ExamGecko
Search Search Login
Home Home / VMware / 5V0-41.21
Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Refer to the exhibit. Referencing the exhibit, what is the VMware recommended number of NSX Manager Nodes to additionally deploy to form an NSX-T Manager Cluster?
An organization is using VMware Identity Manager (vIDM) to authenticate NSX-T Data Center users Which two selections are prerequisites before configuring the service? (Choose two.)
An NSX administrator is trying to find the dvfilter name of the sa-web-01 virtual machine to capture the sa-web-01 VM traffic. What could be a reason the sa-web-01 VM dvfilter name is missing from the command output?
Which three are required by URL Analysis? (Choose three.)
Which 3 CU commands ant required to configure remote logging on an ESXI host? (Choose three.)
An administrator is creating the first distributed firewall rules for a company's salts department. What is the first object that must be created in the distributed firewall'
A company's CTO has requested that all logging should be enabled for all NSX-T Data Center Distributed Firewall rules. What should be considered prior to executing this request?
A security administrator is required to protect East-West virtual machine traffic with the NSX Distributed Firewall. What must be completed with the virtual machine's vNIC before applying the rules?
Refer to the exhibit. A security administrator is configuring a time window to create a time-based distributed firewall rule. While configuring the time window, an error displayed as shown in the exhibit. Which action will resolve the problem?
Which esxcli command lists the firewall configuration on ESXi hosts?

Question 6 - 5V0-41.21 discussion

Report
Export

Which two are true of the NSX Gateway Firewall? (Choose two.)

A.
Firewall rules in System category cannot be edited.
Answers
A.
Firewall rules in System category cannot be edited.
B.
Firewall rules in Pre Rule category are applied to all gateways.
Answers
B.
Firewall rules in Pre Rule category are applied to all gateways.
C.
NAT service can be configured in NSX Gateway Firewall policy.
Answers
C.
NAT service can be configured in NSX Gateway Firewall policy.
D.
Security Groups can be used in Applied-To column.
Answers
D.
Security Groups can be used in Applied-To column.
E.
Applied-To can be configured at Firewall Policy level.
Answers
E.
Applied-To can be configured at Firewall Policy level.
Suggested answer: B, D

Explanation:

NSX Gateway Firewall is a distributed firewall that provides security for east-west traffic within a virtual environment.

1. Firewall rules in Pre Rule category are applied to all gateways. This category contains systemdefined rules that are always applied first to all gateways and cannot be modified. These rules include the default deny all rule and others that control basic connectivity.

2. Security Groups can be used in Applied-To column. Security groups allow you to group together VMs that have similar security requirements and then apply firewall policies to those groups. This way you can apply the same security rules to multiple VMs at once, instead of configuring the rules on each individual VM.

Reference:

VMware NSX-T Data Center documentation https://docs.vmware.com/en/VMware-NSX-T-Data-Center/index.html

VMware NSX-T Data Center Gateway Firewall documentation

https://docs.vmware.com/en/VMware-NSX-T-Data-Center/3.1/com.vmware.nsxt.firewall.doc/GUID-4C5D5A5F-8FDF-4F2A-9C5A-2C1903A3E5A5.html

Show Answer
asked 16/09/2024
Yohane Phompho
33 questions
PreviousPreviousNextNext
User
Your answer:
0 comments
Sorted by

Leave a comment first

ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms