Creating an ECS Used as an NAT Server

Scenarios

In the scenario where tenants access SAP NetWeaver using an NAT server (with an EIP bound), create an ECS to be used as an NAT server on the public subnet. Tenants can access SAP NetWeaver applications on the private subnet through SAP GUI installed on the NAT server. Tenants can also use SSH to access SAP NetWeaver nodes through the NAT server to locate and rectify faults.

Procedure

1. On the public cloud management console, click in the navigation pane on the left, and choose Computing > Elastic Cloud Server to switch to the Elastic Cloud Server page.
2. Click Buy ECS on the right. A page for creating ECSs is displayed.
3. Configure the parameters listed in Table 1.

   Table 1 NAT server basic configuration

   Parameter	Description
   Billing Mode	Select a billing mode based on the site requirements. The recommended billing mode is Yearly/Monthly.
   AZ	Specifies the AZ where the ECS is located. Select an AZ as required. All SAP NetWeaver ECSs must be within the same AZ.
   CPU Architecture	The value can be x86 or Kunpeng. x86: The X86-based CPU architecture uses Complex Instruction Set Computing (CISC). Each instruction can be used to execute low-level hardware operations, and the length of each instruction is different. Therefore, the number of instructions is large and they are complex. Therefore, executing such an instruction is complex and time-consuming. Kunpeng: The Kunpeng-based CPU architecture uses Reduced Instruction Set Computing (RISC). RISC is a microprocessor that executes fewer types of computer instructions but at a higher speed than CISC. RISC simplifies the computer architecture and improves the running speed. Compared with the x86-based CPU architecture, the Kunpeng-based CPU architecture has a more balanced performance and power consumption ratio. Kunpeng features high density, low power consumption, high cost-effectiveness.
   Specifications	Select s1.medium ECS with 1 vCPU and 4 GB or other specifications under General computing.
   Image	Select Marketplace image and click Select Image. In the displayed Select Marketplace Image dialog box, enter SAP in the search box and select the target image.
   System Disk	40 GB system disk For details about disk requirements, see section Recommended ECS Planning.

4. Click Next: Configure Network.
   Configure network information for the NAT Server ECS as prompted.

   Table 2 NAT server network configuration

   Parameter	Description
   Network	Choose the VPC and subnet in specified in Applying for a VPC and Creating a Subnet and Configuring a Security Group.
   Extension NIC	Select a proper NIC according to the information provided in section Network Planning.
   Security Group	Use the security group in section Creating a Subnet and Configuring a Security Group.
   EIP	Select Automatically Assign.
   EIP Type	This parameter is available only when EIP is set to Auto assign. Set this parameter based on the site requirements. Dynamic BGP provides automatic failover and load balancing capabilities and makes better routing decisions based on optimal paths when a network connection fails. When changes occur on a network using static BGP, network configurations cannot be promptly adjusted to ensure optimal user experience.
   Billed By	This parameter is available only when EIP is set to Auto assign. Billed by indicates the bandwidth billing mode of the purchased EIP, which includes the following options: Bandwidth: The billing will be based on the duration for which the bandwidth is used. Traffic: The billing will be based on the total traffic irrespective of the duration for which the bandwidth is used. Shared bandwidth: The bandwidth can be used by multiple EIPs. NOTE: A bandwidth can be shared between a limited number of EIPs. If the number of EIPs cannot meet service requirement, switch to a higher shared bandwidth or apply for expanding the EIP quota of the existing bandwidth. EIPs that are billed yearly/monthly do not support shared bandwidths. When a shared bandwidth that is billed yearly/monthly expires, the system automatically deletes the bandwidth configuration and creates a dedicated bandwidth billed by traffic for the EIPs sharing the deleted bandwidth configuration.
   Bandwidth Size	This parameter is available only when EIP is set to Auto assign. Set this parameter based on the site requirements.

5. Click Next: Configure Advanced Settings.
   Configure parameters in advanced settings of NAT Server ECS as prompted.

   Table 3 NAT server advanced configuration

   Parameter	Description
   ECS Name	When you create ECSs in batches, the number in the ECS Name is generated automatically in ascending order based on the Quantity value that you filled in. For example, if you fill SAP-Dev in ECS Name, the first ECS is SAP-Dev-0001, and the second ECS is SAP-Dev-0002.
   Login Mode	Select Key pair.
   Key Pair	This parameter is available only when the Login Mode is set to Key pair. Key Pair is recommended. A Secure Shell (SSH) key certificate is used for authenticating users who attempt to log in to SAP application ECSs. Ensure that the ECSs where SAP NetWeaver and NAT server are to be deployed use the same key. Otherwise, SAP NetWeaver installation will fail. If you choose an existing SSH key certificate from the drop-down list, make sure that you have saved the certificate locally. Otherwise, you may fail to log in to the ECS. Click Create Key Pair. On the Key Pair page that is displayed, click Create Key Pair, specify the key pair name, and click OK. In the Information dialog box that is displayed, click OK. Then, you can query and save the private key as prompted.
   Cloud Backup and Recovery	Cloud Backup and Recovery (CBR) provides backup protection for EVS disks and ECSs, and uses backups to restore the EVS disks and ECSs. After you set Cloud Backup and Recovery, the system binds the target ECS to the cloud backup vault and associates the ECS with the selected backup policy to periodically back up the ECS. The following options are provided: Auto assign Set the name of the cloud backup vault, which is a character string consisting of 1 to 64 characters, including letters, digits, underscores (_), and hyphens (-). For example, vault-f61e. The default naming rule is vault_xxxx. Enter the vault capacity, which is required for backing up the ECS. The vault capacity cannot be smaller than that of the ECS to be backed up. Its value ranges from the total capacity of the ECS to 10,485,760 in the unit of GB. Select a backup policy from the drop-down list, or log in to the CBR console and configure a desired one. Use existing Select an existing cloud backup vault from the drop-down list. Select a backup policy from the drop-down list, or log in to the CBR console and configure a desired one. Not required: This function is not required. If you require this function after purchasing the ECS, log in to the CBR console and bind the desired cloud backup vault to your ECS.

6. Click Next: Confirm.
   Confirm the NAT Server ECS configuration as prompted.

   Table 4 NAT server configuration information

   Parameter	Description
   Enterprise Project	Select the name of a created enterprise project, for example, SAP.
   Required Duration	Set the duration based on your requirements.
   Quantity	Set this parameter as required.
   Agreement	Select I have read and agree to Huawei Image Disclaimer.

7. Click Next and complete the payment as prompted.
8. The system returns to the Elastic Cloud Server page. Check the status of the created task in Task Status on the right of the page.

   After the ECS is created, you can view the ECS from the ECS list on the right of the page.