Zone-Based Policy Firewall (ZBW) functionality was introduced as an evolution from the traditional firewall implementation, which was an interface-based model (i.e., the ip inspect command was applied on an interface in the inbound or outbound direction). The limitations imposed by the traditional firewall implementation led to the development of the ZBW, which works by following these steps:
- Create security zones
- Place an interface or multiple interfaces into each security zone
- Create unidirectional zone pairs to define relationships between zones
- Apply a modular flexible and granular policy (using class maps . . .
The content below this message is for members only.