I'm trying to figure out the easiest way to create a new zone in my network for ceo's & finance that should be relatively isolated from the rest of the network.
if we call the new zone 'ceo' that zone would need to have access to trust, but we wouldn't want trust having access to 'ceo'.
is there an easy trick to manage policies, nat rules, etc or do I have to manually create from-zone ceo to-zone trust, etc?
It's easy with only a few polcies but i'm worried about additional complexity as time goes on.
This is the forum to discuss about Identity and Policy Control.
You can post your query to below:
If ScreenOs Firewall:
If SRX Firewall:http://forums.juniper.net/t5/SRX-Services-Gateway/bd-p/srx