Issue : Rule got created successfully from the dashboard but its not working as expected and unable to delete rule.

Action taken from NOC :

Verified the created rule on the dashboard and same on the VD, checked with the TAC and tested by adding rule directly on the device template as per the customer requirement and its started working. 

2^nd Issue reported : Unable to delete rule from dashboard , Collected api logs and went to engineering to assist further.

Engineering Team Observation / root casue : Rule got created but there is no security rule got craeted for particular NAT rule hence advised to check audit.log 

Action to NOC : Upon checking logs found its because NOC has done some config changes on the device template based on the customer requirement with the help of TAC and while committing the template the some config were missed.

Eng Suggestion : Do not make any config changes directly on the device / device template which will cause the sync issue and end up with this situation.

Action item to NOC for this issue :  

Do not make any changes directly on the device / device template

If the NAT rule is not working , understand the customer requirement properly and verify the config in dashboard and then VD

Config to verify in VD for NAT rule not functioning :

>Ensure the NAT rule and pool got created for the particular port forwarding rule with name ( source nat / destination nat) , pool range etc

>Ensure the zones are applied on the default security rule 

>Ensure that the security rule got created for particular NAT rule.

>If there is any miss on the above configuration , check for the audit logs 

> If the config are correct ask the customer to initiate traffic and check the session extensive output on the appliace to debug further / involve TAC.