Correct:
C. port1-vlan1 and port2-vlan1 can be assigned in the same VDOM or to different VDOMs.
D. port1 is a native VLAN.
Incorrect:
A. Traffic between port2 and port2-vlan1 is allowed by default.
B. port1-vlan10 and port2-vlan10 are part of the same broadcast domain.
Reference and download study guide:
https://ebin.pub/fortinet-fortigate-infrastructure-study-guide-for-fortios-72.html
A: is wrong because be default it is not allowed.
B: is wrong because different subnet with same vlans will not be in same broadcast domain
C: correct , any interface can be asssigned to different VODM.
D: is correct because any untagged traffic will be recieved on port 1 will use same port, and not the sub-interfaces such as VLAN1 or 10
okay i had my assessment with a 100% score.
I had this specific question and i answered "C,D", despite my previous believe.
IMO one of the most confusing questions
A: False because of other subnets, you need to create firewall policy's to allow traffic between subnets.
B: False because VLAN and Subnets are different, and therefore it's not within one broadcast domain. (Different broadcast IP's)
C: True
D: True
I agree, that the broadcast-*address* is different on both ports (10.1.10.255 & 10.0.10.0.255)
However, the definition of a broadcast *domain* is based on Layer2 segments
B is correct IMO
C, too no discussion
D is a trap since "port1" is not a native VLAN. "VLAN1" might be, but not "port1"
Also check:
https://docs.netgate.com/pfsense/en/latest/network/broadcast-domains.html
Quote:"[...]A single broadcast domain can contain more than one IPv4 or IPv6 subnet[...]"
I initially also thought B could be correct but the question doesn't make any mention of the firewall being in transparent mode.
I think port 1 is in the native VLAN as there is no VLAN number specified for it which makes me think it is in VLAN 0 , the native VLAN
Physical Interfaces and its vlan ben be in the same or diferent Domain.
Physical Interface hasn't VLAN ID, in other hand is has Vlan id 0 for that is called Native Vlan
C and D are both definitely correct. B is *possibly* correct, but we don't have all of the necessary information because we need to know the domain IDs. I would go with C and D.
page 163, FortiGate Infrastructure 7.0:
"by default, ALL interfaces on a VDOM belong to the same broadcast domain; even interfaces with different VLAN IDs"
Don't know if the questions has changed in the meantime while the comments stayed.
A: is not correct since inter vlan traffic would require a policy.
B: is also not correct since it are 2 different subnets and therefore don't use the same broadcast.
That leaves C+D as the 2 correct options.
B) Same network, same broadcast domain
D) The physical interfaces network is usually the native vlan as it's an untagged network but traverses switches.
There's really not enough info here altogether.
I don't agree with B because from infrastructure guide: "Traditional IPv4 firewalls and NAT mode FortiGate devices handle traffic the same way that routers do. Each interface must be in a different subnet and each subnet forms a different broadcast domain.". The subnets are different.
And D I think is correct because "On the other hand, frames sent or received by the physical interface segment are never tagged. They belong to what is called the native VLAN (VLAN ID 0)". Physical port (not VLAN) is "native VLAN".
I agree with you! B and C are correct.
B is correct because the port1 and port2 are the same vlan (10). So, its the same broadcast.
And C is obviously.
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
raydel92
4 months, 2 weeks agoLEAWCOM
4 months, 2 weeks agordbms
5 months, 2 weeks agojbuzz
6 months, 2 weeks agoIbrahimadwan
8 months agoZ13G3
10 months, 1 week agoRonaldvb
10 months, 1 week agoZ13G3
10 months, 1 week agoDriftandLuna
9 months, 3 weeks agoMikeatak
10 months, 3 weeks agohamidreza0010
10 months, 3 weeks agowalter_rcp
12 months agochyeahhh
1 year agoSavagegek
1 year agoSpyder_Byte
1 year, 1 month agoSpyder_Byte
1 year, 1 month agoSpyder_Byte
1 year, 1 month agoexfeephi
1 year, 1 month agoVirutas
1 year, 1 month agoSiqueiraZ
1 year, 1 month agoSiqueiraZ
1 year, 1 month agoFlaiNew
1 year, 1 month agoPutty01
1 year, 2 months ago