security zone-policy zone <from-zone> to <to-zone> firewall <name>
Applies a firewall rule set to the packet flow between two zones.
- from-zone
- The name of a security zone from which traffic is originating.
- to-zone
- The name of a security zone for which traffic is destined.
- name
- The name of a firewall rule set.
Configuration mode
security {
zone-policy {
zone from-zone {
to to-zone {
firewall name
}
}
}
}
You can apply multiple rulesets by running this command multiple times and specifying differing rule set names.
Use the set form of this command to define a rule set that filters packets flowing from one zone to another.
Use the delete form of this command to delete a packet-filtering rule set.
Use the show form of this command to display the configured rule sets.