edit-icon download-icon

Add an SNAT entry

Last Updated: Apr 11, 2018

By adding an SNAT entry, you can provide Internet proxy service for an ECS instance without a public IP so that the ECS instance can access the Internet.


You have created a NAT gateway and bound EIPs to it.

Note: If you have purchased a NAT bandwidth package before 23:59, January 26, 2018, open a ticket to bind EIP to NAT Gateway.


  1. Log on to the VPC console.

  2. In the left-side navigation pane, click NAT Gateways.

  3. Click the ID link of the target NAT gateway and enter the page of gateway details.

  4. In the left-side navigation pane, click SNAT Table, and then click Create SNAT Entry.

  5. Configure the SNAT entry according to the following information.


    The VSwitch of the ECS instances that require the Internet access.

    All ECS instances in the specified VSwitch can use the specified public IP to access the Internet.

    Note: If an ECS instance has already configured a public IP (such as an EIP), the Internet is accessed by using the previously configured public IP rather than the SNAT proxy service.

    VSwitch CIDR Block Display the CIDR block of the selected VSwitch.
    Public IP

    The public IP that is used to access the Internet.

    Note: You cannot use a public IP that has already been added to a DNAT entry.

  6. Click OK.

    The status of the added SNAT entry is Configuring. Click Refresh to refresh the status. When the status is Available, the SNAT entry has been successfully added.

Thank you! We've received your feedback.