Question 1hardmultiple choice
Full question →hardmultiple choiceObjective-mapped
Exhibit
`ip nat inside source list 1 interface GigabitEthernet0/1 overload`
A router is configured for PAT using the WAN interface address. Which command element is most directly associated with allowing many internal users to share that single outside address?
Answer choices
Why each option matters
Good practice is not just finding the correct option. The wrong answers often show the exact trap the exam wants you to fall into.
A
Best answer
overload
This is correct because `overload` enables PAT behavior using transport-layer ports.
B
Distractor review
inside
This is wrong because `inside` helps define translation direction but does not by itself create many-to-one sharing.
C
Distractor review
list 1
This is wrong because the ACL identifies matching source addresses, but `overload` is the keyword that enables PAT sharing.
D
Distractor review
interface
This is wrong because using an interface address is part of the source choice, but `overload` is the PAT-enabling element.
Common exam trap
Common exam trap: answer the scenario, not the keyword
A common exam trap is selecting options like `inside`, `list 1`, or `interface` as the element that enables multiple internal users to share a single outside address. While these elements are part of the NAT configuration, they do not by themselves enable PAT. The `inside` keyword only marks interfaces as internal, the ACL (`list 1`) defines which addresses are translated, and specifying the `interface` chooses the public IP address source. However, without the `overload` keyword, the router cannot perform port-based multiplexing, so many-to-one sharing fails. Candidates often overlook that `overload` is the explicit command that activates PAT, making it the correct answer.
Technical deep dive
How to think about this question
Port Address Translation (PAT) is a form of Network Address Translation (NAT) that allows multiple internal hosts to share a single public IP address by differentiating sessions through unique transport-layer port numbers. The core concept behind PAT is that it translates multiple private IP addresses and their source ports into a single public IP address and distinct port numbers, enabling many-to-one address mapping. This is essential in IPv4 networks where public addresses are limited and internal hosts require simultaneous Internet access. In Cisco IOS NAT configuration, the keyword `overload` is the critical command element that activates PAT behavior. When configuring NAT with the `ip nat inside source list <ACL> interface <interface> overload` command, `overload` instructs the router to use the interface’s IP address as the public address and to track multiple sessions by assigning different source port numbers. Without `overload`, the router performs basic NAT, which is one-to-one mapping, and cannot support multiple internal hosts sharing a single outside IP address. A common exam trap is confusing the role of the `overload` keyword with other NAT configuration elements such as access lists or interface declarations. While access lists define which internal addresses are translated and interfaces specify the NAT direction, only `overload` enables the many-to-one port translation that characterizes PAT. Practically, without `overload`, the router cannot multiplex multiple internal sessions through a single public IP, leading to failed translations and connectivity issues in real networks.
KKey Concepts to Remember
- The `overload` keyword in Cisco NAT configuration enables Port Address Translation, allowing many internal hosts to share a single public IP address by using unique transport-layer ports.
- Access control lists (ACLs) in NAT configurations define which internal IP addresses are eligible for translation but do not enable many-to-one address sharing by themselves.
- Specifying the interface in NAT commands determines the source IP address used for translation but does not activate PAT functionality without the `overload` keyword.
- Without the `overload` keyword, NAT performs one-to-one address translation, limiting the router to translating only as many internal hosts as there are public IP addresses.
- PAT relies on tracking source port numbers to distinguish multiple simultaneous sessions from different internal hosts sharing the same outside IP address.
- Cisco routers use the `ip nat inside` and `ip nat outside` interface designations to define translation direction but these do not affect the many-to-one sharing capability.
- The `overload` keyword is unique to Cisco IOS NAT configurations and is the defining element that differentiates PAT from basic NAT.
- Understanding the role of `overload` helps avoid misconfigurations that prevent multiple internal users from accessing external networks simultaneously.
TExam Day Tips
- Watch for words such as best, first, most likely and least administrative effort.
- Review why wrong options are wrong, not only why the correct option is correct.
Related practice questions
Related 200-301 practice-question pages
Use these pages to review the topic behind this question. This is how one missed question becomes focused revision.
CCNA subnetting practice questions
Practise IPv4 subnetting, CIDR, masks, host ranges and subnet selection.
CCNA OSPF practice questions
Practise OSPF neighbours, router IDs, metrics, areas and routing-table interpretation.
CCNA VLAN practice questions
Practise VLANs, access ports, trunks, allowed VLANs and switching scenarios.
CCNA STP practice questions
Practise spanning tree, root bridge election, port roles and STP troubleshooting.
CCNA EtherChannel practice questions
Practise LACP, PAgP, port-channel behaviour and bundle requirements.
CCNA ACL practice questions
Practise standard and extended ACLs, permit/deny logic and traffic filtering.
CCNA NAT practice questions
Practise static NAT, dynamic NAT, PAT and inside/outside address translation.
CCNA DHCP practice questions
Practise DHCP scopes, relay, leases and troubleshooting.
CCNA show ip route practice questions
Practise routing-table output, longest-prefix match, AD and route selection.
CCNA show interfaces trunk practice questions
Practise trunk verification and VLAN forwarding across switches.
CCNA wireless security practice questions
Practise WLAN security, authentication and wireless architecture concepts.
CCNA IPv6 practice questions
Practise IPv6 addressing, routes, neighbour discovery and common IPv6 exam traps.
More questions from this exam
Keep practising from the same exam bank, or move into a focused topic page if this question exposed a weak area.
Question 1
A router learns the same prefix from both OSPF and EIGRP. Which route is installed by default?
Question 2
A router shows this output: R1#show ip ospf neighbor Neighbor ID Pri State Dead Time Address Interface 10.1.1.2 1 FULL/DR 00:00:34 192.168.12.2 GigabitEthernet0/0 10.1.1.3 1 2WAY/DROTHER 00:00:39 192.168.12.3 GigabitEthernet0/0 Which statement is correct?
Question 3
What is the OSPF metric called?
Question 4
A non-root switch has two uplinks toward the root bridge. One path has a lower total STP cost than the other. What role will the lower-cost uplink have?
Question 5
A router interface applies this ACL inbound: 10 deny tcp any any eq 80 20 permit ip any any A user reports that web browsing to a server by IP address fails, but ping works. Which statement best explains the behavior?
Question 6
A router learns route 198.51.100.0/24 from OSPF with AD 110 and also has a static route to the same prefix configured with AD 150. Which route is installed?
FAQ
Questions learners often ask
What does this 200-301 question test?
The `overload` keyword in Cisco NAT configuration enables Port Address Translation, allowing many internal hosts to share a single public IP address by using unique transport-layer ports.
What is the correct answer to this question?
The correct answer is: overload — The `overload` element is the critical part. In plain language, that keyword tells the router to perform Port Address Translation so many inside sessions can be represented through the same outside IP address at the same time. Without overload, the router would be performing a different translation behavior and would not achieve the same many-to-one sharing model. This is one of the most recognizable NAT design terms in CCNA because it directly distinguishes PAT from simple one-to-one translation methods. The correct answer is the part of the configuration that signals multi-session sharing through port tracking.
What should I do if I get this 200-301 question wrong?
Then try more questions from the same exam bank and focus on understanding why the wrong options are tempting.
Discussion
Loading comments…
Sign in to join the discussion.