Gateways

NAT gatewayNAT gateway

A NAT gateway allows you to grant internet access permissions to cloud resources without assigning public IP addresses to them. Instead, they will access the internet via the NAT gateway that will be assigned an IP address from a separate range of public IPs. A gateway is a regional resource one can find in all availability zones. You can manage gateways using the management console, CLI, Terraform, or API.

To route traffic through a gateway, specify it as the next hop in a route table. Currently, you can only use a route with the 0.0.0.0/0 destination prefix with a NAT gateway: all traffic bound outside the network will pass through the gateway.

If a VM network interface has a public IP address assigned, and the subnet this interface is connected to has a route table with a configured gateway, the VM will access the internet through the public IP address rather than the gateway. Currently, you cannot use reserved public IP addresses for gateways.

Use casesUse cases

• Routing through a NAT instance
• Implementing fault-tolerant scenarios for NAT VMs
• Configuring a network for Yandex Data Processing
• Connecting to Object Storage from Virtual Private Cloud
• Automating Yandex Query tasks with Yandex Managed Service for Apache Airflow™