When a TCP SYN packet is sent from host 10.200.3.1 to destination 10.200.1.10 on port 8080, what will be the source address, destination address, and port forwarded by FortiGate?

The correct understanding in this scenario revolves around NAT (Network Address Translation) processes that FortiGate firewalls often perform when forwarding TCP packets. In the specific case of a TCP SYN packet originating from host 10.200.3.1 to a destination at 10.200.1.10 on port 8080, the behavior of the firewall will impact the source and destination addresses in the packet.

When a FortiGate processes packets and applies NAT rules, it may change the source and destination addresses as necessary for proper routing and access control. Here, the source address maintains its original form as 10.200.3.1, as it is the originating host in the communication. However, if NAT is configured to translate the destination address upon reaching the FortiGate, it can modify the destination address from 10.200.1.10 to another internal address, such as 10.0.1.10, and potentially alter the port from 8080 to a different standard or configured port like 80.

Thus, in this scenario, the source address remains 10.200.3.1, the translated destination address is 10.0.1.10 (as would be expected under NAT behavior),