Refer to the exhibit. The INSIDE zone has been configured and assigned to two separate router
interfaces. All other zones and interfaces have been properly configured. Given the configuration
example shown, what can be determined?
A.
Hosts in the INSIDE zone, with addresses in the 10.10.10.0/24 network, can access any host in
the 10.10.10.0/24 network using the SSH protocol.
B.
If a host in the INSIDE zone attempts to communicate via SSH with another host on a different
interface within the INSIDE zone, communications must pass through the router self zone using
the INTRAZONE policy.
C.
This is an illegal configuration. You cannot have the same source and destination zones.
D.
This policy configuration is not needed, traffic within the same zone is allowed to pass by
default.
Explanation:
The zone pair can also be configured to control the traffic permitted directly into the device; this
includes control and management plane traffic. This is configured by creating a zone pair using the
self zone as the source or destination zone. With the release of IOS 15.0.1M, it is also possible to
control the traffic within the same zone; this is referred to as intrazone.
This is configured by creating a zone pair with the same two zone names as both source and
destination.