Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

I'm confused about NAT & PAT

Status
Not open for further replies.
AlanSak

AlanSak

MIS
Apr 13, 2003
2
US
I always thought NAT was used to translate private network addresses to public. On a simple lan, with a low end firewall (Sonic, Servgate...) you simply "Activate" NAT. So one of my questions would be, when you activate NAT, does it simply use the one public address assigned to it and translate all outgoing data to use this IP address- so it's actually PAT?? With Cisco, on a pix 501 box, NAT seems to require you to create an address pool of public addresses for each private ip address you are using. And this address pool would have a 1:1 correspondence with all private addresses within your lan- that is to say each private ip address has an available public address. This seems to defeat the purpose. And maybe this is where PAT comes in. My understanding is that PAT will actually translate all private (or public) ip addresses behind the firewall to a single public IP address. Is this correct?? Are the low end firewalls simply using PAT rather than NAT??
Can somebody please help me understand this issue. I'd really appreciate it.
 
Sort by date Sort by votes
I'm not even a ccna yet.. Your page required a login, which I don't even have....
thanks though,
 
Upvote 0 Downvote
PAT and NAT are both Address Translations. Port Address translation uses a single public address to represent multiple hosts. This allows many machines to connect to the Internet using only 1 IP address. While this can be useful if browsing is the main goal for your users. However, if you want to host servers on your network you will need (or at the very least want to) allocate static public IP addresses to the servers. In this instance, NAT is a much simpler and more elegant solution.
Your simpler firewalls most likely implement PAT using the IP address of the public interface by default. In the world of Cisco, you can implement PAT or NAT or PAT behind a public interface depending upon the demands of the situation and the availability of public IPs.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Zero6
  • Locked
  • Question
question about cisco cbs 350-12xs 12 port 10g sfp+
Replies
0
Views
119
Zero6
Zero6
inlsp05
  • Locked
  • Question
2811&2960 48 volts wiring diagram
Replies
1
Views
128
BOKA
BOKA
bmiller23
  • Locked
  • Question
Issues Between Cisco Network & NVT Phybridge POLRE 8 Port Extender
Replies
13
Views
260
VinceWhirlwind
VinceWhirlwind
netguy2000
  • Locked
  • Question
Cisco router 1841 NAT/PAT problem
Replies
0
Views
63
netguy2000
netguy2000
darktriad
  • Locked
  • Question
Cisco ASA 9.4: Configuring NAT
Replies
0
Views
87
darktriad
darktriad

Part and Inventory Search

Sponsor

Back
Top