Q1. Which two NSX Data Security roles could be assigned to view configured policies and violation reports? (Choose two.)
A. Security Administrator
B. NSX Administrator
C. Auditor
D. Enterprise Administrator
Answer: A, C
Q2. Which statement is correct when upgrading vShield Data Security to NSX Data Security?
A. NSX Data Security does not support a direct upgrade.
B. NSX Controller must be deployed before the upgrade.
C. The vCloud Network and Security Virtual Wires must have been upgraded.
D. vCould Network and Security must be at least version 5.1 before starting the upgrade.
Answer: A
Q3. Where does an administrator configure logging for the NSX Manager?
A. In the vSphere Web Client
B. In the NSX Manager GUI
C. In the NSX Manager command line interface (CLI)
D. In the vSphere Syslog Collector
Answer: B
Q4. Your data center is made up of two VMware vCenter Server instances. Each vCenter Server manages three clusters with 16 hosts per cluster. In preparing for your VMware NSX deployment, how many vShield Endpoint instances will you have?
A. 2
B. 6
C. 48
D. 96
Answer: D
Q5. A company has augmented its Data Center infrastructure by using vCloud Hybrid Service during peak hours. The company wants to extend their existing subnets into the cloud while workloads retain their existing IP addresses. The virtual machines in these subnets use an NSX Edge Gateway as their default gateway. Which solution should this company use?
A. Layer 2 VPN
B. MPLS VPN
C. IPSec VPN
D. SSL VPN
Answer: A
Q6. Which statement best describes scaling a fault tolerant spine-leaf multipathing fabric architected for an NSX deployment?
A. Scaling should be performed by replacing 1Gbps links in the architecture with 10Gbps links.
B. Scaling should be performed by increasing the number of links from each leaf switch to the associated spine switches in the architecture.
C. Scaling should be performed by increasing the number of spine switches while maintaining point-to-point connectivity between leafs and spines.
D. Scaling should be performed by using layer 2 switching between the leaf and spine switches.
Answer: C
Q7. Which two statements are true regarding NSX High Availability (HA)? (Choose two.)
A. NSX HA is configured as Active-Active.
B. NSX HA is configured as Active-Standby.
C. If an Active node fails, there is no service interruption during failover.
D. If an Active node fails, there is a 15 second service interruption during failover.
Answer: B, C
Q8. -- Exhibit ---- Exhibit --The Exhibit shows two possible physical network architectures. Each architecture provides a means in dealing with the pictured failure. Based on the exhibit, which architecture provides the highest degree of connectivity in the event of the pictured failure?
A. Both designs will provide the same percentage of connectivty in times of failure.
B. Neither design is properly architected to work around the displayed failure.
C. Diagram A's architecture will provide the highest percentage of connectivity in times of failure.
D. Diagram B's architecture will provide the highest percentage of connectivity in times of failure.
Answer: D
Q9. A vSphere administrator wants to add a VLAN LIF to a Distributed Router. What must the vSphere administrator do for the VLAN LIF to be added successfully?
A. The vSphere administrator must assign a VLAN number to the distributed portgroup that the VLAN LIF connects to.
B. The vSphere administrator must assign a VLAN number to the Distributed Router that the Logical Switch connects to.
C. The vSphere administrator must assign a VLAN number to the Logical Switch that the Distributed Router connects to.
D. The vSphere administrator must assign a VLAN number to the uplink on the distributed switch that the VLAN LIF connects to.
Answer: A
Q10. How does NSX simplify physical network design?
A. VLANs are moved into the virtual network for virtual machine traffic, eliminating the need to use Private VLANs on the physical network.
B. Network administrators only need to configure routing on the physical network for virtual machine traffic since all other network functions are moved to the virtual network.
C. Transport zones are created in the virtual network for virtual machine traffic, removing the need to make changes to the physical network.
D. Virtual network integration can make changes to the physical network programmatically using REST API calls which automates network changes and increases agility.
Answer: C