Which statement describes a zone when implementing ZPF on a Cisco router?

Which statement describes a zone when implementing ZPF on a Cisco router?

• Only one zone can be attached to a single interface.
• A zone is used to define security policies for a unique interface on the router.
• A zone is used to implement traffic filtering for either TCP or UDP.
• A zone establishes a security border of a network.

Explanation: The first step in implementing ZPF is determining the zones. Zones establish the security borders of a network. A zone defines a boundary where traffic is subjected to policy restrictions as it crosses to another region of the network. The policy between zones can be established to restrict multiple protocol sessions such as TCP, UDP, and ICMP. One design consideration is to identify subsets within zones and merge traffic requirements because multiple zones might be indirectly attached to a single interface of a firewall.

Exam with this question: Module 10: Quiz – Zone-Based Firewalls Network Security
Exam with this question: Network Defense: Module 6.4.2 Zone-Based Firewalls Quiz