View all questions & answers for the NSE 5 - FortiSwitch 7.6 Administrator Exam Materials exam


NSE 5 - FortiSwitch 7.6 Administrator Exam Materials-Question 11 Discussion

An administrator must deploy managed FortiSwitch devices in a remote location where multiple VLANs must be used to segment devices. No layer 3 switch or router is present at the site, and the only WAN connectivity is an ISP-provided router connected to the public internet. Which two components are required to enable VLAN segmentation across this remote site? (Choose two answers)

  • A. FortiGate and FortiSwitch configured with VXLAN to tunnel VLANs over the WAN
  • B. A layer 3 router at the remote location to handle inter-VLAN routing
  • C. A FortiSwitch model that supports VXLAN hardware acceleration
  • D. FortiSwitch and FortiGate devices configured with IPsec interfaces
  • E. FortiGate with a layer 3 interface to terminate the VXLAN overlay
Correct Answer: C,E

Brave-Dump Clients Votes

AE 50%
CE 50%

Comments



javaughn Bryan 2025-12-08 20:00:09

Selected Answers: A, E


A&E are correct.

You can also manage FortiSwitch devices over a layer 3 network using a Virtual eXtensible LAN (VXLAN) tunnel to create a layer 2 overlay network. VXLAN encapsulates layer 2 frames into VXLAN protocol packets, which can then be routed and have NAT applied, if required. Of the FortiSwitch devices that support VXLAN, a limited number are hardware-based VXLAN. Hardware-based FortiSwitch devices can also tunnel data VLANs in addition to performing switch management.
PAGE: 185 | FORTISWITCH 7.6 ADMINISTRATOR GUIDE

Sachintha V 2026-04-19 05:07:13

Selected Answers: C, E


A is incorrect because if FortiGate is present, it is not required to do the VXLAN tunneling over the WAN to do the segmentation as FortiGate can do the segmentation locally without VXLAN.
So I think C and E are correct