Whether the source address specified in the security policy is the translated address when the source NAT policy is configured

The source address specified in the security policy is the address before NAT when the source NAT policy is configured.
When the firewall translates an address in a packet, it searches for the interzone security policy. The firewall translates only the address that passes the security policy check and matches the conditions defined in the interzone policy. Therefore, the source address specified in the interzone security policy is the address before NAT, that is, the private IP address.

Scroll to top