Cloud NAT provides network address translation (NAT) for outbound traffic to the internet, Virtual Private Cloud (VPC) networks, on-premises networks, and other cloud provider networks. This page describes the differences between the Trusted Cloud and Google Cloud versions of Cloud NAT.
For more detailed information about Cloud NAT, see the Cloud NAT overview and the rest of the Cloud NAT documentation.
Key differences
There are some differences between the Trusted Cloud version of Cloud NAT and the Google Cloud version. Some notable differences include the following:
- Only NAT for traffic to the internet is available (Public NAT). NAT for traffic to VPC, on-premises, and other cloud provider networks is unavailable (Private NAT).
- Only IPv4 to IPv4 address translation is available.
- Cloud NAT allocates external IP addresses from Premium Tier.
A more detailed list of differences is provided in the rest of this section. If you are already familiar with Google Cloud, we recommend that you review these differences carefully, particularly before designing an application to run on Trusted Cloud. We also recommend reviewing the general differences between Google Cloud and your universe in the Trusted Cloud by S3NS overview.
If you would like to use a particular Cloud NAT feature that isn't currently available in Trusted Cloud, contact Trusted Cloud support. To be notified when new features roll out in Trusted Cloud, subscribe to the release notes.
Security and access control
| Organization Policy Service | Custom constraints are unavailable. |
Network
| Cloud NAT types | Only Public NAT is available. Private NAT is unavailable. |
| IPv6 | Only IPv4 to IPv4 address translation is available. IPv6 to IPv4 address translation is unavailable. |
| Network Service Tiers | Cloud NAT allocates external IP addresses from Premium Tier. Standard Tier is unavailable. |
Workflows
| Google Kubernetes Engine | Some GKE features are unavailable. For more information, see GKE in Trusted Cloud by S3NS. |
| Serverless environments | Cloud Run, Cloud Run functions, and App Engine are unavailable. |
Insights and observability
| Network Intelligence Center | Network Intelligence Center is unavailable. |
Related guides
The following information might also affect how you use and design for Cloud NAT in Trusted Cloud by S3NS. These guides include general information about working in Trusted Cloud, including documentation, security and access control, billing, tooling, and service usage.
For details about other services and features in Trusted Cloud and their differences from their Google Cloud counterparts, see the product list.
Related products
- Virtual Private Cloud in Trusted Cloud by S3NS
- Compute Engine in Trusted Cloud by S3NS
- GKE in Trusted Cloud by S3NS
- Cloud Load Balancing in Trusted Cloud by S3NS