A. Management VDOM ALWAYS need access to internet B. Is not true, you ALWAYS need a default route to access the internet, despite is set manually or via DHCP C. Static routes are not needed for subnets to which Fortigate has derect layer 2 connectivity (FortiGate_Infrastructure_7.2_Study_guide page 11) D. Correct

I do not like this question. You DO NOT need a static default route, BGP exists. I almost never use static defaults.

A. Management VDOM ALWAYS need access to internet Incorrect, it does not need internet. for example: Fortiguard connection can also be achieved via FMG.

Selected Answer: D A Static route is ALWAYS required to access internet. B conclusion is false. FortiGate_Infrastructure_7.2_Study_Guide page 11.

FortiGate_Infrastructure_7.2 page 101 You cannot create an inter-VDOM link between layer 2 transparent VDOMs (C is wrong). At least on of the VDOMs must be operating in NAT mode.

D. Inter-VDOM links are required to allow traffic between the Local and Root VDOMs. Reference and download study guide: https://ebin.pub/fortinet-fortigate-infrastructure-study-guide-for-fortios-72.html

es D la respuesta: FortiGate_Infrastructure_7.2 pag 101 Transparent to transparent beacuse, no layer 3; potential Layer 2 loops.

A. "Correct". B. "False". When you create a new VDOM you don't have any route defined, usually one define 0.0.0.0/0.0.0.0 as a default static route to the internet. C. "Wrong" Both VDOMS are in Transparent Mode at least one must be In NAT Mode, a VLINK will potentially create a Layer 2 loop. D. "Not Wrong, but unnecessary" In the exhibit the Root VDOM is used only as a management VDOM, as a best practice a VLINK is not required to allow traffic between the Local and Root VDOMs. FG Infrastructure 7.2 Study Guide Online Page 100.

A Static route is ALWAYS required to access internet. B conclusion is false. FortiGate_Infrastructure_7.2_Study_Guide page 11.

B makes more sense than others for me since the default gateway can be learned via DHCP, no static route is really needed.

B makes more sense for me since the default gateway can be learned via DHCP, no static route is really needed. The question does not describe any traffic that would require any inter-vdom link, for example I dont see any requirement for connecting root vdom to anywhere - via inter-vdom link.

D is correct. local and dmz are in transparent mode

You would need inter vdom links to the local and DMZ frm the internet vdom to get out on the internet. You do not need a link between the rot and the internet since it is used for managment. Thats under the section of inter vdom links.

Answer is D. Before configuring inter-VDOM routing: You must have at least two virtual domains configured. The virtual domains must all be in NAT mode. Each virtual domain to be linked must have at least one interface or subinterface assigned to it.

Correct Answer is D

C: wrong because one of the vdoms has to be in nat mode to create a link.

D. Inter-VDOM links are required to allow traffic between the Local and Root VDOMs.