New Year Sale Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: pass65

2V0-41.23 VMware NSX 4.x Professional Questions and Answers

Questions 4

Which two of the following features are supported for the Standard NSX Application Platform Deployment? (Choose two.)

Options:

A.

NSX Intrusion Detection and Prevention

B.

NSX Intelligence

C.

NSX Network Detection and Response

D.

NSX Malware Prevention Metrics

E.

NSX Intrinsic Security

Buy Now
Questions 5

Which three security features are dependent on the NSX Application Platform? (Choose three.)

Options:

A.

NSX Intelligence

B.

NSX Firewall

C.

NSX Network Detection and Response

D.

NSX TLS Inspection

E.

NSX Distributed IDS/IPS

F.

NSX Malware Prevention

Buy Now
Questions 6

Which of the following exist only on Tler-1 Gateway firewall configurations and not on Tier-0?

Options:

A.

Applied To

B.

Actions

C.

Profiles

D.

Sources

Buy Now
Questions 7

What are two functions of the Service Engines in NSX Advanced Load Balancer? (Choose two.)

Options:

A.

It collects real-time analytics from application traffic flows.

B.

It stores the configuration and policies related to load-balancing services.

C.

It performs application load-balancing operations.

D.

It deploys web servers to perform load-balancing operations.

E.

It provides a user interface to perform configuration and management tasks.

Buy Now
Questions 8

When configuring OSPF on a Tler-0 Gateway, which three of the following must match in order to establish a neighbor relationship with an upstream router? (Choose three.)

Options:

A.

Naming convention

B.

MTU of the Uplink

C.

Subnet mask

D.

Address of the neighbor

E.

Protocol and Port

F.

Area ID

Buy Now
Questions 9

An administrator has been tasked with implementing the SSL certificates for the NSX Manager Cluster VIP.

Which is the correct way to implement this change?

Options:

A.

Send an API call to https:// /api/v1/cluster/api-certificate? action=set_cluster_certificate&certificate_id=

B.

Send an API call to https:// /api/v1/node/services/http? action=apply_certificate&certificate_id=

C.

SSH as admin into the NSX manager with the cluster VIP IP and run nsxcli cluster certificate vip install

D.

SSH as admin into the NSX manager with the cluster VIP IP and run nsxcli cluster certificate node install

Buy Now
Questions 10

Which two of the following will be used for Ingress traffic on the Edge node supporting a Single Tier topology? (Choose two.)

Options:

A.

Inter-Tier interface on the Tier-0 gateway

B.

Tier-0 Uplink interface

C.

Downlink Interface for the Tier-0 DR

D.

Tier-1 SR Router Port

E.

Downlink Interface for the Tier-1 DR

Buy Now
Questions 11

What needs to be configured on a Tler-0 Gateway lo make NSX Edge Services available to a VM on a VLAN-backed logical switch?

Options:

A.

Downlink Interface

B.

VLAN Uplink

C.

Loopback Router Port

D.

Service Interface

Buy Now
Questions 12

Which two are supported by L2 VPN clients? (Choose two.)

Options:

A.

NSX for vSphere Edge

B.

3rd party Hardware VPN Device

C.

NSX Autonomous Edge

D.

NSX Edge

Buy Now
Questions 13

A company security policy requires all users to log Into applications using a centralized authentication system.

Which two authentication, authorization, and accounting (AAA) systems are available when Integrating NSX with VMware Identity Manager? (Choose two.)

Options:

A.

RADII 2.0

B.

Keyoen Enterprise

C.

RSA SecurelD

D.

LDAP and OpenLDAP based on Active Directory (AD)

E.

SecureDAP

Buy Now
Questions 14

What is the VMware recommended way to deploy a virtual NSX Edge Node?

Options:

A.

Through the OVF command line tool

B.

Through the vSphere Web Client

C.

Through automated or Interactive mode using an ISO

D.

Through the NSXUI

Buy Now
Questions 15

Which is an advantages of a L2 VPN In an NSX 4.x environment?

Options:

A.

Enables Multi-Cloud solutions

B.

Achieve better performance

C.

Enables VM mobility with re-IP

D.

Use the same broadcast domain

Buy Now
Questions 16

Which TraceFlow traffic type should an NSX administrator use tor validating connectivity between App and DB virtual machines that reside on different segments?

Options:

A.

Multicast

B.

Unicast

C.

Anycast

D.

Broadcast

Buy Now
Questions 17

An NSX administrator is reviewing syslog and notices that Distributed Firewall Rules hit counts are not being logged.

What could cause this issue?

Options:

A.

Syslog is not configured on the ESXi transport node.

B.

Zero Trust Security is not enabled.

C.

Syslog is not configured on the NSX Manager.

D.

Distributed Firewall Rule logging is not enabled.

Buy Now
Questions 18

Which of the two following characteristics about NAT64 are true? (Choose two.)

Options:

A.

NAT64 is stateless and requires gateways to be deployed in active-standby mode.

B.

NAT64 is supported on Tier-1 gateways only.

C.

NAT64 is supported on Tier-0 and Tier-1 gateways.

D.

NAT64 requires the Tier-1 gateway to be configured in active-standby mode.

E.

NAT64 requires the Tier-1 gateway to be configured in active-active mode.

Buy Now
Questions 19

An administrator wants to validate the BGP connection status between the Tier-O Gateway and the upstream physical router.

What sequence of commands could be used to check this status on NSX Edge node?

Options:

A.

set vrf

show logical-routers

show bgp

B.

show logical-routers

get vrf

show ip route bgp

C.

get gateways

vrf

get bgp neighbor

D.

enable

get vrf

show bgp neighbor

Buy Now
Questions 20

Where does an administrator configure the VLANs used In VRF Lite? (Choose two.)

Options:

A.

segment connected to the Tler-1 gateway

B.

uplink trunk segment

C.

downlink interface of the default Tier-0 gateway

D.

uplink Interface of the VRF gateway

E.

uplink interface of the default Tier-0 gateway

Buy Now
Questions 21

When running nsxcli on an ESXi host, which command will show the Replication mode?

Options:

A.

get logical-switch status

B.

get logical-switch

C.

get logical-switches

D.

get logical-switch status

Buy Now
Questions 22

An NSX administrator wants to create a Tler-0 Gateway to support equal cost multi-path (ECMP) routing. Which failover detection protocol must be used to meet this requirement?

Options:

A.

Bidirectional Forwarding Detection (BFD)

B.

Virtual Router Redundancy Protocol (VRRP)

C.

Beacon Probing (BP)

D.

Host Standby Router Protocol (HSRP)

Buy Now
Questions 23

Where is the insertion point for East-West network introspection?

Options:

A.

Tier-0 router

B.

Partner SVM

C.

Guest VM vNIC

D.

Host Physical NIC

Buy Now
Questions 24

Which two steps must an NSX administrator take to integrate VMware Identity Manager in NSX to support role-based access control? (Choose two.)

Options:

A.

Create a SAML authentication in VMware Identity Manager using the NSX Manager FQDN.

B.

Enter the Identity Provider (IdP) metadata URL in NSX Manager.

C.

Create an OAuth 2.0 client in VMware Identity Manager.

D.

Add NSX Manager as a Service Provider (SP) in VMware Identity Manager.

E.

Enter the service URL, Client Secret, and SSL thumbprint in NSX Manager.

Buy Now
Questions 25

In which VPN type are the Virtual Tunnel interfaces (VTI) used?

Options:

A.

Route & SSL based VPNs

B.

Route-based VPN

C.

Policy & Route based VPNs

D.

SSL-based VPN

Buy Now
Questions 26

Which VPN type must be configured before enabling a L2VPN?

Options:

A.

Route-based IPSec VPN

B.

Policy based IPSec VPN

C.

SSL-bosed IPSec VPN

D.

Port-based IPSec VPN

Buy Now
Questions 27

What are four NSX built-in rote-based access control (RBAC) roles? (Choose four.)

Options:

A.

Network Admin

B.

Enterprise Admin

C.

Full Access

D.

Read

E.

LB Operator

F.

None

G.

Auditor

Buy Now
Questions 28

Which CLI command shows syslog on NSX Manager?

Options:

A.

get log-file auth.lag

B.

/var/log/syslog/syslog.log

C.

show log manager follow

D.

get log-file syslog

Buy Now
Questions 29

Refer to the exhibit.

Which two items must be configured to enable OSPF for the Tler-0 Gateway in the Image? Mark your answers by clicking twice on the image.

2V0-41.23 Question 29

Options:

Buy Now
Questions 30

Which of the following settings must be configured in an NSX environment before enabling stateful active-active SNAT?

Options:

A.

Tier-1 gateway in active-standby mode

B.

Tier-1 gateway in distributed only mode

C.

An Interface Group for the NSX Edge uplinks

D.

A Punting Traffic Group for the NSX Edge uplinks

Buy Now
Questions 31

How is the RouterLink port created between a Tier-1 Gateway and Tler-0 Gateway?

Options:

A.

Manually create a Logical Switch and connect to bother Tler-1 and Tier-0 Gateways.

B.

Automatically created when Tler-1 is created.

C.

Manually create a Segment and connect to both Titrr-1 and Tier-0 Gateways.

D.

Automatically created when Tier-t Is connected with Tier-0 from NSX UI.

Buy Now
Questions 32

Which NSX CLI command is used to change the authentication policy for local users?

Options:

A.

Set cli-timeout

B.

Get auth-policy minimum-password-length

C.

Set hardening- policy

D.

Set auth-policy

Buy Now
Exam Code: 2V0-41.23
Exam Name: VMware NSX 4.x Professional
Last Update: Dec 21, 2024
Questions: 107

PDF + Testing Engine

$57.75  $164.99

Testing Engine

$43.75  $124.99
buy now 2V0-41.23 testing engine

PDF (Q&A)

$36.75  $104.99
buy now 2V0-41.23 pdf