🔍
🌐 Web
📄 HTML 🎨 CSS JavaScript 🐘 PHP 🔍 SEO 🅱️ Bootstrap New 🌬️ Tailwind CSS Soon 🔷 TypeScript Soon
🔤 Languages
🐍 Python 🗄️ SQL 🔵 C Programming Soon 🟣 C++ Soon Java Soon 💎 Ruby Soon
💻 CS Basics
🖥️ Computer Basics ⚙️ Operating Systems 📊 Data Structures 🧮 Algorithms 🗄️ DBMS 🏗️ Software Engineering 🏛️ Computer Architecture
🌐 Networking
📡 Computer Networks 🔗 OSI Model 🌍 TCP/IP 🔒 HTTP & HTTPS 📶 DNS Explained
🔐 Security
🛡️ Cyber Security 🕵️ Ethical Hacking 🔑 Passwords & Privacy 🦠 Viruses & Malware 🔏 VPN & Firewall 🎣 Social Engineering 🔐 Cryptography & Encryption
🤖 AI & Data
🤖 Artificial Intelligence 🧠 Machine Learning 📊 Data Science ☁️ Big Data 💬 Prompt Engineering
🛠️ Tools
🐙 Git & GitHub 📝 VS Code Tips 💻 Command Line 📋 Cheat Sheets Interview Q&A 🏆 Quizzes
👶 Kids📝 Blog About Contact 🚀 Get Started Free

NAT & PAT Explained

Learn how Network Address Translation (NAT) and Port Address Translation (PAT) allow private devices to share a single public IP address.

The Problem NAT Solves

IPv4 addresses are 32 bits long, providing about 4.3 billion addresses. Because of the explosive growth of the internet, we ran out of unique public IPv4 addresses.

To solve this, NAT (Network Address Translation) was introduced. It allows an entire local network (LAN) containing hundreds of devices to share a single public IP address to access the internet.

NAT acts like a mailroom clerk in an office building. The building has one public mailing address, and the clerk routes incoming mail to specific desks.

How NAT Works (Step-by-Step)

  1. A device with private IP 192.168.1.5 sends a packet to a website (public IP 8.8.8.8).
  2. The packet arrives at the router. The router sees the private source IP (which cannot be routed on the public internet).
  3. The router replaces the private source IP with its own public IP (e.g., 203.0.113.1).
  4. The router saves this mapping (private IP ↔ public IP) in its internal NAT Translation Table.
  5. The router sends the packet to the website.
  6. When the website replies, the packet arrives at the router's public IP.
  7. The router looks at its NAT table, translates the destination public IP back to the device's private IP (192.168.1.5), and forwards it to the LAN.

Types of NAT

  • Static NAT (One-to-One) — Maps a single private IP address to a single public IP address permanently. Commonly used for web servers hosted inside a private network that must be reachable from the outside.
  • Dynamic NAT (Many-to-Many) — Maps private IP addresses to a pool of public IP addresses on a first-come, first-served basis.
  • PAT (Port Address Translation / NAT Overload) — The most common type of NAT. Maps multiple private IP addresses to a single public IP address by assigning unique source port numbers to each session.

Port Address Translation (PAT) in Detail

Since multiple devices on a LAN might try to access the internet at the same time, the router uses ports to keep track of who gets what response:

  • Device A (192.168.1.5) sends traffic from port 5000. Router translates it to: Public IP, port 10001.
  • Device B (192.168.1.10) sends traffic from port 5000. Router translates it to: Public IP, port 10002.
  • When responses return on ports 10001 and 10002, the router knows exactly which local IP to forward the packets to.

Benefits and Drawbacks of NAT

Benefits

  • Conserves IP Addresses — Dramatically slows the depletion of IPv4 addresses.
  • Security — Hides internal IP addresses from the public internet, making it harder for external attackers to target individual local computers.

Drawbacks

  • Performance — Router has to unpack, translate, and repack every packet header, adding minor latency.
  • End-to-End Traceability — Makes tracking the exact source device of network traffic more difficult.
  • Compatibility — Certain protocols (like older VoIP systems) don't work well with translated ports without additional helper services.

What's Next?

Learn more about how routers manage IP assignments in IP Addressing & Subnetting, or see how packets travel across networks in Routing & Switching.