Managed NAT Gateway for Secure Outbound Internet Access
Enable secure outbound internet access for cloud servers in private subnets without exposing them to inbound traffic. Managed NAT Gateways provide high availability, automatic scaling, and static public IPs.
Managed NAT Gateway for Secure Outbound Internet Access
Enable secure outbound internet access for cloud servers in private subnets without exposing them to inbound traffic. Managed NAT Gateways provide high availability, automatic scaling, and static public IPs.
Key Features
What sets Xelon Cloud apart
Key Features
What sets Xelon Cloud apart
Why choose Xelon Cloud?
Overview
Xelon NAT Gateway provides secure, managed network address translation for cloud servers in private subnets. Servers without public IPs can access the internet for software updates, API calls, and external integrations while remaining protected from inbound traffic.
Key Highlights:
Outbound-only internet access for private subnet VMs (no inbound connections allowed)
Static public IPv4 addresses for consistent source IP (IP whitelisting compatibility)
High availability with redundant NAT gateway pairs (99.99% uptime SLA)
Automatic scaling to handle traffic bursts (up to 10 Gbps per NAT gateway)
Support for multiple availability zones with multi-NAT configurations
IPv6 NAT64 support for IPv6-only workloads
Use Cases:
Database Servers: Allow databases in private subnets to download updates without public IPs
Backend Services: Microservices calling external APIs (payment gateways, SaaS integrations)
Compliance: Meet PCI-DSS/HIPAA requirements for private subnet isolation
IP Whitelisting: Use static NAT gateway IP for third-party API whitelisting
Why choose Xelon Cloud?
Overview
Xelon NAT Gateway provides secure, managed network address translation for cloud servers in private subnets. Servers without public IPs can access the internet for software updates, API calls, and external integrations while remaining protected from inbound traffic.
Key Highlights:
Outbound-only internet access for private subnet VMs (no inbound connections allowed)
Static public IPv4 addresses for consistent source IP (IP whitelisting compatibility)
High availability with redundant NAT gateway pairs (99.99% uptime SLA)
Automatic scaling to handle traffic bursts (up to 10 Gbps per NAT gateway)
Support for multiple availability zones with multi-NAT configurations
IPv6 NAT64 support for IPv6-only workloads
Use Cases:
Database Servers: Allow databases in private subnets to download updates without public IPs
Backend Services: Microservices calling external APIs (payment gateways, SaaS integrations)
Compliance: Meet PCI-DSS/HIPAA requirements for private subnet isolation
IP Whitelisting: Use static NAT gateway IP for third-party API whitelisting
Automated Backups Made Simple
Daily snapshots are included with Xelon Cloud instances by default.
Need longer retention? Choose flexible options with 7, 30, or 365-day retention for compliance or business continuity.
Automated Backups Made Simple
Daily snapshots are included with Xelon Cloud instances by default.
Need longer retention? Choose flexible options with 7, 30, or 365-day retention for compliance or business continuity.
Technical Specifications
Technical Specifications
Performance
Throughput: Up to 10 Gbps per NAT gateway (automatic scaling)
Connections: Up to 1 million concurrent connections per NAT gateway
Latency: <1ms additional latency vs. direct public IP
IP Addresses
Public IPv4: 1-8 static public IPs per NAT gateway (for IP whitelisting)
IPv6: NAT64 support for IPv6-only VMs accessing IPv4 internet
IP Rotation: Optional source IP rotation across multiple public IPs
High Availability
Redundancy: Active-active NAT gateway pairs with automatic failover
Uptime SLA: 99.99% monthly uptime guarantee
Multi-AZ: Deploy NAT gateways in multiple availability zones for zone failure tolerance
Traffic Management
Port Forwarding: NOT supported (outbound-only by design for security)
Session Persistence: Idle timeout 120-7200 seconds (configurable)
Protocol Support: TCP, UDP, ICMP
Monitoring & Logging
Metrics: Active connections, data transfer (in/out), error counts
Flow Logs: VPC flow logs for traffic analysis and security audits
Alerts: Email/Slack/PagerDuty notifications for connection limits or errors
Integration
Routing: Attach NAT gateway to route tables, set default route (0.0.0.0/0) to NAT gateway
API: RESTful API for NAT gateway creation, deletion, IP management
Terraform: xelon_nat_gateway resource for infrastructure-as-code
Technical Specifications
Technical Specifications
Performance
Throughput: Up to 10 Gbps per NAT gateway (automatic scaling)
Connections: Up to 1 million concurrent connections per NAT gateway
Latency: <1ms additional latency vs. direct public IP
IP Addresses
Public IPv4: 1-8 static public IPs per NAT gateway (for IP whitelisting)
IPv6: NAT64 support for IPv6-only VMs accessing IPv4 internet
IP Rotation: Optional source IP rotation across multiple public IPs
High Availability
Redundancy: Active-active NAT gateway pairs with automatic failover
Uptime SLA: 99.99% monthly uptime guarantee
Multi-AZ: Deploy NAT gateways in multiple availability zones for zone failure tolerance
Traffic Management
Port Forwarding: NOT supported (outbound-only by design for security)
Session Persistence: Idle timeout 120-7200 seconds (configurable)
Protocol Support: TCP, UDP, ICMP
Monitoring & Logging
Metrics: Active connections, data transfer (in/out), error counts
Flow Logs: VPC flow logs for traffic analysis and security audits
Alerts: Email/Slack/PagerDuty notifications for connection limits or errors
Integration
Routing: Attach NAT gateway to route tables, set default route (0.0.0.0/0) to NAT gateway
API: RESTful API for NAT gateway creation, deletion, IP management
Terraform: xelon_nat_gateway resource for infrastructure-as-code
Optimized for Kubernetes & Cloud-Native Workloads
Our compute plans are designed to integrate seamlessly with CloudDeck and Xelon Kubernetes:
Native support for K8s node pools
Instant scaling
Multi-zone deployments
S3-compatible object storage for stateful workloads
SCION-secured networking for critical clusters
Optimized for Kubernetes & Cloud-Native Workloads
Our compute plans are designed to integrate seamlessly with CloudDeck and Xelon Kubernetes:
Native support for K8s node pools
Instant scaling
Multi-zone deployments
S3-compatible object storage for stateful workloads
SCION-secured networking for critical clusters
Optimized for Kubernetes & Cloud-Native Workloads
Our compute plans are designed to integrate seamlessly with CloudDeck and Xelon Kubernetes:
Native support for K8s node pools
Instant scaling
Multi-zone deployments
S3-compatible object storage for stateful workloads
SCION-secured networking for critical clusters
Book an Appointment
Choose a time that works for you and connect with one of our cloud specialists for a personalised session — via Microsoft Teams or phone.
Request Meeting with our Solution Architect
Request Meeting with our Partner Manager
Book an Appointment
Choose a time that works for you and connect with one of our cloud specialists for a personalised session — via Microsoft Teams or phone.
Request Meeting with our Solution Architect
Request Meeting with our Partner Manager
Get in touch
We’re here to help you with cloud strategy, technical questions, pricing, compliance, and tailored solutions for your organisation.
Get in touch
We’re here to help you with cloud strategy, technical questions, pricing, compliance, and tailored solutions for your organisation.
First name
Bonnie
Last name
Green
name@example.com
Phone number
+(12) 345 6789
Your message
By submitting this form, you confirm that you have read and agree to Xelon's Terms of Service and Privacy Statement
Send message
Take your cloud to the next level
Experience high-performance Swiss cloud infrastructure built for teams who want reliability, sovereignty, and simplicity.
Take your cloud to the next level
Experience high-performance Swiss cloud infrastructure built for teams who want reliability, sovereignty, and simplicity.
Take your cloud to the next level
Experience high-performance Swiss cloud infrastructure built for teams who want reliability, sovereignty, and simplicity.