With the zone-based firewall, we should be aware of many caveats and rules regarding its operation. These are as follows:
- Configure your zones first as we described in the steps of the previous post. A zone must be configured before you can assign interfaces to the zone.
- An interface can be assigned to only one security zone.
- Traffic is always implicitly allowed to flow between interfaces within the same zone.