F3726, F3211, F3174, R5135, R3816-HP Firewalls and UTM Devices Access Control Command Reference-6PW100
35
zone-id: Specifies the security zone ID.
The following matrix shows the value range for the zone-id argument on different firewalls and UTM
devices:
Hardware Value ran
g
e
F1000-A-EI/F1000-S-EI 0 to 512
F1000-E 0 to 1024
F5000 0 to 1024
Firewall module 0 to 1024
U200-A 0 to 256
U200-S 0 to 32
Usage guidelines
When creating a security zone, you must specify a security zone name and a security zone ID that are
respectively unique on the VD. To enter the view of an existing security zone, you can specify the security
zone name, or specify both the security zone name and the security zone ID. If you specify both the
security zone name and security zone ID, make sure the two arguments identify the same security zone.
Deleting a security zone deletes the interzone instances that use this zone as the source or destination
zone and the security policies applied to the interzone instances.
System-predefined security zones cannot be deleted.
Examples
# Create a security zone with the name zonetest and ID 7 for the default VD.
<Sysname> system-view
[Sysname] zone name zonetest id 7
[Sysname-zone-zonetest]
# Create a security zone with the name Zoffice and ID 8 for VD vdtest.
<Sysname> system-view
[Sysname] switchto vdtest
[Sysname-vsys-vdtest] zone name Zoffice id 8
[Sysname-vsys-vdtest-zone-Zoffice]
Related commands
interzone