VCPN610 VMware Certified Professional Network Virtual Test Set 5

Which condition could prevent an ESXi host from receiving VXLAN Tunnel End Point (VTEP)

tables?


Options are :

  • The vsfwd agent is not running on the ESXi host
  • The ESXi host is disconnected from vCenter Server (Correct)
  • The ESXi host is disconnected from vCenter Server
  • The NSX controller on the ESXi host is down

Answer : The ESXi host is disconnected from vCenter Server

An administrator needs to verify which port the switch manager is using. Which command should

be used?


Options are :

  • show controller-cluster core stats
  • show controller-cluster status
  • show controller-cluster connections (Correct)
  • show controller-cluster logical-switches

Answer : show controller-cluster connections

An administrator can only log into the NSX manager using local credentials and not Active

Directory credentials. Which option would cause this issue?


Options are :

  • The NSX manager has not been connected to the vCenter Server
  • The NSX manager has not been connected to Active Directory
  • The NSX manager has not been connected to the lookup service (Correct)
  • The NSX manager has not been connected to an SSO server

Answer : The NSX manager has not been connected to the lookup service

Which configuration change on the physical infrastructure is required when deploying NSX?


Options are :

  • Enable IGMP snooping when the control plane mode is set to multicast
  • Increase the MTU size on the physical switches (Correct)
  • Enable multicast when the control plane mode is set to unicast
  • Disable spanning tree protocol

Answer : Increase the MTU size on the physical switches

An administrator has received reports of intermittent connectivity between virtual machines on an

NSX network. The network team has verified that all physical network devices have been set to

1600 MTU.

What other configuration could cause this issue?


Options are :

  • An MTU value of 1500 on the distributed firewall
  • An MTU value of 1500 on the vDS Switch (Correct)
  • An MTU value of 1500 on the logical load balancer
  • An MTU value of 1500 on the logical router

Answer : An MTU value of 1500 on the vDS Switch

Where is the net-vdr command used?


Options are :

  • ESXi host (Correct)
  • vSphere Management Assistant (vMA)
  • NSX Edge
  • NSX Controller

Answer : ESXi host

An administrator configures the IPSec VPN service on an NSX Edge instance, but the negotiation

fails. Examining the log file, the administrator notices the following message:

INVALID_ID_INFORMATION

Which misconfiguration caused the error?


Options are :

  • Pre-shared key (PSK) does not match (Correct)
  • Diffie-Hellman (DH) Group does not match
  • Perfect Forward Secrecy (PFS) does not match
  • VPN tunnel address incorrect

Answer : Pre-shared key (PSK) does not match

An administrator has deployed and powered on a new virtual machine configured to get its

networking information via DHCP. The virtual machine is connected to an NSX network and

connectivity has been verified. After reconfiguring the virtual machine with a static IP address,

network connectivity is lost.

Which statement explains what happened?


Options are :

  • SpoofGuard is enabled and the operation mode is set to manual
  • SpoofGuard is enabled but not configured
  • SpoofGuard is disabled
  • SpoofGuard is enabled and the operation mode is set to automatic (Correct)

Answer : SpoofGuard is enabled and the operation mode is set to automatic

Which time frequency is not available when scheduling NSX backups?


Options are :

  • Hourly
  • Monthly (Correct)
  • Daily
  • Weekly

Answer : Monthly

Which port must be available for communication between the NSX Manager and vCenter Server,

ESXi hosts, and NSX appliances?


Options are :

  • 22
  • 902
  • 80
  • 443 (Correct)

Answer : 443

Which feature is not supported by the vSphere 5.5 Distributed Switch?


Options are :

  • Differentiated Service Code Point (DSCP) QOS at layer3
  • IGMP snooping at layer 2 (Correct)
  • Multiple link aggregation groups
  • Packet captures at the uplink, virtual switch port, or vNIC

Answer : IGMP snooping at layer 2

Which NSX component decreases layer 2 broadcast domains and improves network efficiency

and scale?


Options are :

  • Logical Switches
  • Logical Virtual Private Networks
  • Logical Routers (Correct)
  • Logical Firewalls

Answer : Logical Routers

Which option is VMware's best practice for the deployment of NSX Manager and NSX Controller

components?


Options are :

  • Deploy the NSX Manager and NSX Controller components to a management cluster. (Correct)
  • Deploy the NSX Manager component to a management cluster and the NSX Controller components to a resource cluster.
  • Deploy the NSX Manager and NSX Controller components to a resource cluster.
  • Deploy the NSX Controller components to a management cluster and the NSX Manager component to a resource cluster.

Answer : Deploy the NSX Manager and NSX Controller components to a management cluster.

A vSphere cluster consists of three ESXi 5.5 hosts. Each host has five powered-on virtual

machines. Which option will successfully configure the hosts to use a newly-created vSphere

Distributed Switch (vDS) with a single port group?


Options are :

  • Using the vSphere Web Client, for each host, select a host, click Manage, click Networking, and click the icon to Add host networking.
  • Using the vSphere Web Client, select each of the running virtual machines and edit the settings of the network adapters.
  • Using the vSphere Web Client, select the newly created VDS and click Add and Manage Hosts. (Correct)
  • Using the vSphere Web Client, for each host, select a host, right-click the host, select All vCenter Actions, and then select Add Networking.

Answer : Using the vSphere Web Client, select the newly created VDS and click Add and Manage Hosts.

A NSX administrator attempts to create a Logical Switch, but assigns it a name of an existing

Logical Switch. What will be the result?


Options are :

  • NSX Manager will append a two digit number to the Logical Switch name, starting with 01.
  • An error message is displayeD.Unable to allocate an available resource.
  • The Logical Switch can't be attached to a Redistributed Router until it's name is changed.
  • The Logical Switch is created with the name assigned by the NSX Administrator. (Correct)

Answer : The Logical Switch is created with the name assigned by the NSX Administrator.

An administrator will deploy NSX within an existing vSphere environment containing two vCenter

Server instances. Each vCenter Server manages three clusters with 16 ESXi hosts per cluster.

How many NSX Manager instances would be required for this deployment?


Options are :

  • 3
  • 1
  • 6
  • 2 (Correct)

Answer : 2

What is the appropriate source from which to deploy the VMware NSX Manager component?


Options are :

  • MSI install package
  • VMware vSphere Update Manager update baseline
  • VMware Infrastructure Bundle (VIB) file
  • Open Virtualization Appliance (OVA) file (Correct)

Answer : Open Virtualization Appliance (OVA) file

In a 3-Tier Data Center design without virtualization, which statement most closely defines the

architecture of network services?


Options are :

  • Network services such as NAT and firewalls are typically distributed throughout the access layer.
  • Network services such as NAT and firewalls are typically deployed in-line with the applications.
  • Network services such as routing and firewalls are typically deployed at the L2/L3 boundary. (Correct)
  • Network QoS services such as classification and marking are performed by software in the compute nodes.

Answer : Network services such as routing and firewalls are typically deployed at the L2/L3 boundary.

Which NSX component provides the ability to provide East-West distributed routing for virtual

machines in different subnets without having to traverse the physical network?


Options are :

  • NSX Edge (Correct)
  • NSX vSwitch
  • NSX Controller
  • NSX Distributed Firewall

Answer : NSX Edge

Which statement is true regarding the configuration of vSphere Standard Switches on ESXi 5.5

hosts?


Options are :

  • Additional ports must be manually added to a vSwitch when the configured number of ports has been exhausted. The host requires a reboot when this configuration change is made.
  • Additional ports are automatically added to a vSwitch when the configured number of ports has been exhausted. The host does not require a reboot when this configuration change is made.
  • Additional ports must be manually added to a vSwitch when the configured number of ports has been exhausted. The host does not require a reboot when this configuration change is made
  • Additional ports are automatically added to a vSwitch as needed, and a set number of ports is not configured. The host does not require a reboot when this configuration change is made. (Correct)

Answer : Additional ports are automatically added to a vSwitch as needed, and a set number of ports is not configured. The host does not require a reboot when this configuration change is made.

Which two configurations are valid on a vSphere Standard Switch using the vSphere Web Client?

(Choose two.)

A. Enable the use of SR-IOV for a physical adapter.

B. Set the MTU frame size on the vSwitch.

C. Configure Route Based on Physical NIC Load on a nic team.

D. Configure Port Mirroring on a portgroup.


Options are :

  • A,B (Correct)
  • C,B
  • A,D
  • A,C

Answer : A,B

Which characteristic or feature is required for VXLAN traffic to successfully travel across virtual

and physical networks?


Options are :

  • Network device support for jumbo frames. (Correct)
  • A repeatable rack design for scalability.
  • Physical VXLAN gateway support in the access layer switches.
  • Deployment of a three rack design for the compute and network infrastructure support.

Answer : Network device support for jumbo frames.

You are managing three ESXi 5.1 hosts attached to a vSphere Distributed Switch (vDS) using the

default settings. You need to provide LACP Active Mode connectivity for the two 10Gb uplinks of

each host attached to the Uplink Port Group of the vDS.

Using VMware best practices, which option shows the steps required to configure use of LACP?


Options are :

  • Upgrade all ESXi hosts to ESXi version 5.5. Create a new version 5.5 vDS. Use the Add and Manage Hosts option to migrate the hosts to the new vDS. Configure the appropriate LACP settings.
  • Upgrade all ESXi hosts to ESXi version 5.5. Create a new version 5.5 vDS and use the Add and Manage Hosts option to migrate the hosts to the new vDS. Upgrade all virtual machines to hardware version 10. Configure the appropriate LACP settings.
  • Upgrade all ESXi hosts to ESXi version 5.5. Upgrade the existing vDS to version 5.5. Configure the appropriate LACP settings. (Correct)
  • Upgrade all ESXi hosts to ESXi version 5.5. Upgrade the existing vDS and use the Add and Manage Hosts option to migrate the hosts to the new vDS. Upgrade all virtual machines to hardware version 10. Configure the appropriate LACP settings.

Answer : Upgrade all ESXi hosts to ESXi version 5.5. Upgrade the existing vDS to version 5.5. Configure the appropriate LACP settings.

A data center environment contains the following:

VMware vCenter 5.1

ESXi hosts 4.1 and higher

VMware Horizon View 5.2

Network devices with merchant silicon ASICs

Which two steps must be taken to ensure a successful NSX deployment? (Choose two.) 

A. Upgrade the vCenter Server installation to vCenter Server 5.5.

B. Upgrade the network devices to support layer 2 multi-pathing.

C. Upgrade all compute nodes to ESXi 5.1 or later.

D. Upgrade the VMware Horizon View installation to Horizon View 5.3.


Options are :

  • A,C (Correct)
  • B,C
  • A,B
  • A,D

Answer : A,C

Your company has a policy regarding the use of distributed virtual port groups for application

deployments that requires all port configurations to maintain a finite maximum.

What two configuration options will assure that only a finite, specific number of ports can be

configured on a distributed virtual port group? (Choose two.)

A. Configure the Port binding option value for Ephemeral.

B. Configure the Port allocation option value for Elastic.

C. Configure the Port binding option value for Static Binding.

D. Configure the Port allocation option value for Fixed.


Options are :

  • C,D (Correct)
  • A,D
  • C,A
  • C,D

Answer : C,D

After consulting with the network team, it is decided that Transport Zones will be configured with

Unicast Replication Mode for a new NSX for vSphere deployment.

Which statement is true regarding the function of the VXLAN Tunnel End Points (VTEPs)?


Options are :

  • The VTEPs will send unicast frames to the NSX Controllers when the VTEPs do not have a MAC address in the MAC table.
  • The VTEPs will send multicast frames to all other VTEPs in the Transport Zone when the VTEPs do not have a MAC address in the MAC table.
  • The VTEPs will send unicast frames to all local VTEPs and remote proxies in the Transport Zone when the VTEPs do not have a MAC address in the MAC table. (Correct)
  • The VTEPs will switch to Multicast Replication Mode for those VTEPs to which multicast path discovery is successful

Answer : The VTEPs will send unicast frames to all local VTEPs and remote proxies in the Transport Zone when the VTEPs do not have a MAC address in the MAC table.

An administrator wants to implement NSX within the vSphere virtual environment.

Which two statements correctly describe changes that will occur as a result of an NSX

deployment? (Choose two.)

A. Use of ARP will increase in the physical environment.

B. Use of ARP will decrease in the physical environment.

C. MAC address table usage will increase in the physical environment.

D. MAC address table usage will decrease in the physical environment.


Options are :

  • B,D (Correct)
  • B,A
  • C,D
  • B,C

Answer : B,D

NSX provides easy integration with many third-party cloud management platforms (CMPs) through

the implementation of which protocol?


Options are :

  • SSL
  • SOAP
  • XML
  • REST API (Correct)

Answer : REST API

An organization has a vSphere environment configured with two adapters on each ESXi host. The

physical network is configured to use Etherchannel.

Based on the available options, what is the best option for load balancing traffic on the ESXi

hosts?


Options are :

  • Configure a vSS using the Route based on originating virtual port load balancing setting.
  • Configure a vDS using the Route based on source MAC hash load balancing setting.
  • Configure a vDS using the Route based on physical NIC load load balancing setting.
  • Configure a vSS using the Route based on IP hash. (Correct)

Answer : Configure a vSS using the Route based on IP hash.

You have a vSphere deployment consisting of ESXi 5.1 hosts and a vCenter Server 5.5. You are

deploying NSX and begin by creating a vSphere Distributed Switch (vDS) on the vCenter Server

using default settings. What is the next step in preparing the deployment for NSX?


Options are :

  • Use the option Add host networking.
  • Deploy NSX on each host.
  • Upgrade the ESXi hosts (Correct)
  • Use the option Add and Manage Hosts.

Answer : Upgrade the ESXi hosts

When compared to the Software Defined Data Center architecture, what are two network

limitations of a physical network architecture? (Choose two.)

A. Configuring firewall policies

B. Multi-Tenancy

C. Configuring layer 3 switch networks

D. Traffic hair-pinning


Options are :

  • B,C
  • B,A
  • B,D (Correct)
  • C,D

Answer : B,D

Which statement best describes scaling a fault tolerant spine-leaf multipathing fabric architected

for an NSX deployment?


Options are :

  • Scaling should be performed by replacing 1Gbps links in the architecture with 10Gbps links.
  • Scaling should be performed by increasing the number of spine switches while maintaining point-to-point connectivity between leafs and spines. (Correct)
  • Scaling should be performed by increasing the number of links from each leaf switch to the associated spine switches in the architecture.
  • Scaling should be performed by using layer 2 switching between the leaf and spine switches.

Answer : Scaling should be performed by increasing the number of spine switches while maintaining point-to-point connectivity between leafs and spines.

To provide high availability and resilience for your NSX Manager deployment, you should utilize

which high availability feature?


Options are :

  • Install multiple NSX Managers per vCenter Server installation.
  • Configure NSX High Availability
  • Configure the NSX Manager virtual machine(s) for Fault Tolerance
  • Configure the use of vSphere HA and DRS. (Correct)

Answer : Configure the use of vSphere HA and DRS.

Which statement describes proper packet processing of layer 3 traffic in an NSX for vSphere

topology?


Options are :

  • All packets are processed by the distributed router. No packets are processed by the Logical Router Control VM. (Correct)
  • Only packets requiring routing to another VM on a different host are processed by the distributed router. Other packets are processed by the Logical Router Control VM.
  • All packets requiring routing are processed by performing a lookup in the Logical Router Control VM and then forwarded.
  • Only packets requiring routing to another VM on the same host are processed by the distributed router. Other packets are processed by the Logical Router Control VM.

Answer : All packets are processed by the distributed router. No packets are processed by the Logical Router Control VM.

Which two statements correctly describe Spine-Leaf switch topologies? (Choose two.)

A. Spine-leaf topologies must utilize layer 3 switching for inter-connectivity.

B. Spine-leaf topologies can utilize layer 2 or layer 3 switching for inter-connectivity.

C. Oversubscription, if it occurs, is more likely to be found in the spine switches.

D. Oversubscription, if it occurs, is more likely to be found in the leaf switches.


Options are :

  • B,A
  • C,D
  • B,C
  • B,D (Correct)

Answer : B,D

Which scenario can be configured to use 3DES encryption for virtual machine traffic?


Options are :

  • Two virtual machines communicating across a layer 2 bridge.
  • Two virtual machines running on different ESXi hosts communicating across the same logical switch.
  • Two virtual machines communicating across a point-to-point IPSec VPN connection. (Correct)
  • Two virtual machines configured to use NSX Data Security.

Answer : Two virtual machines communicating across a point-to-point IPSec VPN connection.

Which statement correctly defines third-party gateway support in NSX for vSphere and NSX for

Multiple Hypervisors (NSX-MH) for application workloads that span virtual and physical spaces?


Options are :

  • Only NSX for vSphere provides support for hardware based gateways.
  • Only NSX-MH provides support for hardware based gateways.
  • NONE
  • Neither version of NSX provides support for hardware based gateways at this time.
  • Both versions of NSX provide support for hardware based gateways. (Correct)

Answer : Both versions of NSX provide support for hardware based gateways.

What is a prerequisite to deploying a Logical Switch?


Options are :

  • Configure the VXLAN Tunnel Endpoint's (VTEP) VLAN on the trunk in the physical switches. (Correct)
  • Prepare and configure VTEPs on the ESXi hosts using the vSphere Web Client.
  • Create a port group on the vSphere Distributed Switch.
  • Add the ESXi hosts to the same vSphere Distributed Switch.

Answer : Configure the VXLAN Tunnel Endpoint's (VTEP) VLAN on the trunk in the physical switches.

Which option shows an advantage of implementing logical firewalls in NSX?


Options are :

  • NSX provides traffic forwarding between layer 2 broadcast domains.
  • NSX allows segmentation of virtual machines based upon VM names or user identity. (Correct)
  • NSX provides the ability to provide IPv4 and IPv6 dual stack configuration.
  • NSX allows virtual machine traffic to follow multiple paths to a specific destination.

Answer : NSX allows segmentation of virtual machines based upon VM names or user identity.

An administrator has deployed NSX within the vSphere environment, but is unable to deploy an

NSX Controller. What step must be taken to resolve the issue?


Options are :

  • Register the third-party security service device or virtual appliance with NSX Manager
  • Define a data security group for all deployed virtual machine groups.
  • On the NSX Manager, select Enable multicast addressing and complete the configuration. (Correct)
  • Deploy a distributed router and enable the High Availability option.

Answer : On the NSX Manager, select Enable multicast addressing and complete the configuration.

What is the minimum number of vSphere Distributed Switches (vDS) that must be configured

before deploying VMware NSX for vSphere?


Options are :

  • 4
  • 1 (Correct)
  • 2
  • 0

Answer : 1

Comment / Suggestion Section
Point our Mistakes and Post Your Suggestions