When building policies within the SFR/FMC what are zones? Do we need them? How are they different from "Networks"?
Go to Solution.
Zones are assigned to interfaces (although you technically don't need to reference them in your Access Control Policy).
They are quite useful when you have multiple interfaces - like several internal interfaces that you might all include in the "Inside" zone - that you want to treat with a single set of rules.
View solution in original post
True - very little utility in the case of a single ASA Firepower service module.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: