Zone, Zone settings – Fortinet 100A User Manual

58

01-28007-0068-20041203

Fortinet Inc.

Zone settings

System network

Zone

You can use zones to group related interfaces and VLAN subinterfaces. Grouping
interfaces and VLAN subinterfaces into zones simplifies policy creation. If you group
interfaces and VLAN subinterfaces into a zone, you can configure policies for
connections to and from this zone, rather than to and from each interface and VLAN
subinterface.

You can add zones, rename and edit zones, and delete zones from the zone list.
When you add a zone, you select the names of the interfaces and VLAN subinterfaces
to add to the zone.

Zones are added to virtual domains. If you have added multiple virtual domains to
your FortiGate configuration, make sure you are configuring the correct virtual domain
before adding or editing zones.

Figure 8: Zone list

Zone settings

Figure 9: Zone options

Create New

Select Create New to create a zone.

Name

The names of the zones that you have added.

Block intra-zone
traffic

Displays Yes if traffic between interfaces in the same zone is blocked and

No if traffic between interfaces in the same zone is not blocked.

Interface Members The names of the interfaces added to the zone.

Edit/View icons. Select to edit or view a zone.
Delete icon. Select to remove a zone.

Name

Enter the name to identify the zone.

Block intra-zone
traffic

Select Block intra-zone traffic to block traffic between interfaces or VLAN

subinterfaces in the same zone.

Interface members Enable check boxes to select the interfaces that are part of this zone.