FortiGate Firewall Policy integrates traditional access control, source/destination NAT, application control, IPS, Web filtering, SSL inspection, and logging into a single policy, allowing one rule to handle both traffic control and security enforcement, which simplifies configuration and management. For example, SNAT can be configured directly in the policy without creating separate NAT objects or modifying routing. Security policy templates (Policy Packages or Templates) can be applied in bulk to multiple policies for consistent management. In practice, administrators first create various Profiles (IPS, Web Filter, Antivirus, Application Control, Data Leak Prevention, etc.) and then reference them in firewall policies, so the policy not only controls traffic but also applies layered security inspection. Policies are evaluated in order, matching source/destination addresses, interfaces, services, or applications, and support priority adjustment, logging, session control, and NAT configuration, making firewall policies the central point of FortiGate security management.