How does a zone-based firewall implementation handle traffic between interfaces in the same zone?
A. Traffic between two interfaces in the same zone is allowed by default.
B. Traffic between interfaces in the same zone is blocked unless you configure the same-security permit command.
C. Traffic between interfaces in the same zone is always blocked.
D. Traffic between interfaces in the same zone is blocked unless you apply a service policy to the zone pair.
On second thoughts things are as follows:
Traffic between interfaces in the same zone is implicitly permitted.
Traffic between interfaces in different zones but with the same security level is implicitly denied unless the “same-security permit” command is configured.
Therefore correct answer is A.
Sorry for the bad first reply..
Same security zone means same security level. You can’t have the same zone applied to different interfeaces with different security level.
Correct is answer B
Correct: A
Luis is correct, same zone is allowed where as same security level requires the config
A) NO
good is;
B. Traffic between interfaces in the same zone is blocked unless you configure the same-security permit command
It says “in the same zone”, not “in the same security level”. I think A is correct.
A is correct. Question is about router ZBFW not the ASA.