WAF Inspection

As there is no NAT-Rule allowing this traffic (i think/hope there is so) all inbound traffic has to use your WAF-Rules to reach the DST-Server.

As you can see the traffic within logviewer/WAF ... this is so.

But there are options to configure WAF without protection ... you have to configure and use "good" WAF-policies.

As there is no NAT-Rule allowing this traffic (i think/hope there is so) all inbound traffic has to use your WAF-Rules to reach the DST-Server.

As you can see the traffic within logviewer/WAF ... this is so.

But there are options to configure WAF without protection ... you have to configure and use "good" WAF-policies.

Im not sure what you are trying exolain saying "As there is no nat rule" well, configuring WAF NAT must be made by design? To be clear i can reach all 3  ports. But only One is shown amin logs  and also i think that there is no protection. Ive been testing it. 

Which version do you use?

I run version 18.0 and 18.5 and have no additional NAT rules anymore ...

I think you create 3 WAF rules for the 3 ports? (you post only the rule for Port 10003)

I did post 3 rules respectively  7,8,9. Im using 18.5 what do you mean by "have no additional NAT rule"?

I assume you dont mean a NAT at NAT policy section.?

What I mean is:
No NAT rules within NAT policy section, which affect the same traffic as your WAF rules.
With Ver. 17.x.x there were "linked NAT rules" to the WAF rules.
Sometimes we find residues that cause errors.

OH really that maight be an issue. Cuz as i remember i did create NAT rule for WAF (manualy) This is how it looks like now:

So I assume i must delete it and recreate WAF rule with linked one which is created automaticly?

since 18.0 / 18.5 we do not need a NAT Rule for WAF anymore ...

Well a big thanks for your help. I didnt know that NAT isnt needed while WAF is configured or maybe i for got. So now what im  struggling to set it up, cuz ive got thones of false positive allerts ;)