Importing and Exporting DNAT Rules Using Templates
Scenarios
After a public NAT gateway is created, add DNAT rules to allow servers in your VPC to provide services accessible from the Internet.
One DNAT rule is configured for one server. If there are multiple servers, add multiple DNAT rules.
Prerequisites
A public NAT gateway is available.
Procedure
- Log in to the management console.
- Click in the upper left corner and select the desired region and project.
- Click Service List in the upper left corner. Under Networking, select NAT Gateway.
The Public NAT Gateway page is displayed.
- On the displayed page, click the name of the public NAT gateway to which you want to import DNAT rules.
- On the public NAT gateway details page, click the DNAT Rules tab.
- On the displayed page, click Import Rule and then Download Template.
- Fill in DNAT rule parameters based on the table heading in the template. For details, see Table 1.
Table 1 Descriptions of DNAT rule parameters Parameter
Description
Scenario
The following two scenarios are available:
- VPC: The servers in a VPC will share an EIP to provide services accessible from the Internet through the DNAT rule.
- Direct Connect/Cloud Connect: Select this scenario if your on-premises servers or servers in another VPC will use the DNAT rule to provide services accessible from the Internet.
Protocol
The value can be TCP, UDP, or All.
EIP
The EIP that will be used by the server to provide publicly accessible services
Only EIPs that have not been bound or that have been bound to a DNAT rule in the current VPC are available for selection.
Outside Port
The EIP port
This parameter is only available if you select Specific port for Port Type.
You can enter a specific port number or a port range, for example, 80 or 80-100.
Private IP Address
- In a VPC scenario, set this parameter to the private IP address of a server in the NAT gateway's VPC. The server will provide services accessible from the Internet through DNAT.
- In a Direct Connect/Cloud Connect scenario, set this parameter to IP address of the server in your on-premises data center or your private IP address. This IP address is used by on-premises servers that are connected to a VPC through Direct Connect or servers in another VPC to provide services accessible from the Internet through DNAT.
- Configure the private IP address port if you set Protocol to TCP or UDP.
Inside Port
- In a VPC scenario, set this parameter to the port of the server in a VPC.
- In a Direct Connect/Cloud Connect scenario, set this parameter to the port of the server in the on-premises data center or the user's private port.
- This parameter is only available if you select Specific port for Port Type.
The number of inside and outside ports must match.
Description
Provides supplementary information about the DNAT rule. Enter up to 255 characters.
- After filling in the template, click Import Rule, select the template, and click Import.
- View details in the DNAT rule list.
- In the displayed dialog box, click Yes.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.