Chapter 4 Configuration Basics
NXC5200 User’s Guide
60
4.3 Zones, Interfaces, and Physical Ports
Zones (groups of interfaces) simplify security settings. Here is an overview of
zones, interfaces, and physical ports in the NXC.
4.3.1 Interface Types
There are two types of interfaces in the NXC. In addition to being used in various
features, interfaces also describe the network that is directly connected to it.
• Ethernet interfaces are the foundation for defining other interfaces and
network policies. By
• VLAN interfaces recognize tagged frames. The NXC automatically adds or
removes the tags as needed. Each VLAN can only be associated with one
Ethernet interface.
Note: By default, all Ethernet interfaces are placed into vlan0, allowing the NXC to
function as a bridge device.
Table 12
Zones, Interfaces, and Physical Ethernet Ports
Zones
(LAN, WLAN)
A zone is a group of interfaces. Use zones to apply security settings
such as firewall, IDP, remote management, anti-virus, and
application patrol.
Interfaces
(Ethernet, VLAN)
Interfaces are logical entities that (layer-3) packets pass through.
Use interfaces in configuring zones, device HA, policy routes, static
routes, and NAT.
Port combine physical ports into interfaces.
Physical
Ethernet Ports
(1, 2, 3, 4)
The physical port is where you connect a cable. In configuration, you
use physical ports when configuring port groups. You use interfaces
and zones in configuring other features.