< Home

firewall interzone

Function

Using the firewall interzone command, you can define an interzone and enter the interzone view.

Format

firewall interzone zone-name1 zone-name2

Parameters

Parameter Description Value
zone-name1 zone-name2 Specifies the name of a security zone. The value must be the name of an existing security zone.

Views

System view

Default Level

2: Configuration level

Usage Guidelines

Any two zones form an interzone that has an independent interzone view. Most of security policies are configured in the interzone view.

When configuring the interzone ASPF/ALG or interzone SACG interworking policy, you need to set the priority for the security zone. Otherwise, the interzone ASPF/ALG or interzone SACG interworking policy does not take effect. You do not need to configure the priority when configuring other services. Two security zones that are not configured with priorities cannot form an interzone, and priorities of two security zones that form an interzone cannot be deleted.

Example

# Define an interzone of zone1 and zone3 and enter the interzone view.

<sysname> system-view
[sysname] firewall interzone zone1 zone3
[sysname-interzone-zone1-zone3]
Parent Topic: Zone Configuration Commands
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >