Both source NAT and destination NAT rules
can be configured to disable address translation. You may have exceptions
where you do not want NAT to occur for a certain host in a subnet
or for traffic exiting a specific interface. The following procedure
shows how to disable source NAT for a host.
Create the NAT policy.
for the policy.
select the zone you created for your internal network in the
select the zone) and the zone you created for the external network
enter the host address. Click
drop-down in the Source Address Translation section
of the screen.
Commit your changes.
are processed in order from the top to the bottom, so place the
NAT exemption policy before other NAT policies to ensure it is processed
before an address translation occurs for the sources you want to