检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
Procedure Go to the private NAT gateway list page. On the Private NAT Gateways page, click the name of the private NAT gateway. On the private NAT gateway details page, click the DNAT Rules tab.
A NAT gateway supports up to 55,000 concurrent connections to each destination IP address and port. If any of the destination IP address, port number, and protocol (TCP, UDP, or ICMP) changes, you can create another 55,000 connections.
Supported range: 0 to 65535 nat_gateway_id String Specifies the public NAT gateway ID. global_eip_id String Specifies the global EIP ID.
A maximum of 200 DNAT rules can be added on a public NAT gateway. Procedure Go to the public NAT gateway list page. On the displayed page, click the name of the public NAT gateway on which you need to add a DNAT rule.
Prerequisites A private NAT gateway is available. A transit IP address is available. A Direct Connect connection has been created with the VPC CIDR block set to 0.0.0.0/0. For details, see Create a Virtual Gateway. Procedure Go to the private NAT gateway list page.
Scenarios This section describes how to view NAT Gateway metrics. Procedure Log in to the management console. In the upper left corner, select the target region. Under Management & Governance, select Cloud Eye.
Prerequisites A private NAT gateway is available. A transit IP address is available. Procedure Go to the private NAT gateway list page. On the Private NAT Gateways page, click the name of the private NAT gateway on which you need to add a DNAT rule.
Viewing Traces Scenarios CTS records the operations performed on NAT Gateway and allows you to view the operation records of the last seven days on the CTS console. This topic describes how to query these records. Procedure Log in to the management console.
Procedure Go to the private NAT gateway list page. On the Private NAT Gateways page, click the name of the private NAT gateway. In the SNAT rule list, locate the row that contains the SNAT rule you want to delete and click Delete in the Operation column.
Procedure Go to the private NAT gateway list page. In the Transit IP Addresses tab, locate the transit IP address you want to release and click Release in the Operation column. Click OK.
Constraints When you are creating a DNAT rule, status of the NAT gateway must be set to ACTIVE. Calling Method For details, see Calling APIs.
Return to the Public NAT Gateway page and check whether Billing Mode of the Public NAT gateway has changed to Yearly/Monthly. Parent topic: Billing Mode Changes
Step 4: Create a Route Table Scenarios Each public NAT gateway requires its unique route table. Create the second route table for the VPC. If the custom route table quota is insufficient, create a service ticket to increase the route table quota.
Table 2 Common operations supported by each system-defined policy or role of NAT Gateway Operation NAT FullAccess NAT ReadOnlyAccess NAT Gateway Administrator Creating a NAT gateway √ x √ Querying NAT gateways √ √ √ Querying NAT gateway details √ √ √ Updating a NAT gateway √ x √ Deleting
If you change the billing mode of a public NAT gateway from pay-per-use to yearly/monthly, the new billing mode will take effect immediately. Private NAT gateway supports only the pay-per-use billing mode (hourly) and the billing mode cannot be changed.
NAT Gateway does not provide access control and can only forward traffic based on rules. To restrict access to some websites, you can configure security groups and ACL rules. For details, see Security Group Configuration Examples and Network ACL Configuration Examples.
Allowing VPCs to Share an EIP to Access the Internet Using Enterprise Router and NAT Gateway Overview Network and Resource Planning Creating Resources Configuring Networks Verifying Network Connectivity
Constraints When you are creating an SNAT rule, status of the NAT gateway must be set to ACTIVE. Calling Method For details, see Calling APIs.
For details, see NAT Gateway Pricing Details.
The NAT Gateway billing mode cannot be changed from yearly/monthly to pay-per-use on the NAT Gateway console. To do so, go to the Billing & Costs > Renewals page. Parent topic: Billing Mode Changes
