VMware 5V0-41.21 VMware NSX-T Data Center 3.1 Security Online Training
VMware 5V0-41.21 Online Training
The questions for 5V0-41.21 were last updated at Dec 20,2024.
- Exam Code: 5V0-41.21
- Exam Name: VMware NSX-T Data Center 3.1 Security
- Certification Provider: VMware
- Latest update: Dec 20,2024
An administrator wants to configure NSX-T Security Groups inside a distributed firewall rule.
Which menu item would the administrator select to configure the Security Groups?
- A . System
- B . Inventory
- C . Security
- D . Networking
An administrator has enabled the "logging" option on a specific firewall rule. The administrator does not see messages on the Logging Server related to this firewall rule.
What could be causing the issue?
- A . The logging on the firewall policy needs to be enabled.
- B . Firewall Rule Logging is only supported in Gateway Firewalls.
- C . NSX Manager must have Firewall Logging enabled.
- D . The logging server on the transport nodes is not configured.
An NSX administrator has been tasked with deploying a NSX Edge Virtual machine through an ISO image.
Which virtual network interface card (vNIC) type must be selected while creating the NSX Edge VM allow participation in overlay and VLAN transport zones?
- A . e1000
- B . VMXNET2
- C . VMXNET3
- D . Flexible
A security administrator is verifying the health status of an NSX Service Instance.
Which two parameters must be functioning for the health status to show as Up? (Choose two.)
- A . VMs must have at least one vNIC.
- B . VMs must not have existing endpoint protection rules.
- C . VMs must have virtual hardware version 9 or higher.
- D . VMs must be available on the host.
- E . VMs must be powered on.
In a brownfield environment with NSX-T Data Center deployed and configured, a customer is interested in Endpoint Protection integrations.
What recommendation should be provided to the customer when it comes to their existing virtual machines?
- A . Virtual machine must be protected by vSphere HA.
- B . Virtual machine hardware should be version 10 or higher.
- C . A minimum installation of VMware tools is required.
- D . A custom install of VMware tools is required to select the drivers.
Which dot color indicates an on-going attack of medium severity in the IDS/IPS events tab of NSX-T Data Center?
- A . blinking yellow dot
- B . solid red dot
- C . solid orange dot
- D . blinking orange dot
How does N5X Distributed IDS/IPS keep up to date with signatures?
- A . NSX Edge uses manually uploaded signatures by the security administrator.
- B . NSX-T Data Center is using a cloud based database to download the IDS/IPS signatures.
- C . NSX Manager has a local IDS/IPS signatures database that does not need to be updated.
- D . NSX Distributed IDS/IPS signatures are retrieved from updates.vmware.com.
What is the default action of the Default Layer 3 distributed firewall rule?
- A . Drop
- B . Allow
- C . Forward
- D . Reject
Refer to the exhibit.
An administrator is reviewing NSX Intelligence information as shown in the exhibit.
What does the red dashed line for the UDP: 137 flow represent?
- A . Discovered communication
- B . Allowed communication
- C . Blocked communication
- D . Unprotected communication
When configuring members of a Security Group, which membership criteria art permitted?
- A . Virtual Machine, Physical Machine, Cloud Native Service Instance, and IP Set
- B . Segment Port, Segment, Virtual Machine, and IP Set
- C . Virtual Interface, Segment, Cloud Native Service Instance, and IP Set.
- D . Virtual Interface, Segment, Physical Machine, and IP Set