Think of NAT as a post office that changes the return address on a letter before sending it out. This helps in tracking the letter and ensuring it reaches the correct destination.

2. Static NAT

Static NAT involves a one-to-one mapping between private IP addresses and public IP addresses. This type of NAT is commonly used for servers that need to be accessible from the internet.

Example: Consider static NAT as a permanent address change service. Just as a person permanently changes their address, a private IP address is permanently mapped to a public IP address.

3. Dynamic NAT

Dynamic NAT involves a pool of public IP addresses that are dynamically assigned to private IP addresses as needed. This type of NAT is used to conserve public IP addresses and is commonly used in home networks.

Example: Think of dynamic NAT as a hotel reservation system. Just as a hotel assigns rooms to guests as they arrive, dynamic NAT assigns public IP addresses to private IP addresses as needed.

4. PAT (Port Address Translation)

PAT, also known as NAT overload, maps multiple private IP addresses to a single public IP address using different port numbers. This allows multiple devices on a private network to share a single public IP address.

Example: Consider PAT as a call center where multiple agents share a single phone number. Each agent uses a different extension number, allowing multiple calls to be handled simultaneously.

5. NAT Exceptions

NAT exceptions allow certain traffic to bypass NAT rules. This is useful for traffic that needs to retain its original IP addresses, such as VPN traffic or certain types of server communications.

Example: Think of NAT exceptions as a VIP lane at an airport. Just as VIPs bypass the regular security checks, certain types of traffic bypass NAT rules to retain their original IP addresses.

© 2024 Ahmed Baheeg Khorshid. All rights reserved.