Bind Security Zones to Sites

Learn how to bind security zones to sites.
Use site bindings to map firewall zones to interfaces and networks. Binding a zone to a site attaches networks to the zones for that site. A zone can have multiple networks, but a network can only have one zone.
If a site has both site-level bindings and device-level bindings, the two settings’ resulting configuration is united. In the event of a conflict between site-level bindings and device-level bindings, device-level bindings take precedence.
You can bind security zones to sites either by selecting a security zone first and then binding it to site or you can select the site first and then select a security zone for binding.
  • Select a security zone and bind it to a site.
    1. Navigate to
      Policies
      Stacked Policies
      Security
      , and select
      Security Zones
      .
    2. From the ellipsis menu for a security zone, select
      View Interface Bindings
      .
    3. Click
      Site
      .
    4. Click
      Bind New Site
      .
    5. Select a site to bind and click
      Submit
      .
    6. On the
      Site Zone Binding for Site
      screen, select a circuit(s) to bind to the zone.
    7. Click
      Save
      .
  • Select a site and bind a security zone to a device interface(s).
    1. Navigate to
      Map
      Sites
      Select a Site
      Configurations
      Advanced
      Bind Security Zones
      .
    2. Select
      Sites
      and click
      Bind Zone
      .
    3. Select a zone to bind and then click
      Done
      .
    4. On the
      Zone Networks Binding for Zone
      screen, select a circuit(s) to bind to the zone.
    5. Click
      Save
      .

Recommended For You