You are managing FortiSwitch ports from a FortiGate device with multiple VDOMs. Which two methods can you use to assign FortiSwitch ports to VDOMs? (Choose two answers)

A. Assigning the port directly to a specific VDOM for dedicated physical isolation
B. Use FortiGate policies to control inter-VDOM traffic for FortiSwitch ports
C. Use interface role mapping to dynamically assign FortiSwitch ports to VDOMs based on Dynamic Host Configuration Protocol (DHCP) scope
D. Using a virtual port pool (VPP) to create virtualized ports that can be assigned to different VDOMs

Correct Answer: A,D

Brave-Dump Clients Votes

AD 100%

Comments

javaughn Bryan 2025-12-18 19:16:13

Selected Answers: A, D

This slide shows an example of how to assign a port to a VDOM directly or by using a virtual port pool (VPP) on the FortiGate CLI.

Using the approach of assigning a port directly to a VDOM is useful when you want to dedicate a physical switch port to a specific VDOM to separate a department network or isolate segments.

The VPP option is useful when you want port virtualization, for example, when multiple VDOMs share a switch port but need isolated logical ports.

In this example, the target VDOM is vdom1. port1 is assigned directly to vdom1, and port2 indirectly from a VPP. When using a VPP, you first indicate a group of ports that can be assigned to other VDOMs. VDOM-specific administrators can then pick one or more of those ports and use them for their respective VDOMs.

Note that you must execute some commands on the same VDOM where the FortiLink interface is configured, and others on the target VDOM that you want to assign the ports to.

REFERENCED FROM PAGE: 286 | FORTISWITCH 7.6 ADMIN GUIDE