Fortinet black logo

Administration Guide

Device zones

Device zones

When creating a device zone, map the zone to a physical interface. You must also map the zone to a normalized interface to use the zone in a policy. See also Normalized interfaces.

You can create normalized interface zones to be used when configuring device zones. See Creating normalized interfaces.

To create a device zone:
  1. Go to Device Manager > Device & Groups.
  2. In the tree menu, select the device group, for example, Managed Devices. The list of devices is displayed in the content pane and in the bottom tree menu.
  3. In the bottom tree menu, select a device. The dashboard for the device displays in the content pane.
  4. From the System menu, select Interface. The System: Interface dashboard is displayed.
  5. Click Create New > Device Zone.

    The New Device Zone pane opens.

    Mapping a zone to a normalized interface

  6. When zone-only normalized interfaces are enabled in the CLI, and a normalized interface zone has been configured for this ADOM, you can select it in the Normalized Interface dropdown. When a Normalized Interface is selected, the Zone Name is automatically filled to match the selected normalized interface zone, otherwise, it can be manually filled. For more information on creating normalized interface zones, see Creating normalized interfaces.
  7. Complete the remaining options, and click OK.

    The interface members are physical interfaces.

Device zones

When creating a device zone, map the zone to a physical interface. You must also map the zone to a normalized interface to use the zone in a policy. See also Normalized interfaces.

You can create normalized interface zones to be used when configuring device zones. See Creating normalized interfaces.

To create a device zone:
  1. Go to Device Manager > Device & Groups.
  2. In the tree menu, select the device group, for example, Managed Devices. The list of devices is displayed in the content pane and in the bottom tree menu.
  3. In the bottom tree menu, select a device. The dashboard for the device displays in the content pane.
  4. From the System menu, select Interface. The System: Interface dashboard is displayed.
  5. Click Create New > Device Zone.

    The New Device Zone pane opens.

    Mapping a zone to a normalized interface

  6. When zone-only normalized interfaces are enabled in the CLI, and a normalized interface zone has been configured for this ADOM, you can select it in the Normalized Interface dropdown. When a Normalized Interface is selected, the Zone Name is automatically filled to match the selected normalized interface zone, otherwise, it can be manually filled. For more information on creating normalized interface zones, see Creating normalized interfaces.
  7. Complete the remaining options, and click OK.

    The interface members are physical interfaces.