Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
366
Views
2
Helpful
3
Replies

FTD Question

Go to solution
N3om
Level 3
Level 3

‎02-19-2026 04:15 AM

Hi

Is it ok to have two interfaces in different security zones in the same vrf, So traffic comes in on a sub-interface in security zone(visitors) then egresses through a RB VPN  VTI in security zone(guest-inet) is this ok or should i be doing it a different way??

 

Thanks

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Rob Ingram
VIP
VIP
In response to N3om

‎02-19-2026 05:37 AM

@N3om no, I would recommend using different zones for each interface.

View solution in original post

3 Replies 3

Go to solution
Rob Ingram
VIP
VIP

‎02-19-2026 04:23 AM

@N3om yes, two interfaces in two different zones should be fine, even in the same vrf. I assume this vrf is for visitors/guest traffic and segmented from your normal corporate traffic, so that would be secure.

Go to solution
N3om
Level 3
Level 3
In response to Rob Ingram

‎02-19-2026 05:34 AM

@Rob Ingram Yes its guest and is segregated, Is it best practice to have source and destination interfaces in the same security zone then.??

Thanks

0 Helpful

Go to solution
Rob Ingram
VIP
VIP
In response to N3om

‎02-19-2026 05:37 AM

@N3om no, I would recommend using different zones for each interface.

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card