What is Reflective rule in XGS?

Question

Hi, 
 on XGS-136 when I use NAT rule wizard, it creates all needed rules + one not-needed Reflective rule. I don't really understand, what Reflective rule is and why is it needed. I usually only create DNST rules, from outside into LAN or DMZ, and local servers already have MASQ and have access to internet resources by default. So why would I need additinal Reflective rule? It's my 2nd XGS only, so I am not (yet) deep into it. Can somebody explain it to me?

Vishal_R · Accepted Answer

Hi Andrej Pirman : The reflexive rules are only needed If your requirement is that the published server wants to initiate connections to the outside Internet IP i.e. return traffic from a server published by a DNAT rule is automatically NATed as part of the stateful inspection. (In case any matching SNAT rule is not found in the NAT rule section and Default SNAT is also disabled for outbound traffic).

What is Reflective rule in XGS?

Top Replies