检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
Procedure of Creating a Public NAT Gateway Log in to the NAT Gateway console, and click Buy Public NAT Gateway. On the displayed page, enter gateway information, select a VPC and subnet (for example, vpc-01), and confirm and submit the settings to buy a NAT gateway.
Figure 1 Buying a public NAT gateway Set the NAT gateway rule by referring to Adding an SNAT Rule. Set Scenario to VPC, and CIDR Block to the subnet where the RCU instance resides, and bind a public IP address. Figure 2 Adding an SNAT rule Parent topic: Appendix
If multiple NAT gateways are created in the same VPC, ensure that the default route in the route table points to all NAT gateways. Check whether the default route in the route table points to all NAT gateways. If no, configure this. (Optional) Configure DNS forwarding.
This section describes how to view the used NAT Gateway quota and the total NAT Gateway quota in a specified region. How Do I View My Quotas? Log in to the management console. Click in the upper left corner and select the desired region and project.
Create a NAT gateway. Select the same VPC and subnet as the CDM cluster. After the NAT gateway is created, return to the NAT gateway console list, click the created gateway name, and then click Add SNAT Rule. Figure 1 Adding an SNAT rule Select a subnet and an EIP.
Create a NAT gateway. Select the same VPC and subnet as the CDM cluster. After the NAT gateway is created, return to the NAT gateway console list, click the created gateway name, and then click Add SNAT Rule. Figure 1 Adding an SNAT rule Select a subnet and an EIP.
NAT policies: Do not perform NAT when on-premises subnets access cloud subnets. Interesting traffic: The interesting traffic configurations at both ends of a VPN connection are reversed. The address object name cannot be used for the interesting traffic configured using IKEv2.
NAT policies: Do not perform source NAT on the traffic originated from on-premises subnets to cloud subnets. Interesting traffic: The interesting traffic configurations at both ends are reversed at the two ends of a VPN connection.
Monitoring Supported Metrics Creating Alarm Rules Viewing Metrics Viewing Metrics of Resources Using a NAT Gateway
API v2.0 Public NAT Gateways SNAT Rules DNAT Rules Parent Topic: Out-of-Date APIs
Suggestion You are advised to create an independent VPC for the NAT gateway. To avoid affecting access control, do not use the VPC in the network configurations of Elastic Cloud Servers (ECSs) or other instances.
On the local computer, generate the key file for logging in to the NAT server. When creating the NAT server, you specify the certificate key file (.pem file) for the NAT server. The .pem file generates the .ppk file using PuTTYgen.
If you access to the Internet using an EIP but with no DNAT rules configured, external users cannot directly access the public network address of the NAT gateway through the Internet, ensuring ECS security. Figure 4 NAT gateway
After the retention period ends, the NAT gateways will be released, and that data cannot be restored. Figure 1 Lifecycle of a pay-per-use NAT gateway For details about the grace period and retention period, see What Is a Grace Period of Huawei Cloud? How Long Is It?
Use PuTTY to log in to the NAT server with an EIP bound. Ensure that user root and the key file (.ppk file) are used for authentication. Then, use SSH to switch to the SAP HANA and SAP Business One nodes. Format disks.
Use PuTTY to log in to the NAT server with an EIP bound. Ensure that user root and the key file (.ppk file) are used for authentication. Then, use SSH to switch to the SAP HANA and SAP Business One nodes. Format disks.
Buy an EIP and a NAT gateway. Procedure Create VPCs. For details, see Creating a VPC. Ensure that the VPC CIDR blocks do not conflict with each other.
For this to work, you first need to create a public NAT gateway in a third subnet (Subnet-NAT), and then configure SNAT rules on the public NAT gateway for Subnet-A01 and Subnet-A02.
Recommended ECS Planning This section describes the planning of SAP NetWeaver ECSs and NAT server (SAP GUI). The flavors are only for reference. The ECS specifications are recommended examples. Choose one based on the SAP Sizing results.
Checking the NAT Configurations on the Firewall Check whether the local VPN gateway is behind the NAT device (usually the border firewall).
