Security profiles needed for port forward policies?

I have a 30E that I am intending to place in front of my mail server. It is running in a  basic NAT configuration, and I will be forwarding ports 25,465,587 and 993 to the internal server. I have enabled security profiles (SSL inspect, AV, antispam, etc) on the LAN-WAN IPv4 policy. Do I still need to enable profiles on the port forwarding policies? My gut feeling is yes....