VLAN Tags add a 4-byte extension to and ethernet frame
Layer 2 devices can rewrite tags
Layer 3 devices can rewrite tags before routing
Frames sent or received by the physical interface segment are never tagged; they belong to the native VLAN.
In what operating mode does FortiGate need to be, to route traffic between VLANS?
a. Transparent mode
b. NAT mode
FortiGate, as a NAT router, splits the network into multiple collision domains, reducing the traffic in the network and improving the response time.
By default, all interfaces on a VDOM belong to the same broadcast domain, even interfaces with different VLAN IDs.
Which of the following statements about FortiGate operating in transparent mode is true?
a. It has a management IP address.
b. Each interface has its own IP address.
How can an administrator configure FortiGate to have four interfaces in the same broadcast domain?
a. Create a firewall policy on each of the four interfaces.
b. Configure the operation mode as transparent and use the same forward domain ID.
When you create a virtual wire pair, you must select two physical interfaces or more.
Wildcard VLAN
Enable: Policies apply equally to the physical interfaces and VLANs.
Disable: Policies apply only to the physical interfaces (packets with VLAN tags are denied).
Enable: Policies apply only to the physical interfaces (packets with VLAN tags are denied).
Disable: Policies apply equally to the physical interfaces and VLANs.
What configuration setting must be enabled to allow VLAN- tagged traffic through a virtual wire pair?
a. Transparent bridging
b. Wildcard VLAN
How is traffic handled in a virtual wire pair?
a. Incoming traffic to one interface is always forwarded out through the other interface.
b. Traffic is forwarded based on the destination MAC address.
Can group multiple physical and wireless interfaces into a single virtual switch interface
Only supported in NAT mode Acte like a traditional layer 2 switch The interfaces: Share the same IP address Belong to the same broadcast domain
Software switch
Forward domain
Virtual wire pair
In which operating mode is the software switch function supported?
Which of the following can be members of a software switch?
a. VLAN interface
b. Wireless Interface
Broadcast Storms - When a switch receives a broadcast message, that message is sent on all ports. - With a redundant path, this can lead to a broadcast storm.
What is the default STP mode for FortiGate?
a. FortiGate passively forwards BPDUs
b. FortiGate has all STP functions disabled.
