Designing a ZPF requires several steps. Which step involves defining boundaries where traffic is subjected to policy restrictions as it crosses to another region of the network?
- determine the zones
- design the physical infrastructure
- identify subsets within zones and merge traffic requirements
- establish policies between zones
Explanation: Designing ZPFs involves several steps:
- Step 1. Determine the zones – The administrator focuses on the separation of the network into zones. Zones establish the security borders of a network.
- Step 2. Establish policies between zones – For each pair of \”source-destination\” zones, define the sessions that clients in the source zones can request from servers in destination zones.
- Step 3. Design the physical infrastructure – After the zones have been identified, and the traffic requirements between them documented, the administrator must design the physical infrastructure. This includes dictating the number of devices between most-secure and least-secure zones and determining redundant devices.
- Step 4. Identify subsets within zones and merge traffic requirements – For each firewall device in the design, the administrator must identify zone subsets that are connected to its interfaces and merge the traffic requirements for those zones.
More Questions: Module 10: Quiz – Zone-Based Firewalls Network Security
More Questions: Network Defense: Module 6.4.2 Zone-Based Firewalls Quiz