summaryrefslogtreecommitdiff
path: root/docs/configuration/zonepolicy
diff options
context:
space:
mode:
Diffstat (limited to 'docs/configuration/zonepolicy')
-rw-r--r--docs/configuration/zonepolicy/index.rst9
1 files changed, 9 insertions, 0 deletions
diff --git a/docs/configuration/zonepolicy/index.rst b/docs/configuration/zonepolicy/index.rst
new file mode 100644
index 00000000..5da40d6d
--- /dev/null
+++ b/docs/configuration/zonepolicy/index.rst
@@ -0,0 +1,9 @@
+Zone-based Firewall Policy
+--------------------------
+
+As an alternative to applying policy to an interface directly, a zone-based
+firewall can be created to simplify configuration when multiple interfaces
+belong to the same security zone. Instead of applying to rulesets to interfaces
+they are applied to source zone-destination zone pairs.
+
+An example to zone-based firewalls can be found here: :ref:`examples-zone-policy`. \ No newline at end of file
generated by cgit v1.2.3 (git 2.39.1) at 2024-11-22 06:53:48 +0000