Current configuration:
!
version 12.0
service timestamps debug uptime
service timestamps log uptime
service password-encryption
!
hostname router315
!
enable password 7 110A1016141D585D51
!
ip subnet-zero
no ip domain-lookup
!
!
!
interface Ethernet0/0
ip address 192.168.0.2 255.255.255.0
no ip directed-broadcast
ip nat inside
!
interface Ethernet0/1
ip address 10.11.153.62 255.255.255.0
no ip directed-broadcast
ip nat outside
!
ip nat pool 2600 10.11.153.62 10.11.153.62 netmask 255.255.255.0
ip nat inside source list 1 pool 2600 overload
ip classless
ip route 0.0.0.0 0.0.0.0 10.11.153.1
!
access-list 1 permit 192.168.0.0 0.0.0.255
!
line con 0
transport input none
line aux 0
line vty 0 4
password 7 05080F1C22431D584C
login
!
end
--More--
主要的配置命令及步骤
进入内部接口eth 0/0
IP address 192.168.0.2 netmask 255.255.255.0
ip nat inside
进入外部接口eth 0/1
IP address 10.11.153.62 netmask 255.255.255.0
ip nat outside
配置nat 外部地址池2600,2600地址池仅包括一个地址,即外部接口地址;
ip nat pool 2600 10.11.153.62 10.11.153.62 netmask 255.255.255.0
配置内部允许的访问地址列表
access-list 1 permit 192.168.0.0 0.0.0.255
配置PAT类型的地址转换
ip nat inside source list 1 pool 2600 overload
配置默认路由
ip route 0.0.0.0 0.0.0.0 10.11.153.1