You create a destination NAT (DNAT) rule to change the destination IP address from a public to private IP address or vice versa.

The original (public) IP address must have been added to the NSX Edge interface on which you want to add the rule.

1

Log in to the vSphere Web Client.

2

Click Networking & Security and then click NSX Edges.

3

Double-click an NSX Edge.

4

Click the Manage tab and then click the NAT tab.

5

Click the Add (Add icon) icon and select Add DNAT Rule.

6

Select the interface on which to apply the DNAT rule.

7

Type the original (public) IP address in one of the following formats.

Format

Example

IP address

192.0.2.0

IP address range

192.0.2.0 -192.0.2.24

IP address/subnet

192.0.2.0 /24

any

 
8

Type the protocol.

9

Type the original port or port range.

Format

Example

Port number

80

Port range

80-85

any

 
10

Type the translated IP address in one of the following formats.

Format

Example

IP address

192.0.2.0

IP address range

192.0.2.0 -192.0.2.24

IP address/subnet

192.0.2.0 /24

any

 
11

Type the translated port or port range.

Format

Example

Port number

80

Port range

80-85

any

12

Select Enabled to enable the rule.

13

Select Enable logging to log the address translation.

14

Click Add to save the rule.