question

frankdauer avatar image
0 Likes"
frankdauer asked

disable NAT default setting when creating new policy?

Hi there, is it possible, to disable the Default "Nat" Setting in a new Policy?


I thought we had that once in another firewall. So when creating new rules, the nat is not enabled (which could lead sometimes to problems if the creator of the rule does not really have a look on all settings, and just hits create, so the rules gets created with nat of the outgoing interface adress).

Haven't found an answer yet. Thanks in advance!

Firewall policyNAT
10 |600
Toggle Comment visibility. Current Visibility: Viewable by all users

Up to 8 attachments (including images) can be used with a maximum of 1.0 MiB each and 10.0 MiB total.

1 Answer

·
ftntdocs avatar image
0 Likes"
ftntdocs answered

When you create a new firewall policy using GUI, NAT is enabled by default. If you don't want to use this setting, you'll need to turn it off. However, if you're creating a new firewall policy using the CLI, NAT is disabled by default. To enable it, you'll need to use the command #set nat enable

10 |600
Toggle Comment visibility. Current Visibility: Viewable by all users

Up to 8 attachments (including images) can be used with a maximum of 1.0 MiB each and 10.0 MiB total.

Write an Answer

Hint: Notify or tag a user in this post by typing @username.

Up to 10 attachments (including images) can be used with a maximum of 1.0 MiB each and 10.0 MiB total.

Welcome to FortiAnswers

FortiAnswers is the space dedicated to FortiSASE and FortiOS questions and suggestions.

  • Please review the Community guidelines
  • If you are a moderator, please refer to the Moderation guidelines
  • If something in the above guidelines is unclear, please post your question to the Community Feedback space or the Moderators' space