Inbound Network Address Translation (NAT) allows you to map internet traffic to a public-facing IP address and port to a private IP address and port inside your SDDC's compute network.

When configuring NAT rules, you can configure either one-to-one NAT or one-to-many NAT. Use one-to-one NAT when you want to map a single public IP address and port to a single internal IP address and port.

For example, a public IP of 198.51.100.5 and port 443 is mapped to 172.100.100.20 and port 443. In some cases, you might choose to map a source port to a different destination port. For example, 198.51.100.5 and port 80 might be mapped to 172.100.100.20 and port 8080.

Use one-to-many NAT when a single public IP address and port is mapped to one internal IP address and multiple ports, or to multiple internal IP addresses and ports.

Prerequisites

Before you can assign a public IP address to a virtual machine, you must assign the virtual machine to a logical network and give it a static IP address. See Request a Public IP Address.

Procedure

  1. Log in to the VMC Console at https://vmc.vmware.com.
  2. Select Networking & Security > NAT .
  3. Enter the NAT parameter details.
    Option Description
    Name Enter a NAT rule name.
    Public IP Provisioned public IP address for the VM is populated.
    Service Select one of the following.
    • Select Any Traffic for a rule that applies to all inbound traffic.
    • Select a particular service to create a rule that applies only to traffic using that protocol and port.
    Public Ports If you selected Any Traffic, the default public port is Any.

    If you selected a particular service, then the designated public port for that service appears.

    Internal IP Enter the internal (private) IP address to direct the traffic from the public address to.
    Internal Ports If you selected Any Traffic, the default internal port is Any. If you selected a particular service, then the designated internal port for that service appears.
  4. Click Save.