Which is more secure out of a separate zone or a vlan?
Assuming you have vlans in place and separated via ACL's, is there any advantage of using a separate zone instead?
This thread was automatically locked due to age.
Hi !!
First of all you can "disable" and entire network if you need it.
In fact with the "separate zone" you simply define a new network and can manage it completely via UTM. Really good for guests wifi hotspot. You can activate all web protection rules with no effects on your LAN.
;)
If there's an existing VLAN defined on the UTM, then that saves you the work of creating an Interface object, firewall rules and a NAT rule. Other than that, there's no practical difference other than separating the SSID/Network from all of your wired networks with a "Separate Zone" selection.
Cheers - Bob