Zone creation
General Information
On a 7705 SAR, NAT configuration is based on zones. A zone is a group of L2 or L3 interfaces with common criteria that can be bundled together. The same action can be applied to the bundle. For example, in an MC application, all of the SAPs on the access interface used to aggregate the MC can be placed in a single zone and the uplink public interface can be placed in a second zone. All traffic routed between the two zones have NAT applied, based on the security policies created on the first zone. This simplifies the configuration and management of NAT functionality.
You can configure 7705 SAR security policies based on traffic direction entering or leaving the zone.
A zone can be configured on L2 access interfaces, L3 access interfaces, and SDPs on a base routing instance or an EPIPE, IES, MVPLS, VPLS, or VPRN service. Zone configuration is only allowed per service. There is a one-to-one mapping between a service and a zone.