Creating a Private NAT Gateway

Scenarios

You need a private NAT gateway to enable servers in your VPC to access or provide services accessible from on-premises data centers and other VPCs.

Notes and Constraints

  • Manually add routes in a VPC to connect it to a remote private network through a VPC peering connection, Direct Connect, or VPN connection.

  • SNAT and DNAT rules cannot share a transit IP address.

  • The total number of DNAT and SNAT rules that can be added on a private NAT gateway varies with the private NAT gateway specifications.

    • Small: 20 or less

    • Medium: 50 or less

    • Large: 200 or less

    • Extra-large: 500 or less

Caution

When you create a private NAT gateway, you must specify its VPC, subnet, and specifications.

Procedure

  1. Log in to the management console.

  2. Click image1 in the upper left corner and select the desired region and project.

  3. In the upper left corner of the page, click image2 to expand the service list and choose Network > NAT Gateway.

    The NAT Gateway console is displayed.

  4. In the navigation pane on the left, choose NAT Gateway > Private NAT Gateways.

  5. On the Private NAT Gateways page, click Create Private NAT Gateway.

  6. Configure required parameters. For details, see Table 1.

    **Figure 1** Create Private NAT Gateway

    Figure 1 Create Private NAT Gateway

    Table 1 Descriptions of private NAT gateway parameters

    Parameter

    Description

    Region

    The region where the private NAT gateway is located.

    Name

    The name of the private NAT gateway.

    Enter up to 64 characters. Only digits, letters, underscores (_), hyphens (-), and periods (.) are allowed.

    VPC

    The VPC that the private NAT gateway belongs to.

    The selected VPC cannot be changed after the private NAT gateway is created.

    Subnet

    The subnet that the private NAT gateway belongs to.

    The subnet must have at least one available IP address.

    The selected subnet cannot be changed after the private NAT gateway is created.

    Specifications

    The specifications of the private NAT gateway.

    The value can be Extra-large, Large, Medium, or Small. For details about specifications, see section "NAT Gateway Specifications" in NAT Gateway Service Overview.

    Enterprise Project

    The enterprise project that the private NAT gateway belongs to.

    If an enterprise project has been configured, select the enterprise project.

    If you have not configured any enterprise project, select the default enterprise project.

    Description

    Supplementary information about the private NAT gateway.

    Enter up to 255 characters. Angle brackets (<>) are not allowed.

  7. Click Create Now.

Other Operations

last updated: 2025-09-10 09:01 UTC - commit: 13739001b62cd09ac2aef28d2ec45c7895ec1ef4