VCP-NV Flashcards
Which CLI command is used to start the NSX Manager virtual machine in the KVM environment? A. virsh start B. virsh poweron C. virsh poweron D. virsh start
A. virsh start
What are the supported N-VDS modes? A. DPDK Datapath B. Enhanced Datapath C. Overlay Datapath D. Standard Datapath E. Secure Datapath
B. Enhanced Datapath
D. Standard Datapath
A NSX-T Data Center administrator wants to ensure that any machine on a public network can communicate with a Web VM running in a NSX-T Data Center
environment.
Which NAT type must be created on the Tier-0 or Tier-1 Gateway to achieve this?
A. 1:1 NAT
B. Reverse NAT
C. DNAT
D. SNAT
C. DNAT
An NSX administrator created a Segment from the Simplified UI and wants to find the Replication Mode configured on the Segment. Which NSX CLI command lists the Replication mode? A. get logical-switches B. get logical-switch C. get logical-switch status D. get logical-switch status
B. get logical-switch
What is the most restrictive NSX-T built-in role which allow a user to apply configuration changes on a NSX Edge? A. Network Operator B. Network Engineer C. Cloud Service Administrator D. NSX Administrator
B. Network Engineer
What are three NSX Manager roles? (Choose three.) A. zookeeper B. manager C. policy D. controller E. cloud F. master
B. manager
C. policy
D. controller
Which network tool cloud an administrator use on an ESXi 6.7 host to capture packets when troubleshooting connectivity issues? A. Wireshark B. pktcap-uw C. net-stats D. tcpdump
B. pktcap-uw
Which three hardware-based offloads provide maximum performance for physical network interface cards? (Choose three.) A. Netfilter Flow Offload (NFO) B. Priority Flow Control (PFC) C. Receive Side Scaling (RSS) D. TCP Segmentation Offload (TSO) E. Source Route Bridging (SRB) F. Large Receive Offload (LRO)
C. Receive Side Scaling (RSS)
D. TCP Segmentation Offload (TSO)
F. Large Receive Offload (LRO)
Which two commands could be used on an ESXI transport node to validate connectivity to the NSX Manager? (Choose two.)
A. nsxcli –cmd get manager status
B. esxcli network ip connection list I grep rabbitmq
C. nsxcli –cmd get managers
D. nsxcli –cmd get manager connectivity status
E. esxcli network ip connection list I grep 5671
C. nsxcli –cmd get managers
E. esxcli network ip connection list I grep 5671
Which two statements describe the characteristics of the Services Router (SR) component of a Tier-0 Gateway? (Choose two.)
A. Edge cluster is mandatory for SR to be created.
B. SR can exist on both hypervisor transport nodes and Edge transport nodes.
C. SR is automatically created when stateful services are enabled.
D. Edge transport nodes are required for SR to be created.
E. SR can be created from the NSX Advanced Networking & Security tab in the UI.
C. SR is automatically created when stateful services are enabled.
D. Edge transport nodes are required for SR to be created.
Which statement Is true regarding the audit user account? (Choose two.)
A. The admin user must set the password for the audit account to log in to NSX Manager.
B. The administrator must run the set audit user password command.
C. The audit user has read-write access to the NSX Manager.
D. The audit user is disabled by default and must be enabled to log in to the NSX Manager.
E. The administrator must run the set user audit password command.
D. The audit user is disabled by default and must be enabled to log in to the NSX Manager.
E. The administrator must run the set user audit password command.
An NSX administrator is migrating vSphere port groups configured in vSphere to N-VDS.
What are two migration options? (Choose two.)
A. Migrate vSphere port groups using the esxcli command line.
B. Migrate vSphere port group through the NSX Manager API Calls.
C. Migrate Networking from the vCenter Server.
D. Migrate from the NSX Manager UI, go to Fabric -> Profile -> Uplink Profiles path.
E. Migrate from the NSX Simplified UI> Click Transport Node > Configure NSX > PNIC Only Migration path.
B. Migrate vSphere port group through the NSX Manager API Calls.
C. Migrate Networking from the vCenter Server.
What is the function of a domain in a NSX-T Data Center?
A. defines the scope of transport zones
B. defines the scope of security policies and groups
C. defines the scope of physical networks
D. defines the scope of transport nodes
A. defines the scope of transport zones
Which port is used by a transport node to communicate with NSX Manager in NSX-T Data Center 2.4? A. 5671 B. 1234 C. 1235 D. 5678
A. 5671
The security administrator turns on logging for a firewall rule.
Where is the log stored on ESXi and KVM transport nodes?
A. /var/log/vmware/nsx/fIrewall.log
B. /var/log/fw.log
C. /var/log/messages.log
D. /var/log/dfwpktlogs.log
D. /var/log/dfwpktlogs.log
Which visual tool within the NSX User Interface should an administrator use to monitor hop-by-hop connectivity between two virtual machines or logical ports? A. IPFIX B. Port Connection C. Port Mirroring D. Port Status
B. Port Connection
An NSX administrator would like to configure syslog for a KVM transport node.
Which host log files could be exported to a remote syslog server?
A. /var/log/vmware/nsx-syslog
B. /var/log/cfgAgent.log
C. /var/log/nsx-audit.log
D. /var/log/cloudnet/nsx-ccp.log
A. /var/log/vmware/nsx-syslog
Refer to the exhibit.
A vSphere administrator is trying to connect T1-Web-01 virtual machine to a NSX-T logical switch and is receiving an error.
Which service must be restarted to connect the virtual machine to a NSX-T logical switch?
A. /etc/init.d/nsx-opsagent start
B. /etc/init.d/nsx-proxy start
C. /etc/init .d/nsxa start
D. /etc/init.d/nsx-datapath start
A. /etc/init.d/nsx-opsagent start
Which three steps must be taken to assign a new IP address to a member of a NSX Management Cluster that was deployed manually? (Choose three.)
A. Delete NSX Manager VM
B. Change IP address of NSX Manager in vApp Properties
C. Execute detach node from the NSX Manager CLI
D. Deploy new NSX Manager VM
E. Delete NSX Management cluster member from NSX Simplified UI
A. Delete NSX Manager VM
C. Execute detach node from the NSX Manager CLI
D. Deploy new NSX Manager VM
What is required to configure a load balancer in inline mode?
A. DNAT
B. SNAT
C. Client and server connected to different Tier-1 Gateways
D. Client and server running on different transport nodes
C. Client and server connected to different Tier-1 Gateways
In a NSX-T Data Center environment, an administrator is observing low throughput and congestion between the Tier-0 Gateway and the upstream physical routers.
Which two actions could address low throughput and congestion? (Choose two.)
A. Configure a Tier-1 gateway and connect it directly to the physical routers.
B. Configure ECMP on the Tier-0 gateway.
C. Configure NAT on the Tier-0 gateway.
D. Deploy Large size Edge node/s.
E. Add an additional vNIC to the NSX Edge node.
B. Configure ECMP on the Tier-0 gateway.
C. Configure NAT on the Tier-0 gateway.
How many IPs are required when deploying a highly available NSX Management Cluster with VIP in a production environment? A. 3 B. 5 C. 4 D. 6
C. 4
Which vmkernel module implements the N-VDS on an ESXi transport node? A. openvswitch B. enterswitch C. nsx-vswitch D. dvswitch
C. nsx-vswitch
Which two IP Discovery mechanisms are supports in KVM-environments? (Choose two.) A. IGMP Snooping B. Packet Snooping C. DHCP Snooping D. ARP Snooping E. ND Snooping
C. DHCP Snooping
D. ARP Snooping
An NSX administrator is creating a NAT rule on a Tier-0 Gateway configured in active-standby high availability mode.
Which two NAT rule types are supported for this configuration? (Choose two.)
A. Port NAT
B. Source NAT
C. Destination NAT
D. 1:1 NAT
E. Reflexive NAT
B. Source NAT
C. Destination NAT
An administrator wants to validate the BGP connection status between the Tier-0 Gateway and the upstream physical router. What sequence of commands could be used to check this status on NSX Edge node? A. - set vrf - show logical-routers - show bgp B. - show logical-routers - get vrf - show ip route bgp C. - enable - get vrf - show bgp neighbor D. - get logical-routers - vrf - get bgp neighbor
D. - get logical-routers
- vrf
- get bgp neighbor
An NSX administrator is troubleshooting a connectivity issue with virtual machines running on an ESXi transport node.
Which feature in the NSX Manager Simplified UI shows the mapping between the virtual NIC and the host’s physical adapter?
A. N-VDS Visualization
B. Activity Monitoring
C. IPFIX
D. Port Mirroring
A. N-VDS Visualization
What are the advantages of using a Tier-0 Gateway in ECMP mode? (Choose two.) I A. stateful services leveraged B. increased north/south bandwidth C. traffic load balancing D. Failover of services E. traffic predictability
B. increased north/south bandwidth
C. traffic load balancing
A user is assigned these two roles in NSX Manager:
• Load Balancer Administrator
• Network Engineer
What privileges does this user have in the system?
A. full access permissions on all networking services and full access permissions on load balancing features
B. read permissions on all networking services and read permissions on load balancing features
C. read permissions on all networking services and full access permissions on load balancing features
D. full access permissions on all networking services and read permissions on load balancing features
A. full access permissions on all networking services and full access permissions on load balancing features
An NSX administrator has configured a KVM hypervisor as a transport node. Which kemel module on KVM implements a N VDS? A. dvswitch B. nsx-vswitch C. openvswitch D. etherswitch
C. openvswitch
Refer to the exhibit.
An NSX administrator is retrieving a log bundle at the request of VMware Global Support. It is taking a long time to get the log bundle. The administrator reviews the configuration.
Which two changes to the configuration must be made to speed up the creation of the bundle. (Choose two.)
A. Disable upload bundle to remote file server
B. Change transfer protocol
C. Do not use ssh fingerprint
D. Create the support bundle from vCenter
E. Disable Include core files and audit logs
A. Disable upload bundle to remote file server
E. Disable Include core files and audit logs
How is the intra-tier transit link connection created between SR and DR for a Tier-0 Gateway?
A. Manually create a gateway interface and mark it as transit.
B. Automatically created when DR is created.
C. Automatically created when SR is initialized.
D. Manually create external uplink interface and mark it as transit.
C. Automatically created when SR is initialized.
Which two components are involved in the logical switching and N-VDS configuration during ESXi transport node installation? (Choose two.) A. etherswitch B. Open vSwitch C. nsx-opsAgent D. vdl2 E. nsx-vswitch
C. nsx-opsAgent
E. nsx-vswitch
A security administrator needs to configure a firewall rule based on the domain name of a specific application.
Which field in a distributed firewall rule does the administrator configure?
A. Policy
B. Profile
C. Service
D. Source
B. Profile
What are two supported VPN configuration types in a NSX-T Data Center? (Choose two.) A. OpenVPN B. MPLS C. L3VPN D. L2VPN E. SSLVPN+
C. L3VPN
D. L2VPN
An NSX administrator is applying QoS to guarantee bandwidth for critical production workloads.
Which three actions must be taken? (Choose three.)
A. Edit the exported JSON file.
B. Export transport node NIOC profile.
C. Create a QoS segment profile.
D. Specify QoS parameters.
E. Change Segment QoS profile.
F. Upload the JSON file and apply configuration.
C. Create a QoS segment profile.
D. Specify QoS parameters.
E. Change Segment QoS profile.