Network Address Translation (NAT) Rules Now Available for Firewall Policies
- Services: Network Firewall
- Release Date: June 24, 2025
The Network Firewall now supports Source Network Address Translation (SNAT) through NAT rules configured in firewall policies. SNAT enables the translation of source IP addresses for outbound traffic, facilitating many-to-one translation. This allows multiple internal source IP addresses to use a single external IP address, optimizing IP address usage and simplifying external connectivity.
Important
The firewall can perform private NAT operations only, public NAT isn't supported.
The firewall can perform private NAT operations only, public NAT isn't supported.
To enable SNAT, add NAT rules to a firewall policy and assign the policy to a firewall. The firewall then translates matching outbound traffic using the specified NAT rules. Fixed NAT IPs define the IP addresses or address pools used for this translation process.
For more information, see: