NSX Set 1

Question 1

What are two challenges faced when providing network services to virtual workloads using a physical network infrastructure? (Choose two.)

a. Inability to provide router redundancy
b. Restrictions when migrating virtual workloads to ESXi hosts
c. Managing the amount of access switches required for large-scale vSphere environments
d. Inability for access switches to provide isolation of uplink failures to virtual workloads
e. Managing the size of routing tables

Answer 1

b. Restrictions when migrating virtual workloads to ESXi hosts
d. Inability for access switches to provide isolation of uplink failures to virtual workloads

Question 2

At least how many bytes does the VXLAN encapsulation add to the encapsulated frame?

a. 50
b. 100
c. 1500
d. 9000

Answer 2

a. 50

Question 3

An application developer has a network requirement for a feature not currently supported by the physical IP network.
Which option could not be used to meet the application requirements?

a. Upgrade the code of the network devices.
b. Turn the network feature on.
c. Install a new network just for the application.
d. Do a network refresh.

Answer 3

b. Turn the network feature on.

Question 4

Which NSX routing protocol offers the most flexible policy control when peering with the physical environment?

a. BGP
b. OSPF
c. ISIS
d. EIGRP

Answer 4

a. BGP

Question 5

________________________ does not require VXLAN.

Answer 5

NSX Micro-Segmentation

Question 6

How many NSX Controllers are recommended for any vSphere network environment?

a. 1
b. 2
c. 3
d. 4

Answer 6

c. 3

Question 7

The _________________________ is required before the Distributed Firewall is functional.

Answer 7

NSX Controller Cluster

Question 8

One Distributed Route (in HA mode) with 2 Edge Service Gateways in EMCP mode would provide high bandwidth and isolation to how many application networks?

a. 2
b. 4
c. 8
d. 10

Answer 8

b. 4

Question 9

In a Cross-vCenter implementation, the Universal Control Cluster is deployed and configured in the vCenter instance associated with the ___________________________ .

Answer 9

Primary NSX Manager

Question 10

___________________ , a vSphere Distributed Switch security policy, allows virtual machines to send frames with a MAC address that is different from the one specified in the vmx file.

Answer 10

Forged Transmits

Question 11

What is the minimum NSX role necessary for a user to edit the firewall on an Edge Services Gateway (ESG)?

a. Auditor
b. Security Administrator
c. NSX Administrator
d. Enterprise Administrator

Answer 11

b. Security Administrator

Question 12

_________________ would be used by the “insert X-Forwarded-For HTTP” option.

Answer 12

HTTP & HTTPS

Question 13

When deploying a standalone NSX Edge as a Layer 2 VPN Client, a _________________ needs to be configured on the client vSphere Distributed Switch.

Answer 13

Trunk Port

Question 14

If the “Applied To” scope is set to Distributed Firewall, _____________________________ will have the firewall rule.

Answer 14

all VMs on prepared hosts

Question 15

A customer has Cisco Nexus 1000V switches in their environment
and is looking at deploying NSX. _____________________________________________ .

Answer 15

The environment must be migrated from the Nexus 1000V to vSphere Distributed Switches

Question 16

An NSX admin notices an error during the initial configuration of the SSO lookup service. It displays “Disconnected” when the admin pulls up the lookup. __________________________________________ to resolve the issue.

Answer 16

Change the Port # from 7444 to 443

Question 17

Activity Monitoring has been enabled for a host with several machines. If only one VM shows up, you must install the Guest Introspection driver and the ________________________ must be enabled on the other VMs.

Answer 17

VM Data Collection

Question 18

The _____________ , in a vSphere Distributed Switch architecture, handles packet switching.

Answer 18

Data Plane

Question 19

Which two NSX roles can create security policies?

a. Auditor
b. Security Administrator
c. NSX Administrator
d. Enterprise Administrator

Answer 19

b. Security Administrator

d. Enterprise Administrator

Question 20

A logical bridge configured for HA uses 15 second heartbeats by default to detect failures.

a. True
b. False

Answer 20

a. True

Question 21

A logical bridge on the DLR supports VXLAN to VLAN bridging.

a. True
b. false

Answer 21

a. True

Question 22

A logical bridge forwards traffic through the hypervisor.

a. True
b. False

Answer 22

a. True

Question 23

When running the NSX Control Plane in Hybrid Mode, the minimum physical network requirements are?

a. NSX Controller connectivity
b. IGMP Snooping
c. Unicast L3 Routing
d. All of the above

Answer 23

d. All of the above

Question 24

____________________________________ so a virtualized application can have access to a physical database.

Answer 24

Configure a Distributed Logical Router with an L2 Bridge instance for VXLAN to VLAN traffic

Question 25

VMware NSX is a key component in enabling enterprises to realize the full potential of their investment in ___________________________________ .

Answer 25

Software-Defined Data Center

Question 26

________________ is a term that describes a situation where a bottleneck is created when traffic is sent to a single device for security enforcement.

Answer 26

Hairpinning

Question 27

The correct steps for connecting a VM to a logical switch is to _____________________________________________________ .

Answer 27

Select the logical switch, click the “Add VM” icon, and select the logical switch

Question 28

What is one challenge of implementing networks ecurity on a physical network?

a. Firewalls require additional network resources to operate.
b. Firewall rules sprawl.
c. Firewalls are expensive.
d. Firewalls provide only 98% security.

Answer 28

b. Firewall rules sprawl.

Question 29

Which of the following is not a characteristic of a physical network?

a. A workload can be moved anywhere at any time.
b. A Layer 3 segment can be separated by other Layer 3 segments.
c. A Layer 2 domain must be contiguous.
d. Systems in the same broadcast domain must be within 100 meters.

Answer 29

a. A workload can be moved anywhere at any time.

Question 30

Which constraint is not encountered when deploying services with network
dependencies?
a. The variable time to prepare the network for the service(s)
b. The manual involvement of a network engineer to configure the network
c. Potential procurement of new network equipment
d. The ability of a service owner to have IP connectivity between different tiers of the service

Answer 30

d. The ability of a service owner to have IP connectivity between different tiers of the service

Question 31

What is the maximum number of usable VLANs that can be deployed in the same Ethernet switch?

a. 4094
b. 4095
c. 4096
d. 4097

Answer 31

a. 4094