View all questions & answers for the NSE 7 - Enterprise Firewall 7.6 Administrator Exam Materials exam


Question 20 Discussion

In a transparent VDOM interface, what does the command set forward-domain <domain_ID> do? (Choose one answer)

  • A. It allows the interface to access the configured admin domain.
  • B. It restricts the interface to managing traffic from only the specified VLAN, effectively segregating network traffic.
  • C. It isolates traffic within a specific VLAN by assigning a broadcast domain to an interface based on the VLAN ID
  • D. It assigns a unique domain ID to the interface, allowing it to operate across multiple VLANs within the same VDOM.
Correct Answer: C

Brave-Dump Clients Votes

C 71.43%
D 28.57%

Comments



Hasan Ahmed 2025-11-27 16:02:40

Selected Answers: C


correct answer is C

Shabeeb Kunhipocker 2025-11-28 18:12:14

Selected Answers: D


I think it is D, since it allows clients in different vlans to communicate as long as the Fortigate L2 interfaces for these VLANs are in the same forward domain.
https://community.fortinet.com/t5/FortiGate/Technical-Tip-Forwarding-domain-in-transparent-mode/ta-p/240805

Shabeeb Kunhipocker 2025-11-28 18:21:09

Selected Answers: C


Referring deeper I think it is C. D never talks about restricting broadcast domain which is the primary purpose of forward domain.

Anonymous User 2025-12-20 01:49:28

Selected Answers: D


https://community.fortinet.com/t5/FortiGate/Technical-Tip-Forwarding-domain-in-transparent-mode/ta-p/240805

thaer saadi 2025-12-22 20:21:45

Selected Answers: C


C is correct

Adam 2026-01-18 10:41:15

Selected Answers: C


From Study Guide:
config system interface
edit <interface>
set forward-domain <domain_ID>
end
---
Forward-domains are broadcast domains
---
All interfaces in a transparent VDOM share the same broadcast domain. If your configuration includes more than two VLAN IDs, you should use the forward-domain command, as shown on the slide, to subdivide a VDOM into multiple broadcast domains using the VLAN ID as the domain ID for easy recognition.

A is wrong because forward-domain is not related to admin domain (ADOM on FortiManager), but about virtual domain (VDOM on FortiGate).
B is wrong because forward-domain is not related to management of FortiGate from specific VLAN
D is wrong because assigning the domain ID to an interface won't make that one interface operate "across multiple VLANs"
C is correct as it matches recommendation of assigning forward-domain to be same as VLAN ID, so each interface or group of interfaces will be in separate VLAN

Mattia Bruno 2026-03-04 10:02:00

Selected Answers: C


C Is correct