Skip to main content
Jan_Scholten
Jan_Scholten
New Member
October 21, 2010
Question

Transparent mode & Forwarding Domains

  • October 21, 2010
  • 3 replies
  • 3080 views
I have a question regarding forwarding domains in transparent mode. I have 3 transparent vdoms each with 2 physical interfaces - one incoming, one outgoing. Acoording to some guy i need to configure forwarding domains, otherwise arp requests/ broadcast and other L2 traffic may be sent out of every port, regadless of to which vdom the ports belong. I believe he is wrong, as i found a document that stated " Each VDOM (Virtual Domain) is a single broadcast domain The interface attribute ‘forwarding_domain’ allows a Virtual Domain to be subdivided into multiple broadcast domains" But he insists he is right.. i have no test scenario at the moment, so what do you say?

    3 replies

    FortiRack_Eric
    FortiRack_Eric
    New Member
    October 21, 2010
    He is quite right. You can achieve this by the following commands for every interface to restrict broadcasting to the same VLAN id. like this: config sys interface edit VLAN101-port1 set forward-domain 101 next edit VLAN101-port2 set forward-domain 101 next edit VLAN102-port3 set forward-domain 102 next ... end I guess you get the idea. Cheers, Eric
    FortiRack_Eric
    FortiRack_Eric
    New Member
    October 21, 2010
    Oeps, misread the complete question. If you run it in seperate vdoms then you are right otherwise if you have multiple vlans in 1 vdom then you need to do it like I' ve described it in the previous comment. Regards, Eric
    Jan_Scholten
    Jan_ScholtenAuthor
    New Member
    October 21, 2010
    Jep i have transparent vdoms each with only 2 ports. So i don' t need that? hmm.. now ii have to correct a fortinet presales SE.. hmm.... we will see.
    Terms & ConditionsAccessibility statement