Which three statements describe zone-based policy firewall rules that govern interface behavior and the traffic moving between zone member interfaces? (Choose three.)

Which three statements describe zone-based policy firewall rules that govern interface behavior and the traffic moving between zone member interfaces? (Choose three.)

• To permit traffic to and from a zone member interface, a policy allowing or inspecting traffic must be configured between that zone and any other zone.
• If traffic is to flow between all interfaces in a router, each interface must be a member of a zone.
• Interfaces can be assigned to a zone before the zone is created.
• An interface can be assigned to multiple security zones.
• Traffic is implicitly prevented from flowing by default among interfaces that are members of the same zone.
• Pass, inspect, and drop options can only be applied between two zones.

Explanation: Some of the rules that govern interfaces in zones are as follows:

• Create a policy allowing or inspecting traffic so that traffic can flow between that zone and any other zone.
• Create zones before assigning to an interface.
• If traffic is to flow between all interfaces in a router, each interface must be a member of a zone.
• Traffic cannot flow between an interface that has been assigned to a zone and one that has not been assigned to a zone. The actions of pass, inspect, or drop can only be applied between two zones.
• Interfaces that belong to the same zone allow traffic flow between them by default.

Exam with this question: Module 10: Quiz – Zone-Based Firewalls Network Security
Exam with this question: CCNA Security Chapter 4 Exam (CCNAS v1.2)
Exam with this question: CCNA Security Final Exam (CCNAS v1.2)
Exam with this question: Network Defense: Module 6.4.2 Zone-Based Firewalls Quiz