A function deployed in a VPC is isolated from the public network by default. If you want the function to have access to both private network and public network, you can add a NAT gateway to the VPC.
NAT Gateway is a network cloud service that supports IP address translation and enables high-performance internet access for resources in Tencent Cloud. It can translate the private IP address in a VPC to a public IP address if the private and public networks are isolated from each other, enabling the VPC to access the internet. For more information, please see NAT Gateway Overview.
2. Enter relevant information on the pop-up page. This document creates an NAT gateway as shown below:
Note:
The NAT gateway should be deployed in the same region as the function and VPC.
The network to which the NAT gateway belongs should be the VPC where the function is located.
Creating Routing Policy
Select Route Table on the left sidebar in the VPC Console, select the region where the route table is located, and click + Create as shown below:
On the pop-up page, you can choose the corresponding configuration in the following two setting methods to manage the SCF access to the public network.
Enabling SCF to access all public IP addresses
If you want SCF to have access to all public IP addresses, you can configure IP:0.0.0.0/0 in the destination in the routing table and associate the routing table with the created NAT gateway and SCF subnet as shown below:
Enabling SCF to access certain public IP addresses
If you want SCF to have access to certain public IP addresses, you need to add the accessible IP addresses to the routing table and associate the routing table with the created NAT gateway and SCF subnet as shown below:
Yes
No
Was this page helpful?