Configuring class-based zones

Zone class-based software configuration consists of the following general steps:

Procedure
  1. Identify the traffic that you want the switch to intercept and forward to the ONE application. Specifically: Based on the answers to these questions, you can begin to plan your zones and zone policies.
    • Source
      • Which users or devices are sending the traffic that you want the switch to intercept?

      • Which switch ports are connected to these users' workstations and devices?

    • Destination
      • What is the destination of the traffic?

  2. Create a zone class.

    A zone class is a logical group of switch ports. For example, you might create an internal zone and assign all the ports on the internal network to this zone. You might then create an external zone and assign the switch port that connects to the firewall or router to this zone

  3. Configure a zone policy for one or more zone classes, including an optional, default zone class.
    A policy specifies the traffic that should be intercepted based on the source and destination zones. Specifically, you define a zone policy by specifying:
    Source zone Where the traffic you want to accelerate originates.
    Destination zone Where the traffic will be sent.
    Intercept rules Define the action the switch will take—intercepting the traffic—and the direction of the traffic. For Transparent Mode, traffic is unidirectional, or one way.

    A zone policy can contain one or more intercept rules.

  4. Associate the policy with the ONE application.