Priorities of NAT Rules

If there is a conflict between advanced NAT, static NAT, or port forwarding rules, the security appliance will process the rules as described below.

Inbound Traffic

For an inbound packet, the security appliance will perform NAT before a forwarding decision is made and will use the following order of precedence for the various types of rules:

1. Advanced NAT

2. Static NAT

3. Port Forwarding

4. Port Triggering

Outbound Traffic

For an outbound packet, the security appliance will perform NAT after a forwarding decision is made and will use the following order of precedence for various types of rules.

1. Advanced NAT

2. Static NAT

3. Dynamic PAT

For example, if an advanced NAT rule and a port forwarding rule conflict, then the advanced NAT rule will take precedence over the port forwarding rule and the port forwarding rule will not take effect.