Complete proxy router setting

With the development of the routing industry, the role of routers in the network is becoming more and more important, and the setting of routers directly affects the transmission speed of the network. Here we will mainly explain some methods for setting routers, for your reference. With the rapid development of network technology, enterprises and institutions can access INTERNET to share resources.

In most cases, the ddnleased line has become a common method with stable performance and good scalability. The connection of the DDN mode is simple in terms of hardware requirements, and only one router is needed) proxyserver, but in terms of system configuration, it is a tough problem for many network administrators.

Configure access to INTERNET resources directly through vro settings

1. Overall Ideas and device Connection Methods

Generally, the LAN in the organization uses the reserved IP address 10.0.0.0/. 0.0.0 ~ on the INTERNET ~ 10.20.255.255172.16.0.0/12: 172.16.0.0 ~ 172.31.255.255192.168.0.0/16: 192.168.0.0 ~ 192.168.255.255

Under normal circumstances, when a workstation inside the Organization directly uses a route for external access, it will be filtered out by the router settings because the workstation uses a reserved address on the Internet, as a result, Internet resources cannot be accessed. The solution to this problem is to use the NAT (NetworkAddressTranslation) address translation function provided by the routing operating system to convert private addresses on the Intranet to valid addresses on the Internet, this allows users with invalid IP addresses to access the Internet through NAT. in this way, you do not need to configure a proxy server to reduce investment, save valid IP addresses, and improve the security of the internal network. NAT has two types: Single mode and global mode.

The NAT single mode maps many local LAN hosts into an Internet address just like its name. All hosts in the LAN are regarded as Internet users for External Internet networks. The host in the local LAN continues to use the local address.

In the global mode of NAT, the interface set by the router maps many local LAN hosts to a certain Internet address range (IP address pool ). When the local host port is connected to a host on the Internet, an IP address in the IP address pool is automatically assigned to the local host. After the connection is interrupted, the dynamically assigned IP address is released, the released IP address can be used by other local hosts. The following uses the network environment of our Organization as an example to list the configuration methods and processes for your reference. Our company uses China Unicom Optical Cable (V.35) to connect to the INTERNET. The router is CISCO2610 and the LAN uses the INTEL550 MB switch. China Unicom provides us with the following four IP addresses: 211.90.137.25 (255.255.255.252) the Wan port 211.90.137.26 (255.255.255.255.252) for the Peer (China Unicom) Port 211.90.139.41 (255.255.255.255.252) for your own control 211.90.139.42 (255.255.255.255.252) for your own control

2. vro settings

Enconfigtip nat pool c2610 211.90.139.41 211.90.139.42 netmask 255.255.255.252 (defines an address pool c2601, which contains two valid idle IP addresses for NAT translation) int e0/0 ip address 192.168.0.3 255.255.255.0 ip nat inside exit (the router sets the Ethernet ip address and sets it as the port connecting to the Intranet) interface s0/0 ip address 211.90.137.25 255.255.255.252 ip nat outside exit (the router sets the ip address of the WAN port and sets it as the port connecting to the external network) ip route 0.0.0.0 0.0.0.0 211.90.137.26 (set Dynamic Routing) access-list 2 permit 192.168. 0.1 0.0.0.255 (create an access control list )! Dynamic NAT! Ip nat inside source list 2 pool c2610 overload (create dynamic address translation) line console 0 exec-timeout 0 0! Line vty 0 4 end wr (Save the settings)