Please let me know what does the router command in subject do. Does it do natting in both the directions regardless of the either interface being inside or outside. I couldn't find much documentation on this. However, it works in both the directions and not only on the source ip initiated from inside interface but all on desitination ip initiated from outside.
ip nat inside source static 192.168.5.1 172.16.5.1
means that the inside source IP address of 192.168.5.1 will be translated to source IP address of 172.16.5.1 as it goes out the outside interface.
It also means that any traffic with a destination IP address of 172.16.5.1 that enters via the outside interface will be translated to the destination IP address of 192.168.5.1 as it goes out the inside interface.
So yes it is bi-directional but it is important to note that inside to outside is translation of source IP address, outside to inside is translation of destination IP address.
Thanks Jon. But i really got troubled by the explanation given in "CCNA ICND Self Study Guide by Wendell Odom" Page 289. Please note below the quote from the mentioned book. It clearly states that the NAT only takes effect on the source ip of the 'inside' segment and there is no mention of the destination ip being translated. Please clarify.
ip address 10.1.1.3 255.255.255.0
ip nat inside
ip address 184.108.40.206 255.255.255.0
ip nat outside
ip nat inside source static 10.1.1.2 220.127.116.11
ip nat inside source static 10.1.1.1 18.104.22.168
NAT# show ip nat translations
Pro Inside global Inside local Outside local Outside global
--- 22.214.171.124 10.1.1.1 --- ---
--- 126.96.36.199 10.1.1.2 --- ---
The static mappings are created using the ip nat inside source static command. The inside
keyword means that NAT translates addresses for hosts on the inside part of the network.
The source keyword means that NAT translates the source IP address of packets coming into
its inside interfaces. static means that the parameters define a static entry, which should never
be removed from the NAT table due to timeout. Because the design calls for two hosts,
10.1.1.1 and 10.1.1.2, to have Internet access, two ip nat inside commands are needed.
After creating the static NAT entries, the router needs to know which interfaces are âinsideâ
and which are âoutside.â The ip nat inside and ip nat outside interface subcommands
We are pleased to announce availability of Beta software for 16.6.3.
16.6.3 will be the second rebuild on the 16.6 release train targeted
towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are
looking for early feedback from customers befor...
Introduction Featured Speakers Luis Espejel is the Telecommunications
Manager of IENova, an Oil & Gas company. Currently he works with Cisco
IOS® and Cisco IOS XE platforms, and NX to some extent. He has also
worked as a Senior Engineer with the Routing P...
In this session you can learn more about Layer 3 multicast and the best
practices to identify possible threats and take security measures. It
provides an overview of basic multicast, the best security practices for
use of this technology, and recommendati...