Yes. You can use an interface IP address for NAT Server or Source NAT Policy Translation.
If the global IP address of the NAT server uses the interface IP address: When packets access the firewall, the firewall translates the destination IP address of the packet first. The IP addresses of packets accessing the interface are always replaced with the inside IP address of NAT Server. As a result, the interface cannot be accessed. Some common operations such as ping detection, web management, and Telnet management on the interface may cause problems. Therefore, do not use the interface IP address as the global IP address of NAT Server. Instead, you can use the protocol-based NAT Server in the case that protocols do not conflict with each other.
If the interface IP address is used as the source NAT policy, when the packet proactively accesses the interface IP address of the firewall, the packet goes through the first-packet procedure and can directly access the interface IP address without being affected by the source NAT policy configuration.
Notice:
When nat sever and nat outbound are configured together, the priority of the nat server is higher than that of the nat outbound. That is, packets match the nat server first.
