Network zone types

Okta supports four types of network zones.

IP zones: IP zones define network perimeters around a set of IP addresses. They can contain IP addresses for both gateway servers and trusted proxy servers.
Dynamic zones: Dynamic zones define network perimeters based on location, IP address type, and autonomous system number (ASN).
Enhanced dynamic zones: Enhanced dynamic zones define the IP service categories, locations, and ASNs that are blocked or allowed in a zone. IP service categories include proxies, VPNs, and anonymizers.
IP exempt zone: An IP exempt zone allows traffic from specific gateway IPs irrespective of Okta ThreatInsight configurations, blocked network zones, or IP change events within Identity Threat Protection with Okta AI.

Feedback