Fortinet black logo

CLI Reference

6.4.11
7.4.3
7.4.2
7.4.1
7.4.0
7.2.8
7.2.7
7.2.6
7.2.5
7.2.4
7.2.3
7.2.2
7.2.1
7.2.0
7.0.15
7.0.14
7.0.13
7.0.12
7.0.11
7.0.10
7.0.9
7.0.8
7.0.7
7.0.6
7.0.5
7.0.4
7.0.3
7.0.2
7.0.1
7.0.0
6.4.15
6.4.14
6.4.13
6.4.12
6.4.11
6.4.10
6.4.9
6.4.8
6.4.7
6.4.6
6.4.5
6.4.4
6.4.3
6.4.2
6.4.1
6.4.0
6.2.16
6.2.15
6.2.14
6.2.13
6.2.12
6.2.11
6.2.10
6.2.9
6.2.8
6.2.7
6.2.6
6.2.5
6.2.4
6.2.3
6.2.2
6.2.1
6.0.0
5.6.0
5.4.0
5.2.0
5.0.0

config system zone

config system zone

Configure zones to group two or more interfaces. When a zone is created you can configure policies for the zone instead of individual interfaces in the zone.

config system zone
    Description: Configure zones to group two or more interfaces. When a zone is created you can configure policies for the zone instead of individual interfaces in the zone.
    edit <name>
        set description {string}
        set interface <interface-name1>, <interface-name2>, ...
        set intrazone [allow|deny]
        set name {string}
        config tagging
            Description: Config object tagging.
            edit <name>
                set name {string}
                set category {string}
                set tags <name1>, <name2>, ...
            next
        end
    next
end

config system zone

Parameter

Description

Type

Size

Default

description

Description.

string

Not Specified

interface <interface-name>

Add interfaces to this zone. Interfaces must not be assigned to another zone or have firewall policies defined.

Select interfaces to add to the zone.

string

Maximum length: 79

intrazone

Allow or deny traffic routing between different interfaces in the same zone.

option

-

deny

Option

Description

allow

Allow traffic between interfaces in the zone.

deny

Deny traffic between interfaces in the zone.

name

Zone name.

string

Not Specified

config tagging

Parameter

Description

Type

Size

Default

name

Tagging entry name.

string

Not Specified

category

Tag category.

string

Not Specified

tags <name>

Tags.

Tag name.

string

Maximum length: 79

Previous
Next

config system zone

Configure zones to group two or more interfaces. When a zone is created you can configure policies for the zone instead of individual interfaces in the zone.

config system zone
    Description: Configure zones to group two or more interfaces. When a zone is created you can configure policies for the zone instead of individual interfaces in the zone.
    edit <name>
        set description {string}
        set interface <interface-name1>, <interface-name2>, ...
        set intrazone [allow|deny]
        set name {string}
        config tagging
            Description: Config object tagging.
            edit <name>
                set name {string}
                set category {string}
                set tags <name1>, <name2>, ...
            next
        end
    next
end

config system zone

Parameter

Description

Type

Size

Default

description

Description.

string

Not Specified

interface <interface-name>

Add interfaces to this zone. Interfaces must not be assigned to another zone or have firewall policies defined.

Select interfaces to add to the zone.

string

Maximum length: 79

intrazone

Allow or deny traffic routing between different interfaces in the same zone.

option

-

deny

Option

Description

allow

Allow traffic between interfaces in the zone.

deny

Deny traffic between interfaces in the zone.

name

Zone name.

string

Not Specified

config tagging

Parameter

Description

Type

Size

Default

name

Tagging entry name.

string

Not Specified

category

Tag category.

string

Not Specified

tags <name>

Tags.

Tag name.

string

Maximum length: 79

Previous
Next