How does a zone-based firewall implementation handle traffic between interfaces in the same zone?

How does a zone-based firewall implementation handle traffic between interfaces in the same zone?By default, the traffic between interfaces in the same zone is not subject to any policy and passes freely. Firewall zones are used for security features. Reference: http://www.cisco.com/c/en/us/td/docs/ios-xml/ios/sec_data_zbf/ configuration/15-mt/sec-data-zbf-15-mt-book/sec-zone-pol-fw.html

Question:

How does a zone-based firewall implementation handle traffic between interfaces in the same zone?

Options:

Traffic between two interfaces in the same zone is allowed by default.

Traffic between interfaces in the same zone is blocked unless you configure the same-security permit command.

Traffic between interfaces in the same zone is always blocked.

Traffic between interfaces in the same zone is blocked unless you apply a service policy to the zone pair.

Correct Answer

The Correct Answer for this Question is

Traffic between two interfaces in the same zone is allowed by default.

Leave a Comment