Introducing The New!
Surepassexam Collection
Get Unlimited Access to all
Surepassexam's PREMIUM files
Q1. Which type of VPN should be configured to ensure application mobility data centers?
A. Application VPN
B. L2VPN
C. IPSec VPN
D. SSL VPN-Plus
Answer: B
Explanation:
Referencehttps://www.vmware.com/content/dam/digitalmarketing/vmware/en/pdf/products/nsx/vmw-nsx-network-virtualization-design-guide.pdf(page 23)
Q2. A customer has Cisco Nexus 1000V switches in their environment and is looking at deploying NSX
Which statement is correct?
A. The environment must be migrated from the Nexus 1000V to vSphere Distributed Switches.
B. The environment must be configured for VXLAN over the Nexus 1000V.
C. The environment can use the Nexus 1000V switches for the NSX deployment.
D. The environment must be migrated from the Nexus 1000V to vSphere Standard Switches.
Answer: A
Q3. Which is a best practice to secure system traffic, ensure optimal performance and satisfy prerequisites for NSX?
A. Configure a single VMkernel and a single distributed port group for all the system traffic.
B. Configure a single distributed port group with a single VMkernel for Management and iSCSI traffic, a separate VMkernel for vMotion and VSAN traffic.
C. Dedicate separate VMkernel adapters for each type of system traffic. Dedicate separate distributed port groups for each VMkernel adapter and isolate the VLANs for each type of system traffic.
D. Dedicate separate VMkernel adapters for each type ofsystem traffic and dedicate separate standard switches for each type of system traffic connected to a single physical network.
Answer: B
Q4. What are two benefits of the NSX Distributed Firewall? (Choose two )
A. VMs are protected even as they are vMotioned
B. Each VM is individually protected by a L2-L4 stateful firewall
C. ESXi hosts are automatically protected by a distributed firewall
D. VXLANs are automatically protected by the Transport Zone definition
Answer: A,C
Q5. You have deployed an Edge Services Gateway with the following interface configuration:
Your customer has requested that you provide the ability to use Remote Desktop Protocol to log into a virtual machine that has a tenant IP address of 192.168.7.21 using the provider IP address 192.168.100.4. You have performed the following configuration however, you cannot RDP into the virtual machine.
What configuration change do you need to make to allow this connection?
A. ChangeApplied Onto “Uplink”
B. Change theProtocolto “any”.
C. Change theTranslated Port/Rangeto “rdp”.
D. Swap theOriginal IP/RangeandTranslated IP/RangeIP Addresses.
Answer: A
Q6. Which details can an administrator verify from the Summary tab of the VMware NSX Manager? (Choose three)
A. Current time
B. Average MTBF
C. Version
D. Storage utilization
E. Health Score
Answer: A,C,E
Q7. When designing a multi-site NSX deployment, which capably requires Enhanced Linked Mode to function?
A. Creating Universal Transport Zones
B. Creating Universal Logical Switches
C. Cross-vCenter vMotion
D. Registering a Secondary NSX Manager
Answer: A
Explanation:
Referencehttps://pubs.vmware.com/NSX- 62/topic/com.vmware.ICbase/PDF/nsx_62_cross_vc_install.pdf
Q8. Which two options are correct regarding vSphere Distributed Switches? (Choose two )
A. A single vDS can span multiple vCenter Servers
B. A single host can be attached to multiple vDS
C. A single vDS can span multiple hosts across multiple clusters
D. A vDS is automatically created when a new 802.1Q trunk is configured
Answer: A,B
Q9. An administrator has implemented VMware NSX on a leaf-spine underlay. They have deployed the following in the data center:
• Two racks for a management cluster that is not prepared for VMware NSX
• Six racks for compute clusters
• Two racks for an Edge cluster which holds a DLR control VM for bridging, and North/South Edge Service Gateways
Which three of the following are true regarding the physical and logical networking of the environment? (Choose three )
A. At least one VXLAN segment spans across all the racks
B. VXLAN segments span the compute and Edge racks
C. At least one VLAN spans the compute racks
D. At least one VLAN spans across the two management racks
E. At least 2 VLANs span across the two Edge racks.
Answer: B,C,D
Q10. An organization is planning to use NSX as part of a disaster recovery project to provide consistent networking between two sites. Each site has one vCenter server. The organization requires universal objects and requires components to function during a site outage.
What is the minimum total instances of NSX Manager(s) and NSX Controller(s) that must be deployed across both sites to supporting the required functionality?
A. Two NSX Managers and two NSX Controllers
B. Two NSX Managers and six NSX Controllers
C. Two NSX Managers and three NSX Controllers
D. Two NSX Managers and four NSX Controllers
Answer: C
Q11. What is one of the benefits of a spine-leaf network topology?
A. A loop prevention protocol is not required
B. Automatic propagation of security policies to all nodes
C. Allows for VXl ANs to be defined in h traditional network topology
D. Network virtualization relies on spine leaf topologies to create logical switches
Answer: D
Q12. An administrator has been asked to provide single failure redundancy. What is the minimum supported number of NSX Controllers needed to meet this requirement?
A. 2
B. 3
C. 1
D. 5
Answer: B
Explanation:
Referencehttp://www.vmwarearena.com/vmware-nsx-installation-part-4-deploying-nsx- controller/
Q13. What are the correct steps for connecting a virtual machine to a logical switch?
A. Select the logical switch, click the Add Virtual Machine Icon, select the VM, select the
vNIC to connect B. Select the Add Virtual Machine icon, select the logical switch, vNIC to connect
B. Select the logical switch, select the virtual machine, click the Add Virtual Machine .con. select the vNIC to connect
C. Select the vNIC, click the Add Virtual Machine Icon, select the logical switch
Answer: A
Explanation: https://docs.vmware.com/en/VMware-NSX-for-vSphere/6.2/com.vmware.nsx.admin.doc/GUID-571237B3-1665-4B92-A3A9- 51C078EC601D.html
Q14. What is the most restrictive NSX role that can be used to create and publish security policies and install virtual appliances?
A. Security Administrator
B. NSX Administrator
C. Auditor
D. Enterprise Administrator
Answer: D
Q15. Which is a prerequisite for deploying an Edge Service Gateway?
A. Firewall Default Policy
B. An interface
C. Default Gateway
D. High Availability
Answer: B
Explanation:
Referencehttp://buildvirtual.net/vcp-nv-deploying-an-edge-services-gateway/
Q16. An NSX administrator notices an error during the initial configuration of the SSO lookup service, as shown:
The administrator pulls up the lookup service status, which displays Disconnected.
What step should be performed to resolve this issue?
A. Change the Port number from 7444 to 443
B. Change theSSO Administrator User Name
C. Regenerate the SSL Certificate and reboot the NSX Manager
D. Use IP address versus the DNS name in theLookup Service
Answer: C