NAT Gateway

A public Internet gateway for flexible usage of network resources and access to VPC.

NAT Gateway is an enterprise-class public network gateway, providing proxy services (SNAT and DNAT), up to 10 Gbps forwarding capacity, and cross-zone disaster recovery. NAT Gateway helps you establish an Internet gateway for a VPC by configuring SNAT and DNAT entries, allowing more flexible use of network resources.

Benefits

High reliability
NAT Gateway is an extremely stable gateway service, which has been used in disaster recovery across zones.
Cost-effectiveness
Supports bandwidth sharing, which allows multiple VPC-connected ECS instances to share Internet bandwidth. This reduces the bandwidth costs.
Ease of use
Provides an easy-to-use visualized console, which supports NAT rule customization and data visualization.
High performance
A NAT gateway can support up to 10 Gbps of throughput and one million connections, to meet the requirements of super large business system deployment in the cloud.

Features

  • SNAT

    Supports source network address translation (SNAT). VPC-connected ECS instances can use the same EIP to access the Internet.


    Source IP address mapping

    Maps IP addresses of VSwitches to EIPs. ECS instances connected to the same VSwitch in a VPC can use the same EIP to access the Internet. This means that you do not have to manage an EIP for each ECS instance.


    CIDR rules

    Supports CIDR rules for VSwitches. You can submit a ticket to request more fine-grained CIDR rules.

  • DNAT

    Supports destination network address translation (SNAT). VPC-connected ECS instances can use the same EIP to deliver services to the Internet.


    Port mapping

    Maps internal ports on ECS instances to external ports on a NAT gateway. This enables applications running these internal ports to deliver services to the Internet.


    Destination IP address mapping

    Maps IP addresses of VPC-connected ECS instances to EIPs. This enables the ECS instances to deliver services to the Internet.

Customer Scenarios

  • Delivering services to the Internet
  • Access to Internet
Delivering services to the Internet

Delivering services to the Internet

Bandwidth sharing

In this scenario, ECS instances are created in VPCs for applications to deliver services to the Internet. Network traffic on these applications do not share the same peak hour. To minimize the influence of network traffic fluctuations and reduce the bandwidth costs, you can allow multiple IP addresses to share the same bandwidth.

Benefits

  • Service delivery

    VPC-connected ECS instances can deliver services to the Internet through port mapping and IP address mapping.

  • Cost-effectiveness

    VPC-connected ECS instances can share Internet bandwidth to reduce costs.

  • High performance

    NAT Gateway supports high bandwidth throughput and a large number of connections.

Integrations and configurations

Access to Internet

Access to Internet

Flexible Internet access

In this scenario, business modules are created in VPCs to interact with Other business systems that have been deployed in on-premise data centers. To provide reliable high-definition video services, VPC-connected ECS instances must access the Internet to deliver the content processed in the cloud to the data centers.

Benefits

  • Ease of configuration

    VPC-connected ECS instances use SNAT to access the Internet, which enables you to manage these instances more efficiently.

  • Security

    Multiple VPC-connected ECS instances can share the same EIP to prevent management and security issues.

Integrations and configurations