Help Center/ NAT Gateway/ User Guide/ Public NAT Gateways/ Managing DNAT Rules/ Importing and Exporting DNAT Rules Using Templates
Updated on 2023-08-11 GMT+08:00

Importing and Exporting DNAT Rules Using Templates

Scenarios

After a public NAT gateway is created, add DNAT rules to allow servers in your VPC to provide services accessible from the Internet.

One DNAT rule is configured for one server. If there are multiple servers, add multiple DNAT rules.

Prerequisites

A public NAT gateway is available.

Procedure

  1. Log in to the management console.
  2. Click in the upper left corner and select the desired region and project.
  3. Click Service List in the upper left corner. Under Networking, select NAT Gateway.

    The Public NAT Gateway page is displayed.

  4. On the displayed page, click the name of the public NAT gateway to which you want to import DNAT rules.
  5. On the public NAT gateway details page, click the DNAT Rules tab.
  6. On the displayed page, click Import Rule and then Download Template.
  7. Fill in DNAT rule parameters based on the table heading in the template. For details, see Table 1.
    Table 1 Descriptions of DNAT rule parameters

    Parameter

    Description

    Scenario

    The following two scenarios are available:

    • VPC: The servers in a VPC will share an EIP to provide services accessible from the Internet through the DNAT rule.
    • Direct Connect/Cloud Connect: Select this scenario if your on-premises servers or servers in another VPC will use the DNAT rule to provide services accessible from the Internet.

    Protocol

    The value can be TCP, UDP, or All.

    EIP

    The EIP that will be used by the server to provide publicly accessible services

    Only EIPs that have not been bound or that have been bound to a DNAT rule in the current VPC are available for selection.

    Outside Port

    The EIP port

    This parameter is only available if you select Specific port for Port Type.

    You can enter a specific port number or a port range, for example, 80 or 80-100.

    Private IP Address

    • In a VPC scenario, set this parameter to the private IP address of a server in the NAT gateway's VPC. The server will provide services accessible from the Internet through DNAT.
    • In a Direct Connect/Cloud Connect scenario, set this parameter to IP address of the server in your on-premises data center or your private IP address. This IP address is used by on-premises servers that are connected to a VPC through Direct Connect or servers in another VPC to provide services accessible from the Internet through DNAT.
    • Configure the private IP address port if you set Protocol to TCP or UDP.

    Inside Port

    • In a VPC scenario, set this parameter to the port of the server in a VPC.
    • In a Direct Connect/Cloud Connect scenario, set this parameter to the port of the server in the on-premises data center or the user's private port.
    • This parameter is only available if you select Specific port for Port Type.

    The number of inside and outside ports must match.

    Description

    Provides supplementary information about the DNAT rule. Enter up to 255 characters.

  8. After filling in the template, click Import Rule, select the template, and click Import.
  9. View details in the DNAT rule list.

    If Status is Running, the rules have been added.

  10. In the displayed dialog box, click Yes.