检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
Buy two EIPs and configure a NAT gateway. Buy an EIP in CN East-Shanghai1 and bind the EIP to Eth 0 (172.16.100.100). For details, see Assigning an EIP and Binding It to an ECS. In AP-Singapore, buy an EIP and a public NAT gateway, and add a DNAT rule.
Permissions Management Creating a User and Granting NAT Gateway Permissions NAT Gateway Custom Policies
Billing FAQs How Is Private NAT Gateway Billed? How Many Private NAT Gateways Can I Buy in a VPC?
API v2.0 Public NAT Gateways SNAT Rules DNAT Rules Public NAT Gateway Tags Quota API Version Parent Topic: Out-of-Date APIs
Application Examples Example 1: Creating a Public NAT Gateway and Configuring an SNAT Rule Example 2: Creating a Public NAT Gateway and Configuring a DNAT Rule
NATNetname-workspace_subnet01 NAT Gateway Specification Specifications of the public NAT gateway. If an existing NAT gateway is used, you do not need to configure this parameter. To create an NAT gateway, you need to configure the NAT gateway specifications.
Enable NAT traversal on the customer gateway based on the networking. If the customer gateway is connected to the Internet through a NAT device, enable NAT traversal on the customer gateway.
After CTS is enabled, traces can be generated for operations performed on the NAT Gateway console. If you want to enable and configure CTS, refer to Enabling CTS. If you want to know supported NAT Gateway operations, refer to Key Operations Recorded by CTS.
Step 3: Configure an Alibaba Cloud NAT Gateway Create an Alibaba Cloud NAT gateway and configure SNAT and DNAT entries. For details, see Creating and Managing an Internet Public NAT Gateway.
Monitoring is critical to ensuring the reliability, availability, and performance of NAT Gateway. With Cloud Eye, you can view metrics such as SNAT connections, PPS, inbound traffic, and outbound traffic by time axis.
Buying a public NAT gateway Click and choose Networking > NAT Gateway in the service list. Click Buy Public NAT Gateway to go to the Buy Public NAT Gateway page. Configure the parameters by referring to Purchasing a Public NAT Gateway.
To enable servers in a VPC, regardless of if they are in the same AZ, to share an EIP, use a public NAT gateway. For more information, see NAT Gateway User Guide.
Procedure of Creating a Public NAT Gateway Log in to the NAT Gateway console, and click Buy Public NAT Gateway. On the displayed page, enter gateway information, select a VPC and subnet (for example, vpc-01), and confirm and submit the settings to buy a NAT gateway.
The default public NAT access bandwidth is shared between tenants in testing scenarios that involve a small number of requests.
Figure 1 Buying a public NAT gateway Set the NAT gateway rule by referring to Adding an SNAT Rule. Set Scenario to VPC, and CIDR Block to the subnet where the RCU instance resides, and bind a public IP address. Figure 2 Adding an SNAT rule Parent topic: Appendix
If multiple NAT gateways are created in the same VPC, ensure that the default route in the route table points to all NAT gateways. Check whether the default route in the route table points to all NAT gateways. If no, configure this. (Optional) Configure DNS forwarding.
Create a NAT gateway. Select the same VPC and subnet as the CDM cluster. After the NAT gateway is created, return to the NAT gateway console list, click the created gateway name, and then click Add SNAT Rule. Figure 1 Adding an SNAT rule Select a subnet and an EIP.
Create a NAT gateway. Select the same VPC and subnet as the CDM cluster. After the NAT gateway is created, return to the NAT gateway console list, click the created gateway name, and then click Add SNAT Rule. Figure 1 Adding an SNAT rule Select a subnet and an EIP.
NAT policies: Do not perform NAT when on-premises subnets access cloud subnets. Interesting traffic: The interesting traffic configurations at both ends of a VPN connection are reversed. The address object name cannot be used for the interesting traffic configured using IKEv2.
NAT policies: Do not perform source NAT on the traffic originated from on-premises subnets to cloud subnets. Interesting traffic: The interesting traffic configurations at both ends are reversed at the two ends of a VPN connection.
