Question 1mediummultiple choice
Full question →mediummultiple choiceObjective-mapped
Exhibit
R1(config)# access-list 1 permit 192.168.10.0 0.0.0.255 R1(config)# ip nat inside source list 1 interface g0/1 overload R1# show ip nat translations Pro Inside global Inside local Outside local Outside global udp 203.0.113.10:1054 192.168.10.25:1054 8.8.8.8:53 8.8.8.8:53
Exhibit: A router is configured for PAT overload. What does the inside global address represent for an internal PC?
Answer choices
Why each option matters
Good practice is not just finding the correct option. The wrong answers often show the exact trap the exam wants you to fall into.
A
Distractor review
The private IP address assigned to the internal PC
That is the inside local address.
B
Best answer
The public address that represents the internal PC to external networks
That is the inside global address.
C
Distractor review
The remote server address as seen from the inside host
That refers to outside local or outside global depending on context.
D
Distractor review
The MAC address of the outside interface
NAT tracks IP translation, not MAC identities in that field.
Common exam trap
Common exam trap: answer the scenario, not the keyword
A frequent exam trap is mistaking the inside global address for the inside local address. Candidates often confuse the private IP assigned to the internal PC (inside local) with the public IP address used externally (inside global). Another pitfall is mixing up inside global with outside local or outside global addresses, which relate to remote hosts rather than internal devices. This confusion can lead to incorrect NAT configuration interpretations or troubleshooting errors. Remember, the inside global address is the public IP visible to external networks representing the internal PC, not the private IP assigned inside the LAN.
Technical deep dive
How to think about this question
Network Address Translation (NAT) is a fundamental IP service used to translate private IP addresses inside a local network to public IP addresses for communication over the internet. Port Address Translation (PAT), also known as NAT overload, allows multiple internal hosts to share a single public IP address by differentiating sessions using unique port numbers. In this context, the inside local address is the private IP assigned to an internal device, while the inside global address is the public IP address that external networks see and use to communicate with that device. The inside global address represents the translated public IP address assigned to an internal PC when NAT overload is configured on a router. This address is what external hosts on the internet use to send traffic back to the internal PC. The router maintains a translation table mapping inside local addresses and ports to inside global addresses and ports, enabling multiple devices to share one public IP. This mechanism is critical for conserving IPv4 addresses and enabling secure, scalable internet access for private networks. A common exam trap is confusing the inside global address with the inside local address or outside addresses. The inside local address is the private IP of the internal host, not visible externally. The outside local and outside global addresses refer to remote hosts from the internal perspective and are unrelated to the inside global concept. Understanding these distinctions is essential for correctly interpreting NAT configurations and troubleshooting connectivity issues in Cisco environments.
KKey Concepts to Remember
- NAT translates private IP addresses to public IP addresses to enable communication between internal hosts and external networks.
- PAT overload allows multiple internal devices to share a single public IP address by using unique source port numbers for each session.
- The inside local address is the private IP address assigned to an internal host within the local network.
- The inside global address is the public IP address that represents an internal host to external networks during NAT translation.
- Routers maintain translation tables mapping inside local addresses and ports to inside global addresses and ports for proper session tracking.
- Inside global addresses are used by external devices to initiate return traffic to the correct internal host behind NAT.
- Confusing inside local and inside global addresses is a common mistake that can lead to misinterpretation of NAT behavior.
- Outside local and outside global addresses refer to remote hosts and are distinct from inside global addresses in NAT terminology.
TExam Day Tips
- Watch for words such as best, first, most likely and least administrative effort.
- Review why wrong options are wrong, not only why the correct option is correct.
Related practice questions
Related 200-301 practice-question pages
Use these pages to review the topic behind this question. This is how one missed question becomes focused revision.
CCNA subnetting practice questions
Practise IPv4 subnetting, CIDR, masks, host ranges and subnet selection.
CCNA OSPF practice questions
Practise OSPF neighbours, router IDs, metrics, areas and routing-table interpretation.
CCNA VLAN practice questions
Practise VLANs, access ports, trunks, allowed VLANs and switching scenarios.
CCNA STP practice questions
Practise spanning tree, root bridge election, port roles and STP troubleshooting.
CCNA EtherChannel practice questions
Practise LACP, PAgP, port-channel behaviour and bundle requirements.
CCNA ACL practice questions
Practise standard and extended ACLs, permit/deny logic and traffic filtering.
CCNA NAT practice questions
Practise static NAT, dynamic NAT, PAT and inside/outside address translation.
CCNA DHCP practice questions
Practise DHCP scopes, relay, leases and troubleshooting.
CCNA show ip route practice questions
Practise routing-table output, longest-prefix match, AD and route selection.
CCNA show interfaces trunk practice questions
Practise trunk verification and VLAN forwarding across switches.
CCNA wireless security practice questions
Practise WLAN security, authentication and wireless architecture concepts.
CCNA IPv6 practice questions
Practise IPv6 addressing, routes, neighbour discovery and common IPv6 exam traps.
More questions from this exam
Keep practising from the same exam bank, or move into a focused topic page if this question exposed a weak area.
Question 1
A router learns the same prefix from both OSPF and EIGRP. Which route is installed by default?
Question 2
A router shows this output: R1#show ip ospf neighbor Neighbor ID Pri State Dead Time Address Interface 10.1.1.2 1 FULL/DR 00:00:34 192.168.12.2 GigabitEthernet0/0 10.1.1.3 1 2WAY/DROTHER 00:00:39 192.168.12.3 GigabitEthernet0/0 Which statement is correct?
Question 3
What is the OSPF metric called?
Question 4
A non-root switch has two uplinks toward the root bridge. One path has a lower total STP cost than the other. What role will the lower-cost uplink have?
Question 5
A router interface applies this ACL inbound: 10 deny tcp any any eq 80 20 permit ip any any A user reports that web browsing to a server by IP address fails, but ping works. Which statement best explains the behavior?
Question 6
A router learns route 198.51.100.0/24 from OSPF with AD 110 and also has a static route to the same prefix configured with AD 150. Which route is installed?
FAQ
Questions learners often ask
What does this 200-301 question test?
NAT translates private IP addresses to public IP addresses to enable communication between internal hosts and external networks.
What is the correct answer to this question?
The correct answer is: The public address that represents the internal PC to external networks — With NAT overload, the inside local address is the private address on the internal host. The inside global is the translated public address that represents that inside host to the outside network.
What should I do if I get this 200-301 question wrong?
Then try more questions from the same exam bank and focus on understanding why the wrong options are tempting.
Discussion
Loading comments…
Sign in to join the discussion.