NAT Gateway: Public Internet Gateway for Flexible Usage of Network Resources

{"moduleinfo":{"rightBtn":{"partnerAddress":"https://common-buy-intl4service.aliyun.com/?spm=a2c6n.179194.1184305.3.3ed163054ZM5HZ&&commodityCode=nat_gw_intl#/buy","hideForReseller":false,"output4Partner":true,"text":"Buy Now","url":"https://common-buy-intl.aliyun.com/?&commodityCode=nat_gw_intl#/buy"},"highlightAutoNav":false,"nav_count":[{"count_phone":3,"count":3}]},"nav":[{"txt":"Overview","highlight":"false","newWindow":"false","hideMobile":"false","anchor":[{"tce_rule_count":"1","name":"alicloud-v3-overview"},{"tce_rule_count":"1","name":"alicloud-v3-product-buy-now"},{"tce_rule_count":"1","name":"alicloud-v3-product-feature"},{"tce_rule_count":"1","name":"wb-zc-jwmod-scenarios-scene"},{"tce_rule_count":"1","name":"alicloud-v3-product-timeline"},{"tce_rule_count":"1","name":"alicloud-v3-product-summary"},{"tce_rule_count":"1","name":"alicloud-v3-get-start-for-free"}],"style":"hash","output4Partner":"false","newAddress":"/"},{"txt":"Pricing","highlight":"false","partnerAddress":"product/nat/pricing","newWindow":"false","hideMobile":"false","style":"link","output4Partner":"true","newAddress":"product/nat/pricing"},{"txt":"Documentation","highlight":"false","partnerAddress":"/help/product/44413.htm","newWindow":"true","hideMobile":"false","anchor":[],"style":"link","output4Partner":"true","newAddress":"help/product/44413.htm"}],"countinfo":{"nav":{"length_pc":0,"length":0}},"$tmsId":"tce/1663002"}

NAT Gateway is an enterprise-class public network gateway, providing proxy services (SNAT and DNAT), up to 10 Gbps forwarding capacity, and cross-zone disaster recovery. NAT Gateway helps you establish an Internet gateway for a VPC by configuring SNAT and DNAT entries, allowing more flexible use of network resources.

{"moduleinfo":{"benefits":"Benefits","outputBuyBtn4Partner":true,"os_count":[{"count_phone":0,"count":0}],"products_count":[{"count_phone":0,"count":0}],"benefits_count":[{"count_phone":4,"count":4}],"news_count":[{"count_phone":0,"count":0}],"floor":"floor1","outputNews4Partner":"false","regions_count":[{"count_phone":0,"count":0}]},"regions":[],"os":[],"products":[],"benefits":[{"icon":"https://img.alicdn.com/tfs/TB1vz2bIb1YBuNjSszhXXcUsFXa-108-108.png","title":"High reliability","content":"NAT Gateway is an extremely stable gateway service, which has been used in disaster recovery across zones."},{"icon":"https://img.alicdn.com/tfs/TB19Lu2Ib1YBuNjSszeXXablFXa-108-108.png","title":"Cost-effectiveness","content":"Supports bandwidth sharing, which allows multiple VPC-connected ECS instances to share Internet bandwidth. This reduces the bandwidth costs."},{"icon":"https://img.alicdn.com/tfs/TB1pgNlIhSYBuNjSsphXXbGvVXa-108-108.png","title":"Ease of use","content":"Provides an easy-to-use console, which supports NAT rule customization and data visualization."},{"icon":"https://img.alicdn.com/tfs/TB1DwTQIhGYBuNjy0FnXXX5lpXa-108-108.png","title":"High performance","content":"A NAT gateway can support up to 10 Gbps of throughput and one million connections, to meet the requirements of super large business system deployment in the cloud."}],"news":[],"countinfo":{"benefits":{"length_pc":0,"length":0},"news":{},"regions":{},"os":{},"products":{}},"$tmsId":"tce/1663001"}

Benefits

: High reliability
NAT Gateway is an extremely stable gateway service, which has been used in disaster recovery across zones.

: Cost-effectiveness
Supports bandwidth sharing, which allows multiple VPC-connected ECS instances to share Internet bandwidth. This reduces the bandwidth costs.

: Ease of use
Provides an easy-to-use console, which supports NAT rule customization and data visualization.

: High performance
A NAT gateway can support up to 10 Gbps of throughput and one million connections, to meet the requirements of super large business system deployment in the cloud.

{"moduleinfo":{"title":"Features","li_count":[{"count_phone":2,"count":2}]},"li":[{"spm":"a","img":"https://img.alicdn.com/tfs/TB1QQ7bPVXXXXbFXVXXXXXXXXXX-90-90.png","more":[{"p":"Supports source network address translation (SNAT). VPC-connected ECS instances can use the same EIP to access the Internet.","tce_rule_count":"1","title":""},{"p":"Maps IP addresses of VSwitches to EIPs. ECS instances connected to the same VSwitch in a VPC can use the same EIP to access the Internet. This means that you do not have to manage an EIP for each ECS instance.","tce_rule_count":"1","title":"Source IP address mapping"},{"p":"Supports CIDR rules for VSwitches. You can submit a ticket to request more fine-grained CIDR rules.","tce_rule_count":"1","title":"CIDR rules"}],"h1":"SNAT","imgAction":"https://img.alicdn.com/tfs/TB1mVEsPVXXXXcAXpXXXXXXXXXX-90-90.png"},{"spm":"a","img":"https://img.alicdn.com/tfs/TB1Hpj5PVXXXXbtaXXXXXXXXXXX-90-90.png","more":[{"p":"Supports destination network address translation (SNAT). VPC-connected ECS instances can use the same EIP to deliver services to the Internet.","tce_rule_count":"1","title":""},{"p":"Maps internal ports on ECS instances to external ports on a NAT gateway. This enables applications running these internal ports to deliver services to the Internet.","tce_rule_count":"1","title":"Port mapping"},{"p":"Maps IP addresses of VPC-connected ECS instances to EIPs. This enables the ECS instances to deliver services to the Internet.","tce_rule_count":"1","title":"Destination IP address mapping"}],"h1":"DNAT","imgAction":"https://img.alicdn.com/tfs/TB1wYsjPVXXXXbGXFXXXXXXXXXX-90-90.png"}],"countinfo":{"li":{"length_pc":0,"length":0}},"$tmsId":"tce/1663003"}

Features

SNAT

Supports source network address translation (SNAT). VPC-connected ECS instances can use the same EIP to access the Internet.

Source IP address mapping
Maps IP addresses of VSwitches to EIPs. ECS instances connected to the same VSwitch in a VPC can use the same EIP to access the Internet. This means that you do not have to manage an EIP for each ECS instance.

CIDR rules
Supports CIDR rules for VSwitches. You can submit a ticket to request more fine-grained CIDR rules.
DNAT

Supports destination network address translation (SNAT). VPC-connected ECS instances can use the same EIP to deliver services to the Internet.

Port mapping
Maps internal ports on ECS instances to external ports on a NAT gateway. This enables applications running these internal ports to deliver services to the Internet.

Destination IP address mapping
Maps IP addresses of VPC-connected ECS instances to EIPs. This enables the ECS instances to deliver services to the Internet.

Customer Scenarios

Delivering services to the Internet
Access to Internet

Delivering services to the Internet

Bandwidth sharing

In this scenario, ECS instances are created in VPCs for applications to deliver services to the Internet. Network traffic on these applications do not share the same peak hour. To minimize the influence of network traffic fluctuations and reduce the bandwidth costs, you can allow multiple IP addresses to share the same bandwidth.

Benefits

Service delivery
VPC-connected ECS instances can deliver services to the Internet through port mapping and IP address mapping.
Cost-effectiveness
VPC-connected ECS instances can share Internet bandwidth to reduce costs.
High performance
NAT Gateway supports high bandwidth throughput and a large number of connections.

Integrations and configurations

Access to Internet

Flexible Internet access

In this scenario, business modules are created in VPCs to interact with Other business systems that have been deployed in on-premise data centers. To provide reliable high-definition video services, VPC-connected ECS instances must access the Internet to deliver the content processed in the cloud to the data centers.

Benefits

Ease of configuration
VPC-connected ECS instances use SNAT to access the Internet, which enables you to manage these instances more efficiently.
Security
Multiple VPC-connected ECS instances can share the same EIP to prevent management and security issues.

About Alibaba Cloud

Our Global Network

Alibaba Cloud in Analyst Research

What is Cloud Computing

Customer Success StoriesNEW

Security & Compliance Center

Free Trial

Start Package

Beyond APAC's No.1 Cloud

Struggling with DDoS Attacks? Get Free Support Now！

Upgraded Support For You

Smart, Agile & Powerful Cloud Computing

Alibaba Mail & DingTalk Have Arrived

Alibaba Cloud E-Commerce CampaignHot

Alibaba Cloud for Students Program

Alibaba Cloud's Galaxy Program

Refer a Friend

Press Room

Product & Feature UpdateNEW

Notice

China Gateway

China Gateway - Information Compliance

China Gateway - Networking

China Gateway - Security

ICP Support

Smart Olympics

Elastic Compute Service

Simple Application Server

Elastic GPU Service

Auto Scaling

Server Load Balancer

Container Service

Container Service for Kubernetes

Elastic Container InstanceNEW

Container Registry

Resource Orchestration Service

E-HPC

ECS Bare Metal Instance

Super Computing ClusterBeta

Function Compute

Batch ComputeNew

Dedicated Host

Object Storage Service

Table Store

Alibaba Cloud CDN

Network Attached Storage

Hybrid Cloud Storage ArrayComing Soon

Data Transport

Hybrid Backup RecoveryBeta

Cloud Storage GatewayBeta

Dynamic Route for CDNBeta

Networking OverviewNew

Virtual Private Cloud

Express Connect

NAT Gateway

Server Load Balancer

Elastic IP

Data Transfer Plan

VPN Gateway

Cloud Enterprise Network

Smart Access GatewayBeta

Alibaba Cloud PrivateZoneBeta

Database Overview

ApsaraDB for Redis

ApsaraDB RDS for MySQL

ApsaraDB for MariaDB TXNEW

ApsaraDB RDS for SQL Server

ApsaraDB RDS for PostgreSQL

ApsaraDB RDS for PPAS

ApsaraDB for MongoDB

ApsaraDB for Memcache

Data Transmission Service

Database BackupNEW

AnalyticDB for PostgreSQL

Distributed Relational Database Service

Time Series DatabaseBeta

Data ManagementNEW

Data Lake Analytics

Security OverviewNew

Anti-DDoS Basic