分三类zone
1、安全zone
2、功能zone
3、隧道zone
以下为isg-2000防火墙默认的zone
ns_isg2000-> get zone
total 14 zones created in vsys root - 8 are policy configurable.
total policy configurable zones for root is 8.
------------------------------------------------------------------------
id name type attr vr default-if vsys
0 null null shared untrust-vr hidden root
1 untrust sec(l3) shared trust-vr redundant1 root
2 trust sec(l3) trust-vr redundant2 root
3 dmz sec(l3) trust-vr ethernet2/3 root
4 self func trust-vr self root
5 mgt func trust-vr mgt root
6 ha func trust-vr ethernet3/4 root
10 global sec(l3) trust-vr null root
11 v1-untrust sec(l2) shared trust-vr v1-untrust root
12 v1-trust sec(l2) shared trust-vr v1-trust root
13 v1-dmz sec(l2) shared trust-vr v1-dmz root
14 vlan func shared trust-vr vlan1 root
15 v1-null sec(l2) trust-vr l2v root
16 untrust-tun tun trust-vr hidden.1 root
------------------------------------------------------------------------
以上就是juniper防火墙核心技术zone的示例分析的详细内容。