Skip to content

Page permalink

Always use the following permalink when referencing this page. It will remain unchanged in future help versions.

https://docs.sophos.com/nsg/sophos-firewall/20.0/Help/en-us/webhelp/onlinehelp/index.html?contextId=rules-policies-NAT-rule-actions

Create and manage NAT rules

You can create source NAT and destination rules manually. You can also use the Server access assistant (DNAT) to create a DNAT rule, a source NAT rule for the reply traffic, and the corresponding firewall rules.

Actions

  • To add a NAT rule manually, select Add NAT rule and then select New NAT rule.

    You can create SNAT, DNAT, and port forwarding rules.

  • To create destination NAT rules and the related firewall rules automatically, select Add NAT rule and then select Server access assistant (DNAT).

Server access assistant (DNAT)

Use Server access assistant to create DNAT rules to translate incoming traffic to servers, such as web, mail, SSH, or other servers, and to access remote desktops. The assistant also creates a reflexive SNAT rule (for outbound traffic from the servers), a loopback rule (for internal users accessing the servers), and a firewall rule (to allow inbound traffic to the servers) automatically.

Rule table actions

  • To see IPv4 or IPv6 rules in the rule table, select IPv4 or IPv6.
  • To hide or show the rule filter, select Disable filter and Enable filter respectively.
  • To reset the rule filter, select Reset filter.
  • To turn off rules, select the rules and then select Disable.
  • To delete rules, select the rules and then select Delete.
  • To change the sequence of a rule, click and drag the Rule handle Rule handle button.. Sophos Firewall evaluates rules from the top down until it finds a match. Once it finds a match for the packet, it doesn't evaluate subsequent rules. So, position the specific rules above the less specific rules.

Click More options More options button. to specify the following actions:

  • To turn on or turn off a rule, select the switch.
  • To edit or delete a rule, select the action.
  • To add a rule next to an existing rule, select the action.
  • To unlink a rule from the firewall rule, select Unlink rule.
  • To reset the number of times a rule was in use, select Reset usage count. This setting is useful when troubleshooting.