WatchGuard Support Center

Knowledge Base - Article

 Firebox applies NAT with external interface IP address to outbound HTTPS proxy traffic

Products: Firebox & XTM
Operating System: 12.4.x
Issue Status: Resolved
Tracking ID: FBX-16240, FBX-16392
Status: Resolved
Resolved In: 12.5
When the Firebox allows outbound connections through an HTTPS proxy policy, the Firebox always applies NAT to traffic with the external interface IP address. The Firebox ignores both the global and any per-policy Dynamic NAT configuration.
If you must specify the source IP address for outbound HTTPS traffic, or allow outbound HTTPS traffic without Dynamic NAT, you must configure a packet filter policy for HTTPS for that traffic.