ActualTests.Cisco.640-802.Exam.Q.and.A.08.15.08-DDU (1130589), страница 73
Текст из файла (страница 73)
All routersB. All routers and switchesC. Certkiller 1 routerD. Certkiller 2 routerE. Certkiller 3 routerF. None of the aboveAnswer: CExplanation:Network Address Translation (NAT) can be used to hide the private IP addressingscheme of the entire network from the Internet. To do this, NAT needs to only beconfigured on the router that resides between the Internet and the rest of the privateinternal network. In this case, it needs to only be implemented on the Corporate router.Actualtests.com - The Power of Knowing640-802QUESTION 647:In any NAT (network address translation) configuration, what is the Inside GlobalIP address?A.
The summarized address for all internal subnetted addresses.B. A private IP address assigned to a host on the inside network.C. A registered address that represents an inside host to an outside network.D. A unique IP address used on an internal networkE. Non of the aboveAnswer: CExplanation:With NAT, Cisco defines 4 different types of addresses as follows:* Inside local address - The IP address assigned to a host on the inside network. This isthe address configured as a parameter of the computer's OS or received via dynamicaddress allocation protocols such as DHCP.
The address is likely not a legitimate IPaddress assigned by the Network Information Center (NIC) or service provider.* Inside global address - A legitimate IP address assigned by the NIC or serviceprovider that represents one or more inside local IP addresses to the outside world.* Outside local address - The IP address of an outside host as it appears to the insidenetwork. Not necessarily a legitimate address, it is allocated from an address spaceroutable on the inside.* Outside global address - The IP address assigned to a host on the outside network bythe host's owner.
The address is allocated from a globally routable address or networkspace.The above definitions still leave a lot to be interpreted. For this example, this documentredefines these terms by first defining "local address" and "global address." Keep in mindthat the terms "inside" and "outside" are NAT definitions. Interfaces on a NAT router aredefined as "inside" or "outside" with the NAT configuration commands, ip nat inside andip nat outside. Networks to which these interfaces connect can then be thought of as"inside" networks or "outside" networks, respectively.* Local address - A local address is any address that appears on the "inside" portion ofthe network.* Global address - A global address is any address that appears on the "outside" portionof the network.QUESTION 648:SIMULATIONNetwork topology exhibit:Actualtests.com - The Power of Knowing640-802You work as a network technician at Certkiller .com.
Study the exhibit carefully. Youare required to perform configurations to enable internet access. The Certkiller ISPhas given you six public IP addresses in the 198.18.227.25 198.18.227.30 range.Certkiller .com has 30 clients that needs to have simultaneous internet access. Theselocal hosts use private IP addresses in the 192.168.107.33 - 192.168.107.62 range.You need to configure Router Certkiller 1 using the Certkiller A console.You have already made basic router configuration. You have also configured theappropriate NAT interfaces; NAT inside and NAT outside respectively.Now you are required to finish the configuration of Certkiller 1.Answer:Explanation:Certkiller 1#config tCertkiller 1(Config)#access-list 1 permit 192.168.107.33 0.0.0.30Certkiller 1(Config)#access-list 1 deny anyCertkiller 1(Config)#interface fa0/0Certkiller 1(Config-if)#ip nat insideCertkiller 1(Config-if)#exitCertkiller 1(Config)#interface s0/0Certkiller 1(Config-if)#ip nat outsideCertkiller 1(Config-if)#exitCertkiller 1(Config)#ip nat pool test_nat 198.18.227.25 198.18.227.30 prefix-length 24Certkiller 1(Config)#ip nat inside source list 1 pool test_nat overrideVerify using:Certkiller 1#show ip nat translationsQUESTION 649:Certkiller has 25 computers and decides to connect the network to the Internet.Certkiller would like for all of the computers to have access to the Internet at theActualtests.com - The Power of Knowing640-802same time, but Certkiller only has four usable publicly routable IP addresses.What should be configured on the router so that all computers can connect to theInternet simultaneously?A.
Static NATB. Global NATC. Dynamic NATD. Static NAT with ACLsE. Dynamic NAT with overloadAnswer: EExplanation:NAT overload, also called many to one NAT or Port Address Translation (PAT) allowsfor many IP hosts to share a single IP address when connecting to the outside. In thiscase, the use of dynamic NAT with overloading will allow for the 25 hosts to use an IPaddress from the NAT pool, which will contain the 4 public IP addresses.QUESTION 650:A Certkiller router has been configured with the following command:IP nat pool nat-test 192.168.6.10 192.168.6.20 netmask 255.255.255.0This is an example of what type of NAT?A. Static NATB.
Dynamic NATC. Dynamic NAT with overloadD. Port Address TranslationE. None of the aboveAnswer: BExplanation:The configuration statement in this example is used to define a pool of IP addresses to beused for dynamic NAT translations.Incorrect Answers:A. Static NAT is used for 1 to 1 translation entries, using the "static" configurationkeyword. In this example a range of addresses are being defined for the use in a pool.C, D.
With NAT overload, also known as Port Address Translation (PAT), the keyword"overload" is added at the end of the configuration statement.QUESTION 651:Actualtests.com - The Power of Knowing640-802The Certkiller network is displayed below:Certkiller .com wants to use NAT in network displayed in the exhibit.Which commands will apply the NAT configuration to the proper interfaces? Selecttwo.A.
Certkiller 1(config)# interface serial0/1Certkiller 1(config-if)# ip nat insideB. Certkiller 1(config)# interface serial0/1Certkiller 1(config-if)# ip nat outsideC. Certkiller 1(config)# interface fastethernet0/0Certkiller 1(config-if)# ip nat insideD. Certkiller 1(config)# interface fastethernet0/0Certkiller 1(config-if)# ip nat outsideE. Certkiller 1(config)# interface serial0/1Certkiller 1(config-if)# ip nat outside source pool 200.2.2.18 255.255.255.252F. Certkiller 1(config)# interface serial0/1Certkiller 1(config-if)# ip nat inside source 10.10.0.0 255.255.255.0Answer: B, CExplanation:After creating the static NAT entries, the router needs to know which interfaces are"inside" and which are "outside." The ip nat inside and ip nat outside interfacesub-commands identify each interface appropriately.Reference: Cisco CCNA ICND, p.271QUESTION 652:Refer to the topology and partial configuration output shown in the graphic below:Actualtests.com - The Power of Knowing640-802The ip subnet-zero configuration command is also in effect on router CK1 .
Afterthis router performs network address translation, which address is a valid "insideglobal address"?A. 10.10.0.1B. 10.10.0.17C. 200.2.2.17D. 200.2.2.18E. 199.99.9.33F. 199.99.9.47Answer: FExplanation:Regarding NAT operation, Cisco defines these terms as follows:1. Inside local address - The IP address assigned to a host on the inside network. This isthe address configured as a parameter of the computer's OS or received via dynamicaddress allocation protocols such as DHCP. The address is likely not a legitimate IPaddress assigned by the Network Information Center (NIC) or service provider.2.
Inside global address - A legitimate IP address assigned by the NIC or service providerthat represents one or more inside local IP addresses to the outside world. In this case, theNAT pool is used to distribute the Inside Global IP addresses.3. Outside local address - The IP address of an outside host as it appears to the insidenetwork. Not necessarily a legitimate address, it is allocated from an address spaceroutable on the inside.4. Outside global address - The IP address assigned to a host on the outside network bythe host's owner. The address is allocated from a globally routable address or networkspace.Reference:http://www.cisco.com/en/US/tech/ CK6 48/ CK3 61/technologies_tech_note09186a0080094837.shtmlActualtests.com - The Power of Knowing640-802QUESTION 653:SIMULATIONNetwork topology exhibit:You work as a network technician at Certkiller .com.
![](https://s.studizba.com/z.php?f=/templates/si/i/noavatar.png&w=100&h=100&t=1"){kind=avatar}
