• Description:Securing Cisco Networking Devices (SND)
• Passing Score:0%
• Practice Test - Number of questions:51 questions
• Simulation Test - Number of questions:51 questions
• Simulation Test Duration:120 minutes
• Has explanations:No

A mission critical server application embeds a private IP address and port number in the payload of packets that is used by the client to reply to the server. Why is implementing NAT over the Internet supporting this type of application an issue?

Answer(s)

1. Embedded IP addresses causes NAT to do extensive packet manipulation. This process is very timeintensive and the added delay causes the connection in these types of applications to time out and fail.
2. When the client attempts to reply to the server using the embedded private IP address instead of the publicIP address mapped by NAT, the embedded private IP address will not be routable over the Internet.
3. NAT traversal can't be used for embedded IP addresses. Mission critical applications typically use NATtransversal to ensure stable timely connections, but not when embedded IP addresses and ports are used.
4. Using NAT makes troubleshooting difficult. You must know the IP address assigned to a device on its NICand its translated address; it takes too long to determine the source and destination of an embedded IP address,and this delay is not appropriate for mission critical applications.

When the client attempts to reply to the server using the embedded private IP address instead of the publicIP address mapped by NAT, the embedded private IP address will not be routable over the Internet.