Description | This article explains why a policy with NAT enabled does not keep NAT setting after policy is set to DENY temporarily. |
Scope | FortiGate. |
Solution |
Here is a normal policy with NAT enabled.
The same policy is now set to DENY:
The same policy set back to ACCEPT:
NAT is disabled by default after setting the policy back to ACCEPT. After setting the policy back to ACCEPT, re-enable NAT to ensure the same functionality as before. Antivirus, web filtering, and certificate inspection also may need to be enabled and logging may need to be turned on. |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.