When the traffic is from trust to untrust , Interface based natting is by default available for address translation, But in case of the trafiic from trust and user-defined zone and vice versa, you need to use "policy based NAT" in the advanced option of a zonal policy.
HTH
regards,