Troubleshooting Tip: Unable to configure ZTNA firewall policy when central NAT is enabled
| Description | This article describes how to configure ZTNA firewall policy when central NAT is enabled. |
| Scope | FortiOS 7.2.5 and above. |
| Solution | FortiGate with multiple VDOMs and central NAT disabled will have the ZTNA firewall policy under 'Policy & Objects -> Firewall Policy'.
With central NAT enabled, there is no option to configure ZTNA policy under 'Policy & Objects -> Firewall Policy'.
To configure a ZTNA policy, explicit proxy needs to be enabled. The feature can be enabled under 'System -> Feature Visibility -> Explicit Proxy'.
|
