Importing DNAT Rules by Using a Template and Exporting DNAT Rules

Scenarios

When adding DNAT rules in different environments or migrating DNAT rules between NAT gateways, you can import and export DNAT rules to simplify and accelerate the DNAT rule configuration.

Prerequisites

A public NAT gateway is available.

Importing DNAT Rules

1. Log in to the management console.
2. Click in the upper left corner and select the desired region and project.
3. Click Service List in the upper left corner. Under Networking, select NAT Gateway.

   The Public NAT Gateway page is displayed.

4. On the displayed page, click the name of the public NAT gateway to which you want to import DNAT rules.
5. On the public NAT gateway details page, click the DNAT Rules tab.
6. On the displayed page, click Import. In the displayed Import Rule dialog box, click Download Template.
7. Fill in DNAT rule parameters based on the table heading in the template. For details, see Table 1.

   Table 1 Descriptions of DNAT rule parameters

   Parameter	Description
   Scenario	The following two scenarios are available: VPC: The servers in a VPC will share an EIP to provide services accessible from the Internet through the DNAT rule. Direct Connect/Cloud Connect: Select this scenario if your on-premises servers or servers in another VPC will use the DNAT rule to provide services accessible from the Internet.
   Protocol	The value can be TCP, UDP, or All.
   EIP	The EIP that will be used by the server to provide publicly accessible services Only EIPs that have not been bound or that have been bound to a DNAT rule in the current VPC are available for selection.
   Outside Port	The EIP port This parameter is only available if Specific port is selected for Port Type. You can enter a specific port number or a port range, for example, 80 or 80-100.
   Private IP Address	In a VPC scenario, set this parameter to the private IP address of a server in the NAT gateway's VPC. The server will provide services accessible from the Internet through DNAT. In a Direct Connect/Cloud Connect scenario, set this parameter to IP address of the server in your on-premises data center or your private IP address. This IP address is used by on-premises servers that are connected to a VPC through Direct Connect or servers in another VPC to provide services accessible from the Internet through DNAT. Configure the private IP address port if Protocol is set to TCP or UDP.
   Inside Port	In a VPC scenario, set this parameter to the port of the server in a VPC. In a Direct Connect/Cloud Connect scenario, set this parameter to the port of the server in the on-premises data center or the user's private port. This parameter is only available if Specific port is selected for Port Type. The number of inside and outside ports must match.
   Description	Provides supplementary information about the DNAT rule. Enter up to 255 characters. Open angle brackets (<), close angle brackets (>), and angle brackets (<>) are not allowed.

8. After filling in the template, click Select File, select the local template, and click Import.
   Figure 1 Import Rule
   
9. View the imported DNAT rules.

   If their Status is Running, the DNAT rules have been added.

Exporting DNAT Rules

1. Log in to the management console.
2. Click in the upper left corner and select the desired region and project.
3. Click Service List in the upper left corner. Under Networking, select NAT Gateway.

   The Public NAT Gateway page is displayed.

4. On the displayed page, click the name of the public NAT gateway from which you want to export DNAT rules.
5. On the public NAT gateway details page, click the DNAT Rules tab.
6. In the DNAT rule list, select the rules to be exported and click Export above the list.