From the course: Cisco CCNP SCOR Security (350-701) Cert Prep: 1 Security Concepts and Network Security
Unlock this course with a free trial
Join today to access over 22,600 courses taught by industry experts.
NAT-T for IPsec
From the course: Cisco CCNP SCOR Security (350-701) Cert Prep: 1 Security Concepts and Network Security
NAT-T for IPsec
- [Instructor] We need to be able to describe the function of NAT Traversal or Nat-T for this exam. NAT or Network Address Translation is a way that we can convert private IP addresses to publicly roundable IP addresses and vice versa. NAT Traversal is a technique for establishing VPN connections across a device that is performing that. If we look at this simple diagram, you can see that we have a Port Address Translation happening at the firewall between these two routers with a site to site VPN between the routers. The Port Address Translation that is taking place is a type of NATs where we map multiple private IP addresses to a single public IP, and we assigned different ports. So if we have multiple internal IP addresses in the local office as we see here, these will be translated into a single global IP address with each of those addresses being assigned a unique port from a pool of available ports. The problem is with our VPN security protocols with AH and ESP, those are layer…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Contents
-
-
-
On-premises threats8m 42s
-
Cloud-based threats7m 42s
-
Software vulnerabilities4m 48s
-
SQL injection6m 47s
-
Buffer overflow5m 13s
-
Cross-site request forgery5m 7s
-
Hashing5m 44s
-
Encryption5m 19s
-
Public key infrastructure (PKI)5m 53s
-
IPsec9m 57s
-
NAT-T for IPsec4m 23s
-
Pre-shared key authentication7m 18s
-
Site-to-site VPN14m 12s
-
Remote access VPN10m 35s
-
sVTI-based VPN9m 20s
-
DMVPN24m 31s
-
FlexVPN5m 20s
-
Cisco DNA center overview7m 38s
-
Cisco DNA center and vManage APIs6m 21s
-
Python scripts8m 23s
-
-
-