Static NAT question

[alexwc4]

The user manual states that "Static NAT rules do not imply any security rules. To allow incoming traffic to a host
for which you defined Static NAT, you must create an Allow rule." but I am not seeing that behavior. When I create a Static NAT it seems not to be processing the rules, effectively making an exposed host. I have an allow and forward rule translating TCP 80 to TCP 8080 for one machine, it works if I am using the main WAN IP, but if I use the IP for which I created a Static NAT, I stay on 80. Also I can hit a different web server with a Static NAT with no visible allow rule that should let me in to that server. Is this a known issue or am I doing something wrong?

the VPN - 1 Edge X device is running version 6.0.76x