检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
NAT gateway: a route configured by the system for routing traffic from the VPC subnet to the NAT gateway. NAT gateway Create a public NAT gateway in VPC 4, and add an SNAT rule with an EIP associated.
For public and private NAT gateways, DNAT rules can be modified. Parent topic: DNAT Rules
Configuring Networks Creating VPC Attachments for the Enterprise Router Adding an SNAT Rule to the NAT Gateway Parent topic: Allowing VPCs to Share an EIP to Access the Internet Using Enterprise Router and NAT Gateway
Creating Resources Creating an Enterprise Router Creating VPCs and ECSs Assigning an EIP and Creating a Public NAT Gateway Parent topic: Allowing VPCs to Share an EIP to Access the Internet Using Enterprise Router and NAT Gateway
Buying a public NAT gateway Click and choose Networking > NAT Gateway in the service list. Click Buy Public NAT Gateway. The Buy Public NAT Gateway page is displayed. Configure the parameters by referring to the parameter description in Buying a Public NAT Gateway.
Parent topic: Allowing VPCs to Share an EIP to Access the Internet Using Enterprise Router and NAT Gateway
In a public NAT gateway, DNAT enables servers in a VPC, regardless of if they are in the same AZ, to share an EIP to provide services accessible from the Internet.
A NAT gateway supports up to 55,000 concurrent connections to each destination IP address and port. If any of the destination IP address, port number, and protocol (TCP, UDP, or ICMP) changes, you can create another 55,000 connections.
Feature Description Phase Document 1 Private NAT gateways Private NAT gateways provide the network address translation (NAT) function for load balancers and cloud servers in a VPC, allowing multiple servers to share a private IP address to access or provide services accessible from
0 bit/s 1024 (IEC) Public NAT gateway 1 minute inbound_pps Inbound PPS Packets received by the public NAT gateway from the public network per second ≥0 Count N/A Public NAT gateway 1 minute outbound_pps Outbound PPS Packets received by the public NAT gateway from the VPC per second
Public NAT gateways support pay-per-use billing by day only. Private NAT gateways support pay-per-use billing by hour only. This section describes the billing rules for pay-per-use NAT gateways.
Public NAT gateways: Besides requiring services provided by the system, some ECSs also need to access the Internet to obtain information or download software.
NAT Gateway supports the following actions that can be defined in custom policies: Public NAT Gateways, including actions supported by all v2 APIs of the NAT gateway, such as creating, updating, and deleting NAT gateways.
Scenarios This section describes how to view NAT Gateway metrics. Procedure Log in to the management console. In the upper left corner, select the target region. Under Management & Governance, select Cloud Eye.
Figure 1 Searching for the NAT gateway Choose More > Delete in the Operation column to delete the NAT gateway. Ensure that the NAT gateway does not exist in the list.
Viewing Traces Scenarios CTS records the operations performed on NAT Gateway and allows you to view the operation records of the last seven days on the CTS console. This topic describes how to query these records. Procedure Log in to the management console.
Buy an EIP and a NAT gateway. Procedure Create VPCs. For details, see Creating a VPC. Ensure that the VPC CIDR blocks do not conflict with each other.
Prerequisites The billing mode of the public NAT gateway is pay-per-use. The yearly/monthly billing mode can be changed to pay-per-use only for public NAT gateways. Procedure Log in to the NAT Gateway console. Log in to the management console.
Yearly/Monthly: You pay upfront for the amount of time you expect to use the NAT gateway for. You will need to make sure your account has sufficient balance. Pay-per-use: You can start using the NAT gateway first and then pay as you go.
NAT Gateway does not provide access control and can only forward traffic based on rules. To restrict access to some websites, you can configure security groups and ACL rules. For details, see Security Group Configuration Examples and Network ACL Configuration Examples.
