Category Archives: jncis-sec

JNCIS-SEC [Zones]

Here are my notes I have taken while preparing for JNCIS-SEC exam. It may not be useful for everyone as it is for me to remember some of the stuff.

Zones are logical groupings of logical interfaces with a common security requirement.

  • Special interfaces like fxp0,chassis cluster interfaces and em0 interfaces cannot be assigned to a zone.
  • You cannot assign a logical interface to multiple zones or multiple routing instances. In addition, all of a zone’s logical interfaces must be in a single routing instance.
  • A routing instance is a logical routing construct and can contain one or more zones which cannot be shared with other routing instances.