Network segmentation allows you to provide constructs that help in creating logical segments within a network.
To view network segmentation, navigate to Configuration > Network Segmentation.
You can add firewall zones and routing domains that can be used across the customer network.
A user can create zones and assign them to the following types of objects:
- Virtual Network Interfaces (VNI)
- Intranet services
- GRE tunnels
- LAN IPsec tunnels
Default_LAN_Zone: Applies to traffic to or from an object with a configurable zone, where the zone has not been set.
Internet_Zone: Applies to traffic to or from an Internet service using a Trusted interface.
Untrusted_Internet_Zone: Applies to traffic to or from an Internet service using an Untrusted interface.
Routing Domains are used for segregate traffic through VLAN. Once the routing domains are created, you can reference them at the global level for Intranet services or at the interface level.