Quick Reference

Monday, November 5, 2007

CCNA 640-802: NAT SIM

Question:
A network associate is configuring a router for the weaver company to provide internet access. The ISP has provided the company six public IP addresses of 198.18.184.105 198.18.184.110. The company has 14 hosts that need to access the internet simultaneously. The hosts in the company LAN have been assigned private space addresses in the range of 192.168.100.17 – 192.168.100.30 .


CLICK ON IMAGE TO VIEW

Click Knowledge Base for NAT SIM to learn the concepts before attempting or learning this SIM Question


NAT SIM Configuration:

The following configuration translates between inside hosts (Weaver LAN) addressed from 192.168.100.16 /28 network (192.168.100.17 – 192.168.100.30) to the globally unique pool of address provided by ISP 198.18.184.105 – 198.18.184.110 /29.

Weaver>enable
Weaver#configure terminal


Before starting the NAT configuration verify that router hostname currently configured is weaver. If not change hostname to Weaver using the command

Router(config)#hostname weaver

Step1: Create an access-list to match all the Weaver LAN address that need to be the candidates for NAT translations

Weaver(config)#access-list 10 permit 192.168.100.16 0.0.0.15

Step2: Create a NAT Pool with pool name isp_adr and specify the pool address range provided by ISP with their netmask.

Weaver(config)#ip nat pool isp_adr 198.18.184.105 198.18.184.110 netmask 255.255.255.248

Step3: Packets that match access-list 10 will be translated to an address from the pool called "isp_adr".

Overload keyword specify to use Port based NATing to support all the Weaver LAN address range.

Weaver(config)#ip nat inside source list 10 pool isp_adr overload


SIM Question already provides that appropriate interfaces have been configured for NAT Inside and NAT Outside statements.

For your information configuration would have been like this

Weaver(config)#interface fastethernet 0/0
Weaver(config-if)#ip nat inside

Weaver(config)#interface serial 0/0
Weaver(config-if)#ip nat outside


Functionality Test:
Our requirements are to allow the hosts (Weaver LAN) the ability to communicate with the Internet. For this test, we ping the Internet device (ISP router S0/1) from Host for testing.

Step1:
Go to host for testing:
C:\>ping 192.0.2.114

PING should be success to 192.0.2.114 since SIM question provides that static route is already configured on router.


Step2:
On console of router (Weaver) :
Issue show ip nat translation command to verify the NAT translations.

Sample output:
Considering host for testing IP address is 192.168.100.17

weaver# show ip nat translation

Pro Inside global Inside local Outside local Outside global
icmp 198.18.184.105:434 192.168.100.17:434 192.0.2.113:434 192.0.2.114:434
icmp 198.18.184.105:435 192.168.100.17:435 192.0.2.113:435 192.0.2.114:435
icmp 198.18.184.105:436 192.168.100.17:436 192.0.2.113:436 192.0.2.114:436
icmp 198.18.184.105:437 192.168.100.17:437 192.0.2.113:437 192.0.2.114:437
icmp 198.18.184.105:438 192.168.100.17:438 192.0.2.113:438 192.0.2.114:438
Any Questions on SIMULATOR welcomed.
Best of LUCK to your CCNA EXAM

109 comments:

Anonymous said...

Thanks a lot for the NAT sim. Have the questions changed from the old exam to the latest one. What more I have to read up now for this new exam. Is this blog information cover all the topics for the new exam already? I really appreciate your effort to put this together. Will wait for your response.

a3tips said...

Hi,

I am currently working on 640-802 , You will find updates to this blog regularly this month still i cover the entire 640-802 course..

Meanwhile you can visit the old exam topics on blog archive where you find explanations to questions and quick notes might be helpful..

Cheers!!!!

Dennis said...

a3tips,

Looking at the example, step #1 creating access-list for NAT, should the correct syntax appear as:
Weaver(config)#access-list 10 permit 192.168.100.16 0.0.0.15, entered without the ip command in the beginning? I've tried your suggested syntax entry and keep receiving errors (using Net Visualizer 5.0). Please correct me if I'm wrong and keep up the good work!! Cheers!

a3tips said...

Hi Dennis,

Yes you are correct.. the syntax was wrongly written..

correct syntax:

Weaver(config)#access-list 10 permit 192.168.100.16 0.0.0.15


I have updated this on SIM...

Cheers!!!

Anonymous said...

I AM AFRAID OF THIS EXAM!
MIKE PAGET

a3tips said...

Hi Mike..

Study hard there is nothing to be afraid at CCNA Level. Same exam with few new topics.

I hope this site will help you gain some confidence..

Any doubts post a comment will be happy to help you...

Cheers!!

Anonymous said...

Hi a3tips,
Am going for 640-802 2moro, i hope i will meet this labs in the test. Any advice b4 is welcome. Thanks
MS

a3tips said...

Hi MS,

Best of luck to your exam... share ur exam experience after your test

Cheers!!!

Anonymous said...

Hi a3tips
I passed 640-802 with 947/1000.Thank you so much for this blog. i had prepared for 640-801 but missed the deadline. I used this site to prepare for the new exam and all your new topics were real!
Drad and drop
NAT sim
Topology lab
and Hot spot were real and i owe to this blog. Guys go for this new cert only wireless,basic security concepts and VOIP were new topics i found. The test was 120minutes and only 52 questions. Kindly guide on CCNP. Thanks! MS

Anonymous said...

Thanks a lot for the NAT sim for 802 exam.. but there is an ACL sim question also which appeared to the candidates recently in 802 exam.
Can you please also explain the ACL sim answer here.. please hurry up as my exam is on 26th nov...

Thanks

a3tips said...

Hi,
Check Blog Archive the ACL sim is already explained here..
Best of luck to your CCNA exam

Cheers!!

blindswitch said...

Thans again for your help.. is the overload command needed? I dont see the question asking for multiple pcs to connect at the same time to use PAT.. can you comment on this.. is the overload really needed? and is it wrong if you leave it out?
d

a3tips said...

Hi Blindswitch,

Yes overload keyword is compulsory because the internal LAN address space is more then the ISP provided public address range

We need to support all internal LAN address to access internet thats the reason we are using overload keyword.

Hope this helps
Cheers!!!

Drew=) said...

Hello,

Thanks for the site. I wish I saw it last week though. I took the test on Wednesday and got a 749. You are right on with it. The name I had on the NAT sim isn't Weaver anymore though. I wish I remembered what it was. I think the IP's might have been different as well. Are you in Japan?

a said...

I passed 640-802 with 973/1000.Thank you so much for this blog.
I forgot changed hostname for Weaver Router.

Anonymous said...

Hi can you please explain how did you come with the mask 0.0.0.15 and how number of hosts affects the ip range.

a3tips said...

hI,
0.0.0.15 is the wildcard mask for the host IP range
192.168.100.17 - 192.168.100.30

Explanation:
Method to identify the wildcard mask for above IP range is

First we need to find out the subnet mask for the above range.

range has 14 valid host to get the subnet for this .
14+2(broadcast and network address) = 16
To get subnet mask we need to subtract 256 - 16 = 240

255.255.255.240 is the subnet mask
´
Simple method to calculate the Wildcard mask from known subnet is to
Reverse 1’s into 0’s and 0’s into 1’s from the binary representation of subnet.
For above example (240 = 11110000 subnet)
11110000 (subnet) = 00001111 (wildcard mask) last octet.
= 15 (wildcard mask) for last octet by converting it to decimal.
Converting the remaining first 3 octets of subnet into wildcard mask using above method
Resulted wildcard mask is 0.0.0.15

Hope this helps

Cheers !!!

Anonymous said...

Thanks a lot ...that is a fantastic explanation.

Anonymous said...

Hi ..How about number of hosts = 30?

a3tips said...

HI;

similar method has we have done for 14 hosts
Explanation:
For 30 hosts..

30+2(broadcast and network address) = 32
To get subnet mask we need to substract 256 - 32 = 224

255.255.255.224 is the subnet mask
´
Simple method to calculate the Wildcard mask from known subnet is to
Reverse 1’s into 0’s and 0’s into 1’s from the binary representation of subnet.
For above example (224 = 11100000 subnet)
11100000 (subnet) = 00011111 (wildcard mask) last octet.
= 31 (wildcard mask) for last octet by converting it to decimal.
Converting the remaining first 3 octets of subnet into wildcard mask using above method
Resulted wildcard mask is 0.0.0.31

Hope this helps

Cheers !!!

KSP57 said...

First off, this website is great! I questioned alot of my study material and was able to confirm their incorrect answers on your website.

I do have one, ok, three questions...

In a similar problem with TestKing, they have one additional step...

TestKing(config)#access-list 1 deny any

This step was created after they created...

TestKing(config)#access-list 1 permit 192.168.6.65 0.0.0.62

Question #1: Is the "Deny Any" statement necessary?

Question #2: Notice their permit 192.168.6.65 0.0.0.62. (This scenario is for 62 clients with ip address 192.168.6.65 - 192.168.6.126/26 range) It appears they did not include the network and broadcast address in the access-list statement. On your problem, I believe you include the broadcast and network address as you are using the mask of 0.0.0.15 and network address with 14 hosts. Is the Tesking version just another way to list it out? Is their statement correct?

Question #3: In TestKing Nat Pool statement, they have "prefix-length 29". Is this another way to list the "netmask 255.255.255.248"?

Thanks!

KSP57

a3tips said...

Hi KSP57,


For your Question 1:

TestKing(config)#access-list 1 deny any

By default there is any implicit deny any statement at the end of ACCESS-LIST .

The method testking using is just typing it instead of using the implicit deny any statement.

So both have similar effect... with or without a deny any statement at end of ACL statements.


Question #2:
permit 192.168.6.65 0.0.0.62
The above access-list also matches the 62 clients with range 192.168.6.65-192.168.6.1.126 /26 .


But for good practises the correct mask will be 0.0.0.63 .

Question #3: In TestKing Nat Pool statement, they have "prefix-length 29"

Yes thats other way to represent netmask statement.

Syntax for ip nat pool statement.

ip nat pool name start-ip end-ip {netmask netmask prefix-length prefix-length}[type rotary]


Hope this helps

Cheers!!!

Anonymous said...

I have question about nat sim.
if inside local addresses are from 192.168.100.17 to 192.168.100.30/28
why in access list is
192.168.100.16 is this address correct or just mistyped

a3tips said...

Hi,

192.168.100.16 is the network address for the host range.. 192.168.100.17 to 192.168.100.30/28

Thats the reason 192.168.100.16 is used in access-list to match the entire host range with specified wildcard mask.

Hope this helps
Cheers!!!!

ksp57 said...

I just took the exam (and passed!) and wanted to leave feedback. In my post a few days ago, I asked the following... "Question #3: In TestKing Nat Pool statement, they have "prefix-length 29""

This was not supported in the simulator during the exam. I ended up using the netmask 255.255.255.248

Thanks for this example, as it truely helped out!

Anonymous said...

Hello,
I will be taking my test again tomorrow. Do you know if the pool of questions/sims changes for someone for their second time around? I barely missed passing last month. I since then have been studying more and found your site to be exactly what I need to be studying. Thanks for the useful info. I'll come on again tomorrow and let you know what is new.

sumedh said...

i really appreciate your efforts.i passed an exam today.got 975.thank you again..

Bangs said...

Thanks everyone for the explanation and your critical doubts which helps to a great extend for us to understand the things in detail...

I took the test last week and passed..

I have a query..in the NAT question I had to translate 30 inside hosts, by mistake I entered the wildcard mask as 0.0.0.15, and after I typed in all the other commands I realized the mistake.

What I should have done to correct this, simply adding the next 16 addresses will do? or need to type in an additional entry to the access list with 0.0.0.31 mask??

and after entering this change in the access list, do I have to type in the ip nat inside source pool overload command again??

a3tips said...

Hi bangs,

If you have entered a wrong wildcard mask in access-list statement.. to correct it all you need is remove that access-list with no access-list (acl_no) command
and enter the correct acl statement... this will solve ur problem.

Hope this helps
Cheers

Anonymous said...

Hi a3tips,

please can you tell me Does Q226 & Q228 on P4S (251Q)correct,or Q199 on Testinside (200Q)correct?One answer are wrong.

Thanks

a3tips said...

Hi

Q226 on p4s(245Q) is wrong..
current answer would be

(b) the source MAC address in the fram is the MAC address of the NIC of Host 1

Hope this helps

Cheers!!

kalyan said...

hi
administrators!.In NEW NAT SIM(640-802),Can you tell me after access list.Deny command is required or not.could pl explain????????????

a3tips said...

Hi Kalyan,

By default there is any implicit deny any statement at the end of ACCESS-LIST .

So its upto you if u want to manually write the deny any any statement or wish to use implicit deny any statement of ACL.

Hope this helps
Cheers

Anonymous said...

Possibly a good idea to finish up with:
Weaver>#copy running-config startup-config

Anonymous said...

Thank You God!

J passed CCNA 973/1000.

Thank you a3tips!

Thanks a lot everyone!

Cheers!

Anonymous said...

Weaver(config)#access-list 10 permit 192.168.100.16 0.0.0.15


instead of this can we use this statement in the above config ?

Weaver(config)#access-list 10 permit 192.168.100.17 0.0.0.15

a3tips said...

Hi,

If you are using this statement
Weaver(config)#access-list 10 permit 192.168.100.17 0.0.0.15

then the wild card mask will be 0.0.0.14 that will match all the hosts in range.

But for good practises the correct mask will be 0.0.0.15 by using the network address (192.168.100.16) .

Weaver(config)#access-list 10 permit 192.168.100.16 0.0.0.15

Hope this helps

Cheers!!!

Adriaen said...

By chance I googled to your site and saw the NAT sim, I thought I had prepared for everything...not this, however with your example I passed today with a 986/1000. Thank You! There were some minor differences as the router was named already and the IPs on the interfaces were correct. Thank You again!!!

John said...

Hi A3tips,

Like the others I also came across this after scoring 775 and had the NAT sim, I googled and found your site and within 24 hours I knew exactly where I had gone wrong. I am resitting next Wednesday and this is the first point of call each day before the exam simulator. Keep up the great work.

Anonymous said...

I will take the exam tomorrow!!

Thanks a lot for this site is great!!

I will share my experience,

I used Todd Lammle Book and P4S 2.93

regards,

Rastislav said...

I took my 640-802 yesterday and flunked w 643. Ouch. I think i took too much time looking for trick questions in the simple questions (no trick questions on the test in my opinion) and that caused me to loose time i needed to concentrate on scenarios. Also ran out of time on like question 47. Bad time management. I will focus on my speed now and make sure i can get the sims correct and answer all the questions this time. This is in fact a very valuable blog!

Anonymous said...

~*Replay to the above comment*~

Can you also provide the topics covered, when you return from your exam, and suggestions?

-Luke

Anonymous said...

hI,
0.0.0.15 is the wildcard mask for the host IP range
192.168.100.17 - 192.168.100.30

Explanation:
Method to identify the wildcard mask for above IP range is

First we need to find out the subnet mask for the above range.

range has 14 valid host to get the subnet for this .
14+2(broadcast and network address) = 16
To get subnet mask we need to subtract 256 - 16 = 240

255.255.255.240 is the subnet mask
´
Simple method to calculate the Wildcard mask from known subnet is to
Reverse 1’s into 0’s and 0’s into 1’s from the binary representation of subnet.
For above example (240 = 11110000 subnet)
11110000 (subnet) = 00001111 (wildcard mask) last octet.
= 15 (wildcard mask) for last octet by converting it to decimal.
Converting the remaining first 3 octets of subnet into wildcard mask using above method
Resulted wildcard mask is 0.0.0.15

HI a3Tips i have a doubt

If the number of the host is 66 in this scene the wildcarld mask should 192.168.100.128 0.0.0.127

a3tips said...

Hi,

Yes your correct.

For 66 hosts first the subnet mask will be 255.255.255.128

For above example (128 = 10000000 subnet)
10000000 (subnet) = 00000001 (wildcard mask) last octet.
= 127 (wildcard mask) for last octet by converting it to decimal.
Converting the remaining first 3 octets of subnet into wildcard mask using above method
Resulted wildcard mask is 0.0.0.127

Hope this helps

cheers!!!

javedsher said...

Hi everybody,

I passed my CCNA Exam with 947 /1000.
I want appreciate the maintainer of this blog and everybody participating in it.

Thanks a lot.

Anonymous said...

First,thanx alot for your efforts and great explanations a3tips :)

2nd i've a question regarding the command of (sh ip nat translation),can i use this command to check after any nat simulation or there're specific conditions of sim to use this command.
thanx again,
khalaf

a3tips said...

Hi Khalaf,

THe sh ip nat translation command is only for testing purpose for any NAT SIM. Its not compulsory but to make sure what u had configured for NATing is working fine.


Cheers!!

Anonymous said...

Thank you, a3tips and everyone on this forum, for I have successfully Passed CCNA on my first attempt, today.

I suggest others to study with Pass4Sure v2.93, for A LOT of the questions where verbatim. I encourage studiers to master Subnetting and be able to produce the answer very very quickly!

★ P . J ★ said...

Hi a3tips,

Thank U very much. I wrote CCNA today & got 986. Without ur this bouldn't have been possible.

U have explained every thing in a simple & useful manner. U really have done a wonderful job.

:) PJ :)

Anonymous said...

HI.THANK U VERY MUCH FOR THIS BLOG .In the access list can i write #access-list 10 permit 192.168.100.17 0.0.0.13
thank u very much

a3tips said...

If you are using this statement
Weaver(config)#access-list 10 permit 192.168.100.17 0.0.0.13

then the wild card mask will be 0.0.0.14 that will match all the hosts in range.

But for good practises the correct mask will be 0.0.0.15 by using the network address (192.168.100.16) .

Weaver(config)#access-list 10 permit 192.168.100.16 0.0.0.15

Hope this helps

For more explanation check entire comments section above

Cheers!!!

Faraz said...

Hi a3tips,
thanks man...u r really doing a great job..ur blog even corrects the mistake of the braindumps..I have my exam on this monday i.e. 7th april..

I have some queries..
1- If i enter the NAT sim commands in other order rather than urz..I just entered those commands in random sequence so the cisco 2400 series router accepted it n sequenced it in the correct order..but will the Testing centre sim will accept it?
im follow these steps
a-apply the nat inside and outside commands to the interfaces
b-make the access-list
c-then i apply
ip nat inside source list ......
d- ip nat pool ..........


i know i have a bad habbit..but will it work in the exam?im confused


2- there is only 1 lab of NAT and only 1 lab topology of 3 router and 1 switch in the p4s v2.95..will these 2 r enuff? do they repeat in every exam with same scenario? wht abt the other labs of routing protocols?

reply me ASAP

thnkss once again!

-FaRaZ

a3tips said...

Hi Faraz,

No problem if you remember to follow same pool name u create match both on nat statement (c) and pool statement (d)

Hope this helps

Cheers!!!

Anoop Pattat said...

Thanks dude for this site, and especially for this nat tutorial, I took the exam today and passed with a score of 947, keep up the good work-

Anonymous said...

Hi a3tips,

I am confusing. According to your formular, if the net has 66 hosts then
256 - (66 + network + broadcast) = 188
the subnet mask = 255.255.255.188
the last octet = 10111100
reverse = 01000011 ==> 68
therefore wild card mask = 0.0.0.68
How did you come up with 0.0.0.127 ??

Thanks for your help.

a3tips said...

Hi,

This formula to get subnet works for only selected numbers of hosts
4 ,8 ,16,32,64,128 .

To find subnet for other numbers of hosts you need to follow the standard formula 2 power n where n is number of hosts bits ..

For your example 66 hosts

to get 66 hosts we need to have 7 bits for host portion remaining 1 bit is for subnet in last octet.

2 power 7 = 127 hosts

Last octet:

SHHHHHHH
Hosts: S1111111 = 127 (Since 6 host bits only provide 64 we need to take 7 bits to provide 66 hosts )
Subnet: 1HHHHHHH = 128 (Mask)

Therefore the subnet mask is 255.255.255.128

last octet 128 : 10000000
Reverse: 01111111 = 127
wild card mask 0.0.0.127

Hope this helps

Cheers

Anonymous said...

hi
i passed my ccna with 995 score thanks. To the p-erson who maintain this blog.
keep up the good work.I got 100% in nat sim+3router+switch sim. And my hats off go to a3tips

Anonymous said...

Hi a3tips,

thanks for this great blog, i just have 1 query, do i need to do this command, or not at all since it's already been configured to the router.

Weaver(config)#interface fastethernet 0/0
Weaver(config-if)#ip nat inside

Weaver(config)#interface serial 0/0
Weaver(config-if)#ip nat outside

TIA

a3tips said...

Hi,

No need to type this nat inside and nat outside commands for SIM since it's already been configured to the router.

However make sure these commands are really present on router by using the SHOW RUN command...

Hope this helps
Cheers

Anonymous said...

Thanks dude, just got 907 :) NAT SIM with overload, 3xrouters 1xsw (which i kinda cocked up). Who cares - I am a CCNA - have beer on me!

Anonymous said...

WOW!!!!!!!! Thanks a million for the NAT sim and ACL sim (this is as real as it can get) The sims seams to scares people away from taking the test but studying your site make it really easy. I just passed the 640-802 with 920/1000.Thank you so much for this blog. This site is more helpful than the CCNA book. Keep up the good work. 

P.S. Just wondering if you had another site for CCDA/CCNP.

Oladiamonds - Nigeria said...

i have taken my time patiently learning from this blog. i will be on to my CCNA exam in the next 1hr 30 mins.
God help me!!!
Anybody has anything for me?
please one more question:

The part on Simulations. Do they go beyond these two sims
NAT SIM and ACL SIM?

please, i need urgent answer. any other sim to practise?

Anonymous said...

Hello everyone,
I passed CCNA exam yesterday :) I had:
- 90% qs from P4S 2.95
- NAT sim with 30 hosts
- 3 router + 1 switch (different IPs)
Scored 881. I made a mistake in cabling I realized just after submitting the topology question..Anyhow I'm very thankful for sharing your knowledge, a3tips you rock, keep it up :)

Anonymous said...

Hi,

I have been looking on this Blog for quite a while and think it is excellent. Please do keep up the good work.

Now, I have been using the P4S v2.95 to help me with the sim and there is a slight difference.

1) P4S does not use the Overload command. Yours does. Could you please clarify which one should be used, and if posssible, why?

2) Should we use the copy run start command at the end to save changes?

Thanks

a3tips said...

Hi,

Use the copy run start command thats always good to save your running-config to start-up

Regarding overload command.. it is compulsory if you have more Local LAN users ( private address range) then the public address provided by ISP.

Overload keyword enable PAT and provide NATing to all the Local address simultaneously.


Hope this helps

Cheers!!!

Kits said...

Hi a3tips,
Who will help me with correct answers for Hotspot question (topology based) I have 2 version with different answer, now I am confuse which one is good. can someone help because tomorrow I have exam. Ur help will be of great value cus of my limited time. Thank u

a3tips said...

Hi Kits,

Go with the answers on the blog.. for topology based questions..

Hope this helps

Cheers!!

Anonymous said...

Hi All,

Passed my CCNA 3rd attempt only because of this blog everything on this blog is good stuff... anyone who about to do there test use this and you will pass good luck..

I need to start on my CCNP next hope I can find a blog like this one for that!!

Cheers

Shrey said...

"Funtionality can be tested by clinking on the host provided for testing"


What is means..

Thanks

Bibek

a3tips said...

Hi Bibek,

The statement is to check whether NAT functionality is working or not by clicking on the host we get pop-ups with Command line interface of testing host... once you perform ping on CLI then you can check whether NATing is performed by router using show ip nat translation command..

Hope this helps
Cheers!!!

Keira said...

This exact NAT question came in the exam. I still managed to fail the exam with 775.. I cldnt finihs the exam on time and didnt add the overload command. I am really bummed. Do you know if harder questions like configuring frame relay , vlans etc have showed up in sim questions. I plan to take it in 2 weeks again. Thanks for all the help.

Tom said...

A3,
Your blog was very instrumental in my success today. I scored 1000/1000 on the exam, taking less than thirty minutes to complete.

A lot of my study time was spent going over your site with a fine-tooth comb. Thank you for taking the time to assemble all this good information.
To those about to take the exam, my study included an How2Pass 60-day subscription, Sybex CCNA 640-802 study book, this awesome site, and prayer... No, seriously. I prayed for peace that would give me a clear head, and a score of 1000 out of 1000. I would encourage anyone seeking the CCNA certification to read and understand the content on this blog. If it makes sense here then it will make sense in the exam too.

To the author of this site, may your diligence reward you well.

Waqas Ahmed said...

Hi,

My exam is on 14 june 2008, i have
practice pass4sure 3.10, test inside v 14 and repeat the books two times,
and i have also cover questions on your site, Do you think its enough , what else i do ??

I am really nervous, my hands are shaking :-(

Tell me about latest labs too.

Regards,
Waqas Ahmed

a3tips said...

Hi Waqas,

Just go do your best.. If you are good at subnetting and you already covered both p4s and testinside.. you are on your way to pass CCNA..

Remember to get your SIMs correct...master them more then other questions..

Cheers!!

Anonymous said...

This blog is very helpful. I scored 996 on my 640-802. Material use was this blog and product from certifyme.com/640-802.htm

prince said...

Hai, Thanks a lot for this blog. this is excellent and very helpfull to study. I suggest everyone to go through this site before going to attend CCNA exam. I got 1000/1000 marks, once again thankfull for the people who maintainig this site. Please go ahead and add CCNP questions also.

Anonymous said...

hey, me in Pakistan and on 2nd of this month i gave 640-802 papers my concepts were already way cleared with the help of my teacher but this site made me accurate at the last moment and literally i find it at the last moment and scored 100% at nat sim and overall 933/1000.

keep it up and plz do bring up for CCNP....

Anonymous said...

Passed CCNA 640-802 on monday 14 july
1000/1000
nat sim, pluz 3 router 1 switch

this site is superb

keep up the good work.

Ron
Fiji

Anonymous said...

Good work here a3tips. A quick general question on the NAT configuration here. Is it not necessary to apply the access list to the fast ethernet interface of the router in the inward direction.?
Your response is appreciated. Big up man.

a3tips said...

Hi,

The access-list we created is ONLY used to match the addresses that need to be part of NAT translation..

We only use this access-list at following command in NAT SIM

ip nat inside source list 10 pool isp_adr overload

10 in above command identifies the access-list we created earlier.

Hope this helps

Cheers!!!!

Anonymous said...

The pool "isp_adr" name could be any name correct? Example: pool outside

I just missed passing the first time because I choked on this question.

Also has anyone seen any other SIMs on the 640-802 test besides this and the Topology SIM?

I planning on buying the blog owner a few beers when I finally pass. :D

a3tips said...

Yes the pool name can be anything but remember to use same pool name through out NAT SIM.
Example:
Weaver(config)#ip nat pool POOL-NAME 198.18.184.105 198.18.184.110 netmask 255.255.255.248

Weaver(config)#ip nat inside source list 10 pool POOL-NAME overload


Cheers!!

Kimberley said...

I am looking at the question and I don't see where it tells you the pool name. How do you know what the pool name is?

a3tips said...

Hi Kimberley,

Pool name in SIM is user defined and you can choose any name but need to use same name through out SIM once you create it .

hope this helps
Cheers!!!!

Anonymous said...

You are a freaking king! i passed with a 986/1000 today on the ccna 802 cuz of your amazing website. Keep up the good work!

Anonymous said...

A3Tips,

I was put onto this website by a lady friend of mine who ranted and raved about how well it helped her pass CCNA. Well she was definitely right! Pretty much every single question was verbatim, aside from the NAT SIM and Topology Lab. I pretty much breezed through the exam within 60 mins and still got a 973. Got 100% in all sections, except 89% in topology (I know I messed up somewhere).

P4S lists test versions A-E, however, the test was completely random, so knowing them all is helpful. Moreso than anything, after reviewing all of my notes, this site helped to answer a lot of questions, especially with the WRONG answers in P4S, so things started making sense again. Furthermore, I'm a confident CCNA now and recently got employment in that few only a few short weeks afterward, just as my friend did, with not much networking experience. Can't speak for everyone else, but I'm definitely sold! She's on CCNP BSCI now and we'll both definitely be back when it's up. Please, have a VERY well-deserved pitcher on us! -Brandon

Anonymous said...

A3Tips,

I was put onto this website by a lady friend of mine who ranted and raved about how well it helped her pass CCNA. Well she was definitely right! Pretty much every single question was verbatim, aside from the NAT SIM and Topology Lab. I pretty much breezed through the exam within 60 mins and still got a 973. Got 100% in all sections, except 89% in topology (I know I messed up somewhere).

P4S lists test versions A-E, however, the test was completely random, so knowing them all is helpful. Moreso than anything, after reviewing all of my notes, this site helped to answer a lot of questions, especially with the WRONG answers in P4S, so things started making sense again. Furthermore, I'm a confident CCNA now and recently got employment in that few only a few short weeks afterward, just as my friend did, with not much networking experience. Can't speak for everyone else, but I'm definitely sold! She's on CCNP BSCI now and we'll both definitely be back when it's up. Have a Pitcher on us! -Brandon

Anonymous said...

Thank you for the blog.
I passed my CCNA today after studying this blog primarily.
It is very much on point and the explanations help alot.
I will buy you a beer!!!

Anonymous said...

hi,
i have a doubt.
below is the ip range given n pass4sure for 62 hosts
192.168.6.65-192.168.6.1.126 /26
in this ip range which format shall i apply
access-list 1 permit 192.168.6.65 0.0.0.63 or
access-list 1 permit 192.168.6.64 0.0.0.63

pls clarify

thx 4 ur help

a3tips said...

Hi,

Regarding your question for IP range
192.168.6.65-192.168.6.1.126 /26

Explanation:

Find out the subnet mask first

/26 : 8bits + 8bits +8bits + 2bits

i.e :: 255.255.255.11000000
subnet mask : 255.255.255.192

We must find out the Network address for the provided range

The subnet networks for this subnet mask are
192.168.6.0 - 192.168.6.63
192.168.6.64 - 192.168.6.127 ( Provided range )
192.168.6.128 - 192.168.6.191
192.168.6.192 - 192.168.6.255

for the provided range of address

192.168.6.64 is network address
192.168.6.127 is broadcast address

Now we create the access-list using this network address and also the wildcard mask for /26 network

To get wildcard mask from known subnet mask is

255.255.255.192

First convert the subnet mask into binary format ( 1 and 0)

11111111.11111111.11111111.1100000

Now reverse 1's into 0 's for above binary format of subnet mask

we get wildcard mask

00000000.00000000.00000000.00111111

Now convert them to decimal format

0.0.0.63

thats our wildcard mask

So now we have network address and wildcard mask to create ACL.


So you need to use

access-list 1 permit 192.168.6.64 0.0.0.63

HTH

cheers

Anonymous said...

Big thanks to this blog and comments.I have passed my CCNA 640-802 today after second attempt.I give my all thanks to people who run this blog who helped me succeed in my exam.If I knew this blog before I would definitely pass my CCNA at the first time.

Rob said...

Passed my CCNA TODAY!!!!

I got this SIM and the one to configure RIPV2 along with other basic configs.

Tough test but this site really helped. BSCI is up next. So i'm headed over to your blog site for that test.

Your site is the best thing since sliced bread. I'll be sure to buy you a beer my man

happy guy said...

I passed my 640-802, score 986/1000 yesterday. All SIM over here are very helpful to my result! Thank you very much!

Anonymous said...

Hi regarding the Overload NAT sim syntax, as not stated in Tom lammle's (mistake ridden sybex book) it's perfectly ok to use more than one IP for a nat overload?

he clearly does not mention using more than 1 IP for example...

ip nat pool akira 64.1.1.5 64.1.1.5 netmask 255.255.255.0

i can use a multiple range and still use overload

ip nat pool akira 64.1.1.5 64.1.1.10 255.255.255.248

thanks

Anonymous said...

Thanks so much for the SIM labs post. I passed it at my first attempt on 5/7/09. Just a reminder,
practice the SIM part as much as possible. Very important: the CCNA test dosen't allow you to go back to previous questions like other
tests. Once you enter your answer and click Next, you have no way to change it any more.

Good luck.

Anonymous said...

"a3tips" thanks a lot , your blog helped me a bunch , i passed the CCNA today , im getting you a pitcher. Thanks again.

Noordin said...

hi A3.., u rock pal, after 8 wks of study nd comin across ur dumps the last wk b4 the exam, i passed.... i did d exam yesterday and ACL, NAT sim, RIPv2, Frame Relay Topology was all thea, only subnets changing. tahnks again nd hey whenever u decide 2 visit Kenya, let me know............ the treat is on me

regards

Humberto said...

Thanks for all your help!! Enjoy that pitcher!

Anonymous said...

hi thanks alot .... i passed my exam after studying at this site!!!
M surely getting u keg 4get abot the jug ...
thanks alot once again ... u the king dude

Anonymous said...

Passed today with score above 900. I got this SIM and RIPv2 SIM. Same goal different IP addresses.

Study Material Used:

1. CCNA Study guide 640-802 Sixth edition by Todd Lammle
2. Pass4sure 640-802 Q&A paid version 8.14
3. This site

Thank you ac3tips and team!!

Priyankara said...

Try this.. something new

I'm pretty sure that this is gonna help you guy's

http://rapidshare.com/files/141427586/Testking_640-802_V18.rar

Sigma said...

Hi,
The exam has changed alot since i last wrote it. A lot of routed and routing protocol based questions that P4S and actual tests and all those other stuff dont cover. 640-802 has a upgrade in the pool of questions as of 4th Sept. 09. The Simulations listed on this site are real and are still present in the exam. I got the NAT sim in mine and let me say I went through every Sim on this site 3 times before i went into the exam. I suggest you read the CCNA text well and use the SIMS listed on this site.

Anonymous said...

Hi I have passed today with 972 marks
Thanks for this heeeelpful blog

Anonymous said...

I passed my CCNA exam yesterday. There was the same lab with another values. Thank you for this blog!!

Anonymous said...

Wow A3, u're the best. passed my CCNA today with 944 mark. 2nd attempt tho & a week apart frm 1st just so i dont forget wat i knew b4. besides training, ur site plus P4S, CBTNugget & Todd Lammle book helped me but ur site contributed most cos of d Sims. u gt my beer already

Yemi

Anonymous said...

Can somebody tell how many questions are there in the exam and what time do we have to finish it? Thanks

Anonymous said...

I did the exam today ..passed with 916/1000..the simulation questions were same NAT and RIP ..thanks to this site..also know subnetting well..couple of questions on RSTP also..

Anonymous said...

Hi,

I've just passed my exam yesterday with a 957 mark. First of all I want to thank God for helping me with this exam. I also want to thank whoever is in charge of this site. The Nat Simulator is the same except that the inside local addreses were 30 instead of 14. everything else was the same.

Also I got a RIP simulator (version 2), pretty simple. A lot of questions were exactly as they appear here.

Also, study pass4sure (473 questions), many questions are exactly as they appear there. I purchased Pass4sure
program in ebay for 99 cents.

I also used Tom Lammle's book. I want to give credit to him aswell.

Thanks a lot and I will buy a couple of beers for a3tips.

Please continue providing this great help!

Anonymous said...

Pretty nice post. I simply stumbled upon your weblog and wished to say that I have
really loved browsing your weblog posts. After all I will be subscribing for your feed and I am hoping you write once
more very soon!

Also visit my site ... how much should you weigh