View all questions & answers for the NSE 5 - FortiSwitch 7.6 Administrator Exam Materials exam
Question 8 Discussion
Comments
Selected Answers: D
On FortiOS with FortiSwitchOS version 7.4 and later, FortiGate can perform inter-VLAN routing on a managed FortiSwitch. You can apply inter-VLAN routing offload to the FortiSwitch that is closest to the FortiGate that manages it.
Regardless of the network topology in which you deploy your managed FortiSwitch virtual stack, it resembles a router-on-a-stick topology. The switch virtual stack is connected to the FortiGate FortiLink interface, and therefore, all traffic between the virtual stack and FortiGate is sent over this link.
From a logical perspective, the intra-VLAN traffic is handled by the switch virtual stack. Because FortiGate is usually the default gateway for the endpoints connected to the switch virtual stack, inter-VLAN traffic, internet traffic, and any other traffic that FortiGate protects is sent to FortiGate through the FortiLink interface. FortiGate then processes the traffic based on the configured routing settings, firewall policies, and other related settings. For inter-VLAN traffic, FortiGate receives the user traffic tagged with the VLAN ID of the incoming VLAN interface, forwards the user traffic out of the outgoing VLAN interface, and tags it with the VLAN ID of the interface.
PAGE: 74 | FORTISWITCH ADMINISTRATOR GUIDE
Distribution: Also known as the smart layer, this layer aggregates traffic from the access layer switches and forwards it to the core devices. Inter-VLAN routing, security inspection, packet filtering, and other packet manipulation tasks should take place in this layer. Redundancy and fault tolerance are recommended. Layer 2 or layer 3 devices can be used in this layer.
PAGE: 173 | FORTISWITCH 7.6 AFMINISTRATOR GUIDE
What is an advantage of using a FortiSwitch stack in managed switch mode with FortiGate when deploying VLANs? (Choose one answer)
Brave-Dump Clients Votes