How to create NAT rules on Edge Gateway

 

Overview

Network address translation (NAT) allows the source or destination IP address to be changed to enable traffic to transition through a gateway or router.

HI GIO support some NAT type:

  • An SNAT rule translates the source IP address of packets sent from an organization VDC network out to an external network or to another organization VDC network.

  • A NO SNAT rule prevents the translation of the internal IP address of packets sent from an organization VDC out to an external network or to another organization VDC network.

  • A DNAT rule translates the IP address and, optionally, the port of packets received by an organization VDC network that are coming from an external network or from another organization VDC network.

  • A NO DNAT rule prevents the translation of the external IP address of packets received by an organization VDC from an external network or from another organization VDC network.

NOTE: The public IP addresses must have been added to the edge gateway interface on which you want to add the NAT rule.

Procedure

I. Creating a DNAT\No DNAT rule

  1. In the top navigation bar, click Networking and click Edge Gateways.

2. Select the edge gateway that you want to edit

 

3. Under Security, click NAT

4. Click New.

5. Configure an DNAT

Name: [Name of rule]

Description: [optional]

Interface type: Select DNAT\No DNAT

External IP: Enter the public IP address of the edge gateway

External Port: [optional - Enter a port into which the DNAT rule is translating]

Internal IP: Enter IP or range IP to receive traffic from the external network

Application: [optional – select application profile with port]

Advanced Settings: (Optional)

6. Click Save

II. Creating a SNAT\No SNAT rule

  1. In the top navigation bar, click Networking and click Edge Gateways.

2. Select the edge gateway that you want to edit

 

3. Under Security, click NAT

4. Click New.

5. Configure an SNAT

Name: [Name of rule]

Description: [optional]

Interface type: Select SNAT\No SNAT

External IP: Enter the public IP address of the edge gateway

Internal IP: Enter IP or range IP to receive traffic from the external network

Destination IP: [Optional]

Advanced Settings: (Optional)

6. Click Save

Note: Please do not remove SNAT/DNAT rules name starting with HIGIO- (if any)

  1. Add Edge Firewall rules for SNAT/DNAT rules after completed NAT rules.