Support Center > Search Results > SecureKnowledge Details
Source Hide NAT is performed even though a no-NAT rule is configured
  • Traffic captures (fw monitor) show that the source IP address is translated to one of Physical IP's of the Security Gateway even if there is a no-NAT rule configured.
  • Traffic arrives to next-hop with the NATed IP address.
  • Changing the NAT method of the "Original Packet" rule to "Static-NAT" instead of "Hide-NAT" resolves the issue.

By design, the Security Gateway default value of no-NAT rule should be Static-NAT.

However, in R80 and R80.10 Security Management server, users can change NAT method of "Original packet" to hide-NAT, which can cause the Security Gateway to perform NAT on the Source-IP configured in this particular rule, even when there is a no-NAT rule configured. 

Note: To view this solution you need to Sign In .