VM NAT

You can create source and destination network address translation rules for your VMs.

Create a DNAT rule

To enable VMs outside your VDC to connect to a VM with a private IP address, after you obtain a NAT IP, create a destination NAT rule, which is also called a DNAT rule. 

To create a DNAT rule:

1. Go to Virtual datacenters → Virtual appliances → edit VM

2. If your VM does not yet have an IP, go to Network → NICs and add a private IP

3. Go to Network → DNAT

4. Click the + add button on the top right-hand side of the tab

5. Enter the details of the DNAT rule

   Open

   

   1. For the Original (NAT IP), select the IP address to receive external connections

   2. Select the Protocol for the connection, which can include TCP, UDP, any, and ICMP

   3. For the Translated IP, select the private IP that is attached to the VM

   4. Optionally, select the checkbox to Use all ports OR
      Enter the Original port for external connections. You cannot use an Original port for a NAT IP in more than one NAT rule.
      The platform will display the ports that are already used in other rules for the selected NAT IP.
      AND for the Translated port, enter the port on the VM

6. Click Add

7. Save the VM

Create an SNAT rule

To send outgoing traffic through a NAT IP that is not the default one, add an additional SNAT rule with these steps:

To create an SNAT rule:

1. Go to Virtual datacenters → Virtual appliances → edit VM

2. If your VM does not yet have an IP, go to Network → NICs and add a private IP

3. Go to Network → SNAT

4. Click the + add button on the top right-hand side of the tab

5. Enter the addresses of the SNAT rule

   Open

   

   1. For the Original IP, select the IP that is attached to the VM

   2. For the Translated (NAT IP), select the IP address to display for outgoing connections

6. Click Add

7. Save the VM