In Cisco IOS 15.0.1M code for the router platform, which new feature has been added to the zone-based policy firewall?
A.
removal of support for port-to-application matching
B.
ability to configure policies for traffic that is traveling between interfaces in the same security
zone
C.
intrazone traffic is not freely permitted by default now
D.
NBAR is not compatible with transparent firewall
Explanation:
Page: 309, CCNP Security SECURE 642-637 Official Cert Guide
With the release of IOS 15.0.1M, it is also possible to control the traffic within the same zone; this
is referred to as intrazone. This is configured by creating a zone pair with the same two zone
names as both source and destination.