Configure Policy-Based 1-to-1 NAT

In policy-based 1-to-1 NAT, your XTM device uses the private and public IP ranges that you set when you configured global 1-to-1 NAT, but the rules are applied to an individual policy. 1-to-1 NAT is enabled in the default configuration of each policy. If traffic matches both 1-to-1 NAT and dynamic NAT policies, 1-to-1 NAT takes precedence.

Enable Policy-Based 1-to-1 NAT

Because policy-based 1-to-1 NAT is enabled by default, you do not need to do anything else to enable it. If you have previously disabled policy-based 1-to-1 NAT, select the check box inStep 4 of the subsequent procedure to enable it again.

Disable Policy-Based 1-to-1 NAT

  1. Select Firewall > Firewall Policies.
    The Firewall Policies list appears.
  2. Select a policy.
  3. From the Action drop-down list selectEdit Policy .
  4. Click the Advanced tab.

Sscreen shot of the Policy Configuration — Advanced tab

  1. Clear the 1-to-1 NAT check box to disable NAT for the traffic controlled by this policy.
  2. Click Save.

See Also

About 1-to-1 NAT

Configure Firewall 1-to-1 NAT

Give Us Feedback  •   Get Support  •   All Product Documentation  •   Knowledge Base