Network > Zones
193
SonicOS Enhanced 4.0 Administrator Guide
Predefined Zones
The predefined zones on your the SonicWALL security appliance depend on the device. The
following are all the SonicWALL security appliance’s predefined security zones:
The predefined security zones on the SonicWALL security appliance are not modifiable and are
defined as follows:
WAN: This zone can consist of either one or two interfaces. If you’re using the security
appliance’s WAN failover capability, you need to add the second Internet interface to the
WAN zone.
LAN: This zone can consist of one to five interfaces, depending on your network design.
Even though each interface will have a different network subnet attached to it, when
grouped together they can be managed as a single entity.
DMZ: This zone is normally used for publicly accessible servers. This zone can consist of
one to four interfaces, depending on you network design.
VPN: This virtual zone is used for simplifying secure, remote connectivity. It is the only zone
that does not have an assigned physical interface.
MULTICAST: This zone provides support for IP multicasting, which is a method for sending
IN packets from a single source simultaneously to multiple hosts.
WLAN: This zone provides support to SonicWALL SonicPoints. When assigned to the Opt
port, it enforces SonicPoint Enforcement, automatically dropping all packets received from
non-SonicPoint devices. The WLAN zone supports SonicPoint Discovery Protocol (SDP) to
automatically poll for and identify attached SonicPoints. It also supports SonicWALL Simple
Provisioning Protocol to configure SonicPoints using profiles.
Note Even though you may group interfaces together into one security zone, this does not
preclude you from addressing a single interface within the Zone.
Security Types
Each zone has a security type, which defines the level of trust given to that zone. There are five
security types: