Forticonverter Question

hi,

i have a licensed forticonverter and converted a cisco ASA config.

the ASA config had only basic LAN, WAN, no NAT, and "inbound" ACL (internet > WAN) applied on the WAN/outside.

my question:

1.do i need an FW policy for the "outbound" traffic (LAN > WAN)? is this for "ALL" traffic outbound?

2.do i need to have a "reverse" FW policy for each "inbound" ACL/FW policy?

config firewall security-policy
edit 1
set srcintf "port 1"   <<< WAN/outside
set dstintf "any"
set srcaddr "all"
set enforce-default-app-port disable
set dstaddr "all"
set service "echo-reply"
set schedule "always"
set logtraffic disable
set status enable
set action accept
set comments "access-list acl_outside extended permit icmp any any echo-reply"
next
edit 2
set srcintf "port 1"    <<< WAN/outside
set dstintf "any"
set srcaddr "all"
set enforce-default-app-port disable
set dstaddr "all"
set service "time-exceeded"
set schedule "always"
set logtraffic disable
set status enable
set action accept
set comments "access-list acl_outside extended permit icmp any any time-exceeded"
next

next
edit 3
set srcintf "port 1"   <<< WAN/outside
set dstintf "any"
set srcaddr "h-196.1.1.98"
set enforce-default-app-port disable
set dstaddr "all"
set service "ALL"
set schedule "always"
set logtraffic disable
set status enable
set action accept
set comments "access-list acl_outside extended permit ip host 196.1.1.98 any"