I have a basic question as to how a firewall works.
Say there is a server in the DMZ zone with a private IP of 10.11.1.4 and it is statically NATTed by the firewall to a public IP of 100.11.1.4. Now when a packet with the destination of 100.11.1.4 hits the firewall does it get translated back to its private IP ie 10.11.1.4? What happens if the firewall has a static route to a network 100.11.1.0/24 ( of which 100.11.1.4 is a part of) pointing to another IP? Does the packet reach 10.11.1.4 or gets routed to the next hop IP defined by static route?