Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Matt_J
Contributor

Do Security Zones work across gateways and policies? 

I am looking at simplifying my policies with Security Zones for the first time and need some clarification. Since they are assigned to the interface, how are these stored/shared? Per gateway? Per Policy? Global?  

How do these work for VPN traffic? Since that technically comes in and out on the external interface, is it seen as an external zone or does it see that it's coming from an internal zone on the other gateway?

Thanks!

1 Reply
PhoneBoy
Admin
Admin

Zones only have a scope relevant to the local gateway.

For example, the InternalZone on GatewayA may be very different from the InternalZone on GatewayB.

I would expect VPN traffic to appear to come from the zone associated to the interface which the VPN traffic came in on.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events