VLAN

Question 1

What is a collection of computers on a LAN(s) that are grouped together in a single broadcast domain independent of their physical location?

Answer 1

VLAN

Question 2

Meaning of VLAN

Answer 2

Virtual local area network

Question 3

With VLAN, can you group devices according to function or traffic patterns?

Answer 3

Yes

Question 4

Enumerate 3 benefits of using VLAN

Answer 4

1. Increased performance by restricting broadcasts
2. Improved manageability and simplified network tuning
3. Increased security options

Question 5

What is an Ethernet interface on a VLAN-capable device that connects the device to another VLAN-capable device?

Answer 5

VLAN Trunk Interface

Question 6

What is a number from 1 to 4094 associated with the VLAN?

Answer 6

VLAN ID (VID)

Question 7

What’s the range for VLAN ID?

Answer 7

1 to 4094

Question 8

What is the information that is added to the header of an
Ethernet frame

Answer 8

Tag (noun)

Question 9

What standard defined the format of the Tag?

Answer 9

IEEE 802.1Q standard

Question 10

What do you call the verb to add a VLAN tag to a data frame’s Ethernet header?

Answer 10

Tag (verb)

Question 11

What kind of device adds a tag?

Answer 11

802.1Q-compliant (i.e. router, switch, Firebox)

Question 12

What kind of packets does 2 802.1Q devices normally carry?

Answer 12

Tagged data packets

Question 13

What is the term for the physical segment between two 802.1Q devices that typically carries only tagged data packets?

Answer 13

Tagged data segment

Question 14

What is the term for removing a VLAN tag from a frame’s Ethernet header?

Answer 14

Untag

Question 15

Where is a VLAN tag removed from?

Answer 15

Frame’s Ethernet header

Question 16

When should the data frames be configured as untagged?

Answer 16

When an 802.1Q device sends data to a network
device that cannot understand 802.1Q VLAN tags

Question 17

What is the term for the physical segment between a VLAN device and a device that cannot understand VLAN tags
normally carries only untagged data packets?

Answer 17

Untagged data segment

Question 18

Are clients are untagged by default?

Answer 18

Yes

Question 19

How many untagged VLANs are recommended?

Answer 19

1

Question 20

What is the recommended 1 untagged VLAN for?

Answer 20

Direct management access

Question 21

What kind of data frames can the interface accept when it’s configured for VLAN?

Answer 21

both tagged and untagged data frames

Question 22

Can VLAN 10, for example, be a member of eth1 & eth2?

Answer 22

Yes

Question 23

Can an interface be simultaneously belong to both an external and internal VLAN?

Answer 23

Yes

Question 24

Can a VLAN interface can send and receive untagged traffic for an external VLAN?

Answer 24

Yes

Question 25

Tag/Untag: If the interface connects to a device that can receive and understand 802.1Q VLAN tags

Answer 25

Tag

Question 26

Tag/Untag: Devices you connect to this interface are usually VLAN switches (managed switches) or routers.

Answer 26

Tag

Question 27

Tag/Untag: If the interface connects to a device that cannot receive and understand 802.1Q VLAN tags

Answer 27

Untag

Question 28

Tag/Untag: Devices you connect to this interface are usually
computers or printers

Answer 28

Untag

Question 29

Device interfaces that can use VLAN tags as defined in IEEE 802.1Q

Answer 29

Managed switch or an 802.1Q switch

Question 30

Can you use VLANs if your Firebox is configured in Drop-In Mode?

Answer 30

No

Question 31

Can you configure VLANs if your Firebox is configured in Bridge Mode?

Answer 31

No

Question 32

In bridge mode, what does the Firebox do with VLAN tagged traffic?

Answer 32

Pass between 802.1Q bridges or switches

Question 33

In bridge mode, can a Firebox be managed from a VLAN that has a specified VLAN tag?

Answer 33

Yes

Question 34

Are Multi-WAN configuration settings are applied to VLAN traffic

Answer 34

Yes

Question 35

What determines the number of VLANs you can create?

Answer 35

Firebox device model and license

Question 36

How to see the number of VLANs you can add to your Firebox?

Answer 36

Policy Manager > Setup > Feature Keys > Total Number
of VLAN Interfaces row

Question 37

How many VLANs are recommended to be configured to operate on external interfaces?

Answer 37

Not more than 10

Question 38

Can too many VLANs on external interfaces affect performance

Answer 38

Yes

Question 39

What should all network segments you want to add to a VLAN must have?

Answer 39

IP addresses on the VLAN network

Question 40

How do I allow traffic to a VLAN from a device outside the VLAN?

Answer 40

1. Add a policy for it
2. Include the VLAN’s alias name or subnet in the To section

Question 41

By default, does the Firebox allow traffic to a device in any VLAN?

Answer 41

No

Question 42

How do I allow traffic that starts in a VLAN and leaves the VLAN?

Answer 42

Configure the VLAN as a Trusted or Optional zone

Question 43

Is traffic is not allowed to leave a network protected by the Firebox unless there is a policy to allow it?

Answer 43

Yes

Question 44

What does the default configuration the Quick Setup Wizard creates for the Firebox include?

Answer 44

Outgoing policy

Question 45

What does the outgoing policy do?

Answer 45

Allows traffic from Any-Trusted/Any-Optional to Any-External

Question 46

What happens if the VLAN uses the Trusted or Optional security zone?

Answer 46

Any device in the VLAN can use the Outgoing policy
to send traffic to Any-External

Question 47

How to allow traffic that starts in one VLAN and goes to another VLAN?

Answer 47

Apply separate security policies to VLANs

Question 48

By default, can devices in one VLAN see the traffic from another VLAN?

Answer 48

No

Question 49

What does the Apply firewall policies to intra-VLAN traffic check box do?

Answer 49

Applies firewall policies to traffic between clients on two networks that are part of the same VLAN

Question 50

What is needed to ensure if policies are applied to intra-VLAN traffic?

Answer 50

No alternate path exists between the source
and destination