FW is USG5360
Realize the function：
Normally, 10.0.0.2 NAT translate to the address of 188.8.131.52 from the export 184.108.40.206，220.127.116.11 NAT translate to the address of 18.104.22.168 form the export 22.214.171.124
Detail in the accessories.
After find that reason, cooperated with our IP - link function can solve this problem, because the IP - link can by sending ARP or ICMP message to detect the peer end gateway, if the peer end gateway inaccessible can realize switch, i add the following configuration n USG5360to solve the problem.
ip-link check enable
ip-link 1 destination 126.96.36.199 interface GigabitEthernet 0/2 mode icmp
ip-link 1 destination 188.8.131.52 interface GigabitEthernet 0/3 mode icmp
According to the principle of NAT translation, NAT should according to the routing export to decide using which a NAT translation pool, then the above configuration should be no problem. But if a line go down it can not switch, this problem is caused by our 5360 designing principle, because whether PBR become failure is based on the next hop address, but due to the 5360 configured with two default route, although one route is failure, but the other one is effective. So policy was mistaken the default route can reach next hop address that has been failure, leading to fail to switch.
Generally speaking, the multiple export NAT environment, suggest that add IP - link detection function, so that can realize dynamic link switching.