Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Did not pass the CCNA, have 2 questions
#1
Ok so I how2pass was very helpfull and I thought I passed before getting my 720 :-\.

The NAT question came up and I responded word for word but I don't think it was good enough.  They gave me the same question but the ip addresses were different, I read the rules and didn't see that posting the addresses cant be posted but if Im wrong please feel free to edit or delete my post. I am  mod on another forum and understand.

So the Private were 192.168.123.65-194

The Public was 198.18.47.161-166

I wasn't given anything but the name of the router which was Munford.

So...

access list 2 permit 192.168.123.64 0.0.0.30
ip nat pool list 2 198.18.47.161 198.18.123.166 netmask 255.255.255.248
ip nat inside source list 2 pool munford overload

the inside and outside interfaces were done already so I just saved my info with the copy run start.

Now my question is do I use munford? should I have used "cisco"? The other NAT deals Ive seen had the inside pool as the public addresses and the outside as the 192....

The reason I asked was the message of: Implement, verify and troubleshoot NAT and ACL in a medium sized Enterprise branch office, which I would think was the NAT sim.

Im sure I turned and the interfaces and saved my config if asked.

The only question I did not know (in my mind) was a question about Rapid PVST, Im not even sure I have heard of that one but I think I can find it using a search engine.

Thanks in advance.
Reply
#2
Just a heads up on the NAT (PAT) sim here the inverse subnet doesnt look right, should be 192.168.58.16 0.0.0.13, not 0.0.0.15

Reply
#3
HI I have passed the CCNA twice means I have used H2P for recirtification as well and this site is very usefull. I am not sure how you handle the sim but best way to check is in can ping from the public address from the client which have the private address or if any interface has private address then ping by using the source command that way you can verify that NAt and also your ACL should show some match.

I know this thing take time but plan the ACL with proper wildcard before junp to configuration. I also agree that you have saved the config but the goal is not achived then you dont get marks. So in sort before you save if can't ping piblic IP by using private IP then your sim is fail.

I hope this help.
Reply
#4
(01-12-2010, 08:00 PM)6172crew link Wrote:Just a heads up on the NAT (PAT) sim here the inverse subnet doesnt look right, should be 192.168.58.16 0.0.0.13, not 0.0.0.15

You have to borrow 4 bits to get the required 13 hosts.

255-240 = 15

so

0.0.0.15
Reply
#5
Can you explain your config:

So the Private were 192.168.123.65-194

The Public was 198.18.47.161-166

I wasn't given anything but the name of the router which was Munford.

So...

access list 2 permit 192.168.123.64 0.0.0.30
ip nat pool list 2 198.18.47.161 198.18.123.166 netmask 255.255.255.248
ip nat inside source list 2 pool munford overload


Not sure I understand how you got 0.0.0.30
Reply


Forum Jump:


Users browsing this thread: 4 Guest(s)