Network Address Translation (NAT)

Question 1

Which command would you place on the interface connected to the Internet?
A) ip nat inside
B) ip nat outside
C) ip outside global
D) ip inside local

Answer 1

Answer: B) ip nat outside

Question 2

Which command will show you all the translations active on your router?
A) show ip nat translations
B) show ip nat statistics
C) debug ip nat
D) clear ip nat translations *

Answer 2

Answer: A) show ip nat translations

Question 3

Which command would you place on the interface on a private network?
A) ip nat inside
B) ip nat outside
C) ip outside global
D) ip inside local

Answer 3

Answer: A) ip nat inside

Question 4

Port Address Translation is also termed what?
A) NAT Fast
B) NAT Static
C) NAT Overload
D) Overloading Static

Answer 4

Answer: C) NAT Overload

Question 5

When creating a pool of global addresses, which of the following can be used instead of the netmask command?
A) / (slash notation)
B) prefix-length
C) no mask
D) block-size

Answer 5

Answer: B) prefix-length

Question 6

Which of the following would be a good starting point for troubleshooting if your router is not translating?
A) Reboot.
B) Call Cisco.
C) Check your interfaces for the correct configuration.
D) Run the debug all command.

Answer 6

Answer: C) Check your interfaces for the correct configuration.

Question 7

Which command will show you the summary of the NAT configuration?
A) show ip nat translations
B) show ip nat statistics
C) debug ip nat
D) clear ip nat translations *

Answer 7

Answer: B) show ip nat statistics

Question 8

Which of the following is considered to be the destination host before translation?
A) Inside local
B) Outside local
C) Inside global
D) Outside global

Answer 8

Answer: A) Inside local

Question 9

Which of the following is considered to be the address after translation?
A) Inside local
B) Outside local
C) Inside global
D) Outside global

Answer 9

Answer: D) Outside global

Question 10

10. Which are considered the methods of NAT?
11. Static
12. IP NAT pool
13. Dynamic
14. NAT double-translation
15. Overload

A) 1 and 6
B) 3 only
C) 1, 3, and 5
D) All of the above

Answer 10

Answer: C) 1, 3, and 5

Question 11

Which type of NAT address is used to represent an inside host to the outside world?
A) Inside local
B) Inside global
C) Outside local
D) Outside global

Answer 11

Answer: B) Inside global

Question 12

What is the purpose of NAT?
A) To provide security by hiding internal IP addresses
B) To conserve public IP addresses
C) To allow multiple devices to share a single public IP address
D) All of the above

Answer 12

Answer: D) All of the above

Question 13

Which command is used to configure NAT overload?
A) ip nat inside source list 1 interface FastEthernet0/0 overload
B) ip nat inside source static 192.168.1.10 10.0.0.1
C) ip nat pool mypool 10.0.0.1 10.0.0.10 netmask 255.255.255.0
D) ip nat inside source list 1 pool mypool

Answer 13

Answer: A) ip nat inside source list 1 interface FastEthernet0/0 overload

Question 14

Which of the following is a valid private IP address?
A) 192.168.1.1
B) 172.16.5.5
C) 10.0.0.1
D) All of the above

Answer 14

Answer: D) All of the above

Question 15

What does the overload keyword enable in NAT configuration?
A) Static NAT
B) Dynamic NAT
C) Port Address Translation (PAT)
D) One-to-one mapping

Answer 15

Answer: C) Port Address Translation (PAT)

Question 16

Which command is used to clear all NAT translations?
A) clear ip nat translations *
B) clear ip nat statistics
C) clear ip nat translations
D) clear ip nat

Answer 16

Answer: A) clear ip nat translations *

Question 17

What is the default behavior of NAT if no access list is specified?
A) NAT is disabled
B) All traffic is translated
C) Only traffic from specified IP addresses is translated
D) NAT is applied to all outgoing traffic

Answer 17

Answer: B) All traffic is translated

Question 18

Which of the following is a disadvantage of NAT?
A) Increased security
B) Simplified network design
C) Difficulty in end-to-end traceability
D) Conservation of IP addresses

Answer 18

Answer: C) Difficulty in end-to-end traceability

Question 19

Which command is used to define an access list for NAT?
A) access-list 1 permit 192.168.1.0 0.0.0.255
B) ip access-list standard 1
C) ip nat inside source list 1 interface FastEthernet0/0 overload
D) ip nat pool mypool 10.0.0.1 10.0.0.10 netmask 255.255.255.0

Answer 19

Answer: A) access-list 1 permit 192.168.1.0 0.0.0.255

Question 20

What is the role of the ip nat inside command?
A) Defines the inside interface for NAT
B) Defines the outside interface for NAT
C) Enables NAT on the router
D) Specifies the NAT pool

Answer 20

Answer: A) Defines the inside interface for NAT

Question 21

What is the role of the ip nat outside command?
A) Defines the inside interface for NAT
B) Defines the outside interface for NAT
C) Enables NAT on the router
D) Specifies the NAT pool

Answer 21

Answer: B) Defines the outside interface for NAT

Question 22

Which of the following is a valid NAT configuration?
A) ip nat inside source list 1 interface FastEthernet0/0 overload
B) ip nat inside source static 192.168.1.10 10.0.0.1
C) ip nat inside source list 1 pool NATPOOL
D) All of the above

Answer 22

✅ Answer: D) All of the above
(Each command represents a valid NAT configuration: dynamic PAT, static NAT, and dynamic NAT using a pool.)

Question 23

What type of NAT maps one private IP to one public IP permanently?
A) Dynamic NAT
B) Static NAT
C) NAT Overload
D) PAT

Answer 23

✅ Answer: B) Static NAT

Question 24

Which NAT term describes the IP address assigned to a host on the internal network?
A) Inside global
B) Outside global
C) Inside local
D) Outside local

Answer 24

✅ Answer: C) Inside local

Question 25

Which NAT term refers to the IP address used on the Internet to represent an internal host? A) Inside local B) Inside global C) Outside global D) Public local

Answer 25

✅ Answer: B) Inside global

Question 26

What is required for configuring dynamic NAT? A) An access list and an overload command B) An access list and a NAT pool C) A static mapping D) A routing protocol

Answer 26

✅ Answer: B) An access list and a NAT pool

Question 27

Which command creates a NAT pool? A) ip nat pool name start-ip end-ip netmask subnet-mask B) nat pool create C) ip access-list pool D) ip nat inside overload

Answer 27

✅ Answer: A) ip nat pool name start-ip end-ip netmask subnet-mask

Question 28

What does NAT do when there are no more available addresses in the pool for dynamic NAT? A) Drops packets B) Switches to overload C) Creates a temporary mapping D) Falls back to static NAT

Answer 28

✅ Answer: A) Drops packets

Question 29

What protocol information does PAT use to map multiple IPs to a single address? A) IP only B) MAC address C) Port numbers D) Subnet mask

Answer 29

✅ Answer: C) Port numbers

Question 30

How many inside local addresses can PAT map to a single inside global address? A) 1 B) 64 C) 1024 D) Many, using port numbers

Answer 30

✅ Answer: D) Many, using port numbers

Question 31

Which type of NAT is best suited when you need to allow external users to access an internal server? A) Static NAT B) Dynamic NAT C) PAT D) Port Forwarding

Answer 31

✅ Answer: A) Static NAT (It provides a permanent 1:1 mapping between public and private IPs.)

Question 32

What is a limitation of static NAT? A) It only supports TCP B) It requires a large number of public IPs C) It only supports one device D) It blocks return traffic

Answer 32

✅ Answer: B) It requires a large number of public IPs

Question 33

In PAT, what happens when all port numbers are used? A) NAT stops translating new sessions B) NAT switches to dynamic NAT C) NAT starts using the next IP from the pool D) Router drops NAT configuration

Answer 33

✅ Answer: C) NAT starts using the next IP from the pool

Question 34

What is one benefit of NAT? A) Slows routing B) Adds more IPv4 addresses C) Conserves public IPv4 addresses D) Reduces LAN performance

Answer 34

✅ Answer: C) Conserves public IPv4 addresses

Question 35

Which NAT type translates many-to-many mappings? A) Static NAT B) Dynamic NAT C) PAT D) NAPT

Answer 35

✅ Answer: B) Dynamic NAT

Question 36

How do you verify NAT translations on a Cisco router? A) show nat active B) show ip translations C) show ip nat translations D) debug ip

Answer 36

✅ Answer: C) show ip nat translations

Question 37

What does NAT Overload require that Dynamic NAT does not? A) NAT pool B) Static IPs C) Port numbers D) ACL

Answer 37

✅ Answer: C) Port numbers

Question 38

What is the purpose of an access list in NAT configuration? A) To secure the NAT process B) To match traffic for NAT C) To log NAT events D) To filter ICMP

Answer 38

✅ Answer: B) To match traffic for NAT

Question 39

Which of the following is NOT a private IP range? A) 10.0.0.0 – 10.255.255.255 B) 172.16.0.0 – 172.31.255.255 C) 192.168.0.0 – 192.168.255.255 D) 169.254.0.0 – 169.254.255.255

Answer 39

✅ Answer: D) 169.254.0.0 – 169.254.255.255 (This is APIPA, not a private IP range.)

Question 40

Which RFC defines private IPv4 address space? A) RFC 1234 B) RFC 1918 C) RFC 3927 D) RFC 951

Answer 40

✅ Answer: B) RFC 1918

Question 41

Which NAT type allows multiple private IPs to share a single public IP using different ports? A) Static NAT B) Dynamic NAT C) PAT D) None

Answer 41

✅ Answer: C) PAT

Question 42

What does NAT stand for? A) Network Allocation Table B) Network Address Translation C) New Address Technology D) None of the above

Answer 42

✅ Answer: B) Network Address Translation

Question 43

What is the effect of this command? ip nat inside source static 192.168.1.10 203.0.113.10 A) Translates a public IP to many private IPs B) Enables overload C) Maps one private IP to one public IP D) Enables dynamic NAT

Answer 43

✅ Answer: C) Maps one private IP to one public IP

Question 44

Which show command displays the number of active NAT sessions? A) show ip nat translations B) show ip nat statistics C) debug ip nat D) show ip interface brief

Answer 44

✅ Answer: B) show ip nat statistics

Question 45

Which component is optional when configuring static NAT? A) Inside interface B) Outside interface C) Access-list D) IP mapping

Answer 45

✅ Answer: C) Access-list

Question 46

NAT is usually configured on what type of device? A) Switch B) PC C) Router or Firewall D) Server

Answer 46

✅ Answer: C) Router or Firewall

Question 47

What happens to return traffic in NAT? A) It's dropped B) It's statically routed C) NAT table uses the reverse mapping D) It must be manually forwarded

Answer 47

✅ Answer: C) NAT table uses the reverse mapping

Question 48

Which address is typically not changed in NAT? A) Inside local B) Inside global C) Outside global D) Outside local

Answer 48

✅ Answer: C) Outside global (The external address is often left unchanged.)

Question 49

PAT is most commonly used in which environment? A) Between two private networks B) On ISPs C) Small to medium businesses accessing the Internet D) Between VLANs

Answer 49

✅ Answer: C) Small to medium businesses accessing the Internet

Question 50

In which NAT type is a new mapping created each time a session starts? A) Static NAT B) PAT C) Dynamic NAT D) Reverse NAT

Answer 50

✅ Answer: C) Dynamic NAT