检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
None Brief Intriduction NAT Gateway Brief Introduction 03:33 NAT Gateway Brief Introduction Operation Guide NAT Gateway Configuring SNAT rules to enable servers in a VPC to access the Internet 02:36 Configuring SNAT rules to enable servers in a VPC to access the Internet NAT Gateway
Public NAT Gateway: All regions Adding an SNAT Rule (Public NAT Gateway) Adding a DNAT Rule (Public NAT Gateway) Enterprise Project NAT Gateway resources can be managed by enterprise project.
What Is NAT Gateway? NAT Gateway is a network address translation (NAT) service. It can be a public NAT gateway or a private NAT gateway.
You are advised to use the latest version of NAT Gateway SDKs to better protect your data. You can download the latest SDKs in your desired language from NAT Gateway SDKs. Do not use high-risk ports for DNAT rules.
NAT Gateway Infographics
Step 2: Create a Public NAT Gateway Go to the Buy Public NAT Gateway page. On the Buy Public NAT Gateway page, configure required parameters.
NAT Gateway and Other Services Figure 1 shows the relationship between NAT Gateway and other services.
The following section contains examples of common NAT Gateway custom policies.
Step 3: Create a Private NAT Gateway Go to the Buy Private NAT Gateway page. On the Buy Private NAT Gateway page, configure required parameters.
NAT Gateway Advantages Advantages of Public NAT Gateways Flexible deployment A NAT gateway can be shared across subnets and AZs, so that even if an AZ fails, the public NAT gateway can still run normally in another AZ.
Select a public NAT gateway based on your service requirements. Table 1 lists the public NAT gateway specifications.
Private NAT Gateway Tags Querying Private NAT Gateways by Tag Querying Tags of All Private NAT Gateways in a Project Querying Tags of a Private NAT Gateway Adding a Tag to a Private NAT Gateway Batch Adding or Deleting Tags to or from a Private NAT Gateway Deleting a Tag from a Private
NAT Gateway Application Scenario If multiple cloud servers need to access the Internet without binding EIPs, you can use a NAT gateway to share EIPs and prevent the IP addresses of the servers from being exposed to the Internet.
Creating a User and Granting NAT Gateway Permissions This section describes how to use IAM to implement fine-grained permissions control for your NAT Gateway resources. With IAM, you can: Create IAM users for employees based on your enterprise's organizational structure.
Can I Change the VPC for a Public NAT Gateway? No. The VPC you selected when you buy a public NAT gateway cannot be changed after the public NAT gateway is created. Parent topic: Public NAT Gateways
The total number of DNAT and SNAT rules that can be added on a private NAT gateway varies with the private NAT gateway specifications.
Auto-renewing a NAT Gateway Auto-renewal can prevent NAT gateways from being automatically deleted if you forget to manually renew them. The auto-renewal rules are as follows: The first auto-renewal date is based on when a NAT gateway expires and the billing cycle.
Parent Topic: Private NAT Gateway Tags
To allow traffic to pass through the public NAT gateway, a route to the public NAT gateway in the VPC is required. When you buy a public NAT gateway, a default route 0.0.0.0/0 to the public NAT gateway is automatically added to the default route table of the VPC.
The value can be: ACTIVE: The public NAT gateway is available. PENDING_CREATE: The public NAT gateway is being created. PENDING_UPDATE: The public NAT gateway is being updated. PENDING_DELETE: The public NAT gateway is being deleted.
Updating a Public NAT Gateway Function This API is used to update a public NAT gateway. The name, description, and specifications of a public NAT gateway can be updated when admin_state_up is True and status is ACTIVE.
