Cisco®
CompTIA
Checkpoint
ISC
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk®
Scrum
All Vendors
  2. Home
  3. Exams
  4. VMware
  5. 5V0-41.21

Free 5V0-41.21 Exam Braindumps (page: 8)

Page 7 of 18
PDF with 70 Questions

As part of an audit, an administrator is required to demonstrate that measures have been taken to prevent critical vulnerabilities from being exploited.
Which Distributed IDS/IPS event filter can the administrator show as proof?

  1. Attack Type
  2. CVSS
  3. CVE
  4. Signature ID

Answer(s): C

Explanation:

For further reading, see the VMware NSX-T Data Center Administration Guide (https://docs.vmware.com/en/VMware-NSX-T-Data-Center/3.1/com.vmware.nsxt.admin.doc/GUID- A1A7F233-5F9F-4B2E-B3D3-0F8B593032F6.html) for more information on configuring the as the CVE filter can be used to filter out any events which are related to a specific vulnerability



Which two are used to define dynamic groups for an NSX Distributed Firewall? (Choose two.)

  1. segment
  2. physical servers
  3. machine name
  4. tags
  5. segment's port

Answer(s): C,D

Explanation:

For further reading, see the VMware NSX-T Data Center Administration Guide (https://pubs.vmware.com/NSX-T-Data-Center/index.html#com.vmware.nsxt.admin.doc/GUID- BEDA8D9F-ACBC-42B1-B7F5-FEEF0E0D899C.html) for more information on configuring dynamic groups.



What type of IDS/IPS system deployment allows an administrator to block a known attack?

  1. A system deployed in SPAN port mode.
  2. A system deployed inline with ALERT and DROP action.
  3. A system deployed inline with ALERT action.
  4. A system deployed in TERM mode.

Answer(s): B

Explanation:

as a system deployed inline with both ALERT and DROP action will provide the ability to block attacks when a match is found
For further reading, see the VMware NSX-T Data Center Administration Guide (https://pubs.vmware.com/NSX-T-Data-Center/index.html#com.vmware.nsxt.admin.doc/GUID-

D9A6B1E7-FFCD-47A7-8E0C-FDD3DE6AC2B6.html) for more information on configuring an IDS/IPS system.



A security administrator is verifying the health status of an NSX Service Instance.
Which two parameters must be functioning for the health status to show as Up? (Choose two.)

  1. VMs must have at least one vNIC.
  2. VMs must not have existing endpoint protection rules.
  3. VMs must have virtual hardware version 9 or higher.
  4. VMs must be available on the host.
  5. VMs must be powered on.

Answer(s): D,E

Explanation:

The health status of an NSX Service Instance is an indicator of the overall health and functionality of the service.
For an NSX Service Instance to show as Up, the following two parameters must be functioning:
1. VMs must be available on the host - The VMs that are associated with the service must be present on the host and able to communicate with the NSX Manager. If a VM is not available on the host, the service will not be able to function properly.
2. VMs must be powered on - The VMs that are associated with the service must be powered on and running. If a VM is not powered on, the service will not be able to function properly.






Post your Comments and Discuss VMware 5V0-41.21 exam with other Community members: