I hope someone can help me to resolve a little doubt
This is my first time working with security zones. Yesterday I performed a migration from Juniper to checkpoint.
So, I tryed to create the same security zone. During the intervention i have observed every policy create from the Zone A to the same Zone A doesnt match any sub-policy rules althrouh We have defined a sub-policy Any Any Allow.
when i take a look to the logs I have observed every traffic from one interface to the same interface are tagged with the security zones internal and local.
This is by design for any reason? This zones appear always when the traffic came from the one interface with destination the same interface?