Creating tunnel zones
A tunnel zone represents certain types of plaintext, passthrough tunnels that you explicitly tag for special analysis. A tunnel zone is not an interface object, even though you can use it as an interface constraint in access control rules, as explained in Using tunnel zones to apply access control at the tunnel level.
The following procedure explains how to create a tunnel zone in the object manager. You can also create zones when editing a tunnel rule.
Procedure
Step 1 | Choose . |
Step 2 | Choose Tunnel Zone from the list of object types. |
Step 3 | Click Add Tunnel Zone. You can also edit an existing tunnel or delete a tunnel zone that is not being used in a tunnel rule. |
Step 4 | Enter a Name and, optionally, a Description. |
Step 5 | Click Save. |
What to do next
-
Assign the tunnel zone to plaintext, passthrough tunnels as part of a tunnel rule. See Configuring tunnel rules.
-
Use the tunnel zone as source interface criteria in an access control rule.