2V0-642 Online Practice Questions and Answers

An NSX Edge Service Gateway has two interfaces:

*

Internal interface named Internal Access

-- IP address = 10.10.10.1

-- Network mask = 255.255.255.0

*

Uplink interface named Physical Uplink

-- IP address = 20.20.20.1

-- Network mask = 255.255.255.0

A vSphere administrator wants to add a SNAT rule to allow traffic from the internal network segment to

access external resources via the uplink interface.

Which three steps should the vSphere administrator do to add the SNAT rule? (Choose three.)

A. Apply the SNAT rule to the Internal Access interface.

B. Select 10.10.10.1 as the translated source IP.

C. Apply the SNAT rule on the Physical Uplink interface.

D. Select 10.10.10.0/24 as the original subnet.

E. Choose 20.20.20.2 as the translated source IP address.

What is one of the benefits of using logical switches in an NSX environment?

A. Quality of Service parameters are automatically configured in a logical switch.

B. The physical infrastructure is responsible for maintaining the logical switch broadcast tables.

C. The physical infrastructure is not constrained by MAC/FIB table limits.

D. IP subnet definitions can be migrated into logical switches using the NSX Manager.

Internet access is required from virtual machines located on any logical switch. Direct access from the internet to these virtual machines is NOT permitted.

Which Perimeter NSX Edge feature would achieve this with the least configuration?

A. LB

B. DNAT

C. SNAT

D. VPN

Which NSX routing protocols offers the most flexible policy control when peering with the physical environment?

A. BGP

B. OSPF

C. ISIS

D. EIGRP

Which three ways can membership be defined in a dynamic security group? (Choose three.)

A. Distributed Firewall Rules

B. Locale ID

C. Security Tags

D. Security Groups

E. Regular Expressions

Which two methods does VMware NSX offer to integrate with third-party partners? (Choose two.)

A. Integration Manager

B. Service Chaining

C. VMware NSX APIs

D. Universal Synchronization Service

A network administrator has been tasked with deploying a 3-tier application across two data centers. Tier-1 and tier-2 will be located in Datacenter-A and tier-3 will be located in Datacenter-B.

Which NSX components are needed to make this deployment functional?

A. A universal transport zone deployed with a universal distributed logical router (UDLR), a universal logical switch and two local logical switches connected to the UDLR.

B. A universal transport zone deployed with a universal distributed logical router (UDLR), two universal logical switches and a single logical switch connected to the UDLR.

C. A universal transport zone deployed with a universal distributed logical router (UDLR) and three universal logical switches connected to the UDLR.

D. A universal transport zone, a universal distributed logical router (UDLR) and three local switches in each data center connected to the UDLR.

Activity Monitoring has been enabled for a host with several virtual machines. However, only one virtual machine appears in the list.

Which two additional configuration steps are required to allow the other virtual machines on the host to be selected? (Choose two.)

A. Guest Introspection driver must be installed.

B. Virtual Machine Data Collection must be enabled on the other VMs.

C. NSX Manager must be linked to Active Directory.

D. Guest Introspection appliance must be deployed on the host.

With which Application Profile types would the Insert X-Forwarded-For HTTP header option be used?

A. HTTP, HTTPS

B. TCP, UDP

C. HTTP, TCP

D. HTTP, UDP

An NSX administrator notices that when configuring Flow Monitoring, the graphs do not include the IPFix flows. Where are these flows displayed?

A. In the IPFix collector's interface.

B. In the Flow Monitor UI.

C. In the vRealize Operations UI.

D. In the IPFix tab of the NSX Manager UI.