Fortinet black logo

CLI Reference

Home FortiGate / FortiOS 7.4.0 CLI Reference

config system zone

7.4.0
7.4.3
7.4.2
7.4.1
7.4.0
7.2.8
7.2.7
7.2.6
7.2.5
7.2.4
7.2.3
7.2.2
7.2.1
7.2.0
7.0.15
7.0.14
7.0.13
7.0.12
7.0.11
7.0.10
7.0.9
7.0.8
7.0.7
7.0.6
7.0.5
7.0.4
7.0.3
7.0.2
7.0.1
7.0.0
6.4.15
6.4.14
6.4.13
6.4.12
6.4.11
6.4.10
6.4.9
6.4.8
6.4.7
6.4.6
6.4.5
6.4.4
6.4.3
6.4.2
6.4.1
6.4.0
6.2.16
6.2.15
6.2.14
6.2.13
6.2.12
6.2.11
6.2.10
6.2.9
6.2.8
6.2.7
6.2.6
6.2.5
6.2.4
6.2.3
6.2.2
6.2.1
6.0.0
5.6.0
5.4.0
5.2.0
5.0.0
Copy Link
Copy Doc ID 9193cdf6-ef51-11ed-8e6d-fa163e15d75b:67620
Download PDF

config system zone

Configure zones to group two or more interfaces. When a zone is created you can configure policies for the zone instead of individual interfaces in the zone.

config system zone
    Description: Configure zones to group two or more interfaces. When a zone is created you can configure policies for the zone instead of individual interfaces in the zone.
    edit <name>
        set description {string}
        set interface <interface-name1>, <interface-name2>, ...
        set intrazone [allow|deny]
        config tagging
            Description: Config object tagging.
            edit <name>
                set category {string}
                set tags <name1>, <name2>, ...
            next
        end
    next
end

config system zone

Parameter

Description

Type

Size

Default

description

Description.

string

Maximum length: 127

interface <interface-name>

Add interfaces to this zone. Interfaces must not be assigned to another zone or have firewall policies defined.

Select interfaces to add to the zone.

string

Maximum length: 79

intrazone

Allow or deny traffic routing between different interfaces in the same zone.

option

-

deny

Option

Description

allow

Allow traffic between interfaces in the zone.

deny

Deny traffic between interfaces in the zone.

name

Zone name.

string

Maximum length: 35

config tagging

Parameter

Description

Type

Size

Default

name

Tagging entry name.

string

Maximum length: 63

category

Tag category.

string

Maximum length: 63

tags <name>

Tags.

Tag name.

string

Maximum length: 79

Previous
Next

config system zone

Configure zones to group two or more interfaces. When a zone is created you can configure policies for the zone instead of individual interfaces in the zone.

config system zone
    Description: Configure zones to group two or more interfaces. When a zone is created you can configure policies for the zone instead of individual interfaces in the zone.
    edit <name>
        set description {string}
        set interface <interface-name1>, <interface-name2>, ...
        set intrazone [allow|deny]
        config tagging
            Description: Config object tagging.
            edit <name>
                set category {string}
                set tags <name1>, <name2>, ...
            next
        end
    next
end

config system zone

Parameter

Description

Type

Size

Default

description

Description.

string

Maximum length: 127

interface <interface-name>

Add interfaces to this zone. Interfaces must not be assigned to another zone or have firewall policies defined.

Select interfaces to add to the zone.

string

Maximum length: 79

intrazone

Allow or deny traffic routing between different interfaces in the same zone.

option

-

deny

Option

Description

allow

Allow traffic between interfaces in the zone.

deny

Deny traffic between interfaces in the zone.

name

Zone name.

string

Maximum length: 35

config tagging

Parameter

Description

Type

Size

Default

name

Tagging entry name.

string

Maximum length: 63

category

Tag category.

string

Maximum length: 63

tags <name>

Tags.

Tag name.

string

Maximum length: 79

Previous
Next