Refer to the exhibit.
The Root and To_Internet VDOMs are configured in NAT mode. The DMZ and Local VDOMs are configured in transparent mode.
The Root VDOM is the management VDOM. The To_Internet VDOM allows LAN users to access the internet. The To_Internet VDOM is the only VDOM with internet access and is directly connected to the ISP modem.
What can you conclude about this configuration?
Inter-VDOM links are required to allow traffic between the Local and Root VDOMs. This configuration requires that Local VDOM, which is in transparent mode, be linked to the Root VDOM to manage traffic between various networks. Although the Root VDOM is primarily used for management, it still needs to facilitate communication between different VDOMs, including the Local VDOM.
A. Management VDOM ALWAYS need access to internet B. Is not true, you ALWAYS need a default route to access the internet, despite is set manually or via DHCP C. Static routes are not needed for subnets to which Fortigate has derect layer 2 connectivity (FortiGate_Infrastructure_7.2_Study_guide page 11) D. Correct
Answer is D. Before configuring inter-VDOM routing: You must have at least two virtual domains configured. The virtual domains must all be in NAT mode. Each virtual domain to be linked must have at least one interface or subinterface assigned to it.
FortiGate_Infrastructure_7.2 page 101 You cannot create an inter-VDOM link between layer 2 transparent VDOMs (C is wrong). At least on of the VDOMs must be operating in NAT mode.
D is correct. local and dmz are in transparent mode
A. "Correct". B. "False". When you create a new VDOM you don't have any route defined, usually one define 0.0.0.0/0.0.0.0 as a default static route to the internet. C. "Wrong" Both VDOMS are in Transparent Mode at least one must be In NAT Mode, a VLINK will potentially create a Layer 2 loop. D. "Not Wrong, but unnecessary" In the exhibit the Root VDOM is used only as a management VDOM, as a best practice a VLINK is not required to allow traffic between the Local and Root VDOMs. FG Infrastructure 7.2 Study Guide Online Page 100.
Correction!!!! The correct one is "D". "A" is false as the management VDOM Root needs to reach the internet.
C: wrong because one of the vdoms has to be in nat mode to create a link.
Correct Answer is D
A Static route is ALWAYS required to access internet. B conclusion is false. FortiGate_Infrastructure_7.2_Study_Guide page 11.
es D la respuesta: FortiGate_Infrastructure_7.2 pag 101 Transparent to transparent beacuse, no layer 3; potential Layer 2 loops.
D. Inter-VDOM links are required to allow traffic between the Local and Root VDOMs. Reference and download study guide: https://ebin.pub/fortinet-fortigate-infrastructure-study-guide-for-fortios-72.html
D. Inter-VDOM links are required to allow traffic between the Local and Root VDOMs.
You would need inter vdom links to the local and DMZ frm the internet vdom to get out on the internet. You do not need a link between the rot and the internet since it is used for managment. Thats under the section of inter vdom links.
I take that back. Went back over material. Root VDOM should have internet access in case something breaks. I agree answer is D
B makes more sense for me since the default gateway can be learned via DHCP, no static route is really needed. The question does not describe any traffic that would require any inter-vdom link, for example I dont see any requirement for connecting root vdom to anywhere - via inter-vdom link.
B makes more sense than others for me since the default gateway can be learned via DHCP, no static route is really needed.
Selected Answer: D A Static route is ALWAYS required to access internet. B conclusion is false. FortiGate_Infrastructure_7.2_Study_Guide page 11.