You can create a destination NAT (DNAT) rule to change the destination IP address from a public to private IP address or the reverse.

Before you begin

The original (public) IP address must have been added to the NSX Edge interface on which you want to add the rule.

Procedure

  1. Log in to the vSphere Web Client.
  2. Click Networking & Security and then click NSX Edges.
  3. Double-click an NSX Edge.
  4. Click the Manage tab and then click the NAT tab.
  5. Click the Add (Add icon) icon and select Add DNAT Rule.
  6. Select the interface on which to apply the DNAT rule.
  7. Type the original (public) IP address in one of the following formats.

    Format

    Example

    IP address

    192.0.2.0

    IP address range

    192.0.2.0 -192.0.2.24

    IP address/subnet

    192.0.2.0 /24

    any

     
  8. Type the protocol.
  9. Type the original port or port range.

    Format

    Example

    Port number

    80

    Port range

    80-85

    any

     
  10. Type the translated IP address in one of the following formats.

    Format

    Example

    IP address

    192.0.2.0

    IP address range

    192.0.2.0 -192.0.2.24

    IP address/subnet

    192.0.2.0 /24

    any

     
  11. Type the translated port or port range.

    Format

    Example

    Port number

    80

    Port range

    80-85

    any

  12. Select Enabled to enable the rule.
  13. Select Enable logging to log the address translation.
  14. Click Add to save the rule.