Hello Experts I was just wondering how firewall session is created for inter-vr communication. I have scenario like this: Interface eth1/1 (Trust-VR) Trust Zone ---LAN (10.10.10.0/24) Interface eth1/2 (Untrust-VR) Untrust Zone ---INTERNET In Trust-VR, I have 0/0 default route towards Untrust-VR, I have created the security policy between Trust to Untrust Zone to allow the communication. My question is, firewall will create the session in which VR? I mean for reverse traffic where the route lookup for 10.10.10.0/24 will happen? In Trust-VR or Untrust-VR? In case Trust-R then no need for reverse route for 10.10.10.0/24 in Untrust-VR next-hop Trust-VR? Thanks
... View more