Sophos ET80 - Zones and Interfaces on a
Sophos Firewall
What is the difference between a physical interface and a virtual interface on a firewall? - ✔✔A
physical interface would be Port1, PortA whereas a virtual interface is a logical representation
that allows you to bind multiple IP addresses to a single physical interface
What is a Zone on a Sophos firewall? - ✔✔A grouping of interfaces. When used with rules Zones
provide a convenient way of applying security rules and managing traffic to a group of
interfaces. For Example, you could have a Zone for LAN, a Zone for hosted servers and a Zone
for WAN. Each one of these Zones would contain interfaces
What are the 5 default Zones? - ✔✔LAN, WAN, DMZ, VPN and WiFi
What is the LAN zone used for? - ✔✔LAN zone should be used for internal networks and is the
most secure zone by default
What is the WAN zone used for? - ✔✔External interfaces that provide Internet access
What is the DMZ zone used for? - ✔✔Hosting public accessible servers
What is the VPN zone used for? - ✔✔While it does not have a physical port or interface
assigned to it, it used when a VPN is established and dynamically moved when disconnected. It
cannot be customised.
What is the WiFi zone used for? - ✔✔Providing security for wireless networks
What is the total amount of WAN zones you can configure? - ✔✔Only 1
Sophos Firewall
What is the difference between a physical interface and a virtual interface on a firewall? - ✔✔A
physical interface would be Port1, PortA whereas a virtual interface is a logical representation
that allows you to bind multiple IP addresses to a single physical interface
What is a Zone on a Sophos firewall? - ✔✔A grouping of interfaces. When used with rules Zones
provide a convenient way of applying security rules and managing traffic to a group of
interfaces. For Example, you could have a Zone for LAN, a Zone for hosted servers and a Zone
for WAN. Each one of these Zones would contain interfaces
What are the 5 default Zones? - ✔✔LAN, WAN, DMZ, VPN and WiFi
What is the LAN zone used for? - ✔✔LAN zone should be used for internal networks and is the
most secure zone by default
What is the WAN zone used for? - ✔✔External interfaces that provide Internet access
What is the DMZ zone used for? - ✔✔Hosting public accessible servers
What is the VPN zone used for? - ✔✔While it does not have a physical port or interface
assigned to it, it used when a VPN is established and dynamically moved when disconnected. It
cannot be customised.
What is the WiFi zone used for? - ✔✔Providing security for wireless networks
What is the total amount of WAN zones you can configure? - ✔✔Only 1
