An NSX administrator has turned on logging for the distributed firewall rule. On an ESXi host, where will the logs be stored?
Answer(s): B
The NSX administrator has enabled logging for the distributed firewall rule, and the logs are stored in the /var/log/dfwpktlogs.log file on the ESXi host. This log file stores the packet logs for the distributed firewall rules, and the logs can be used for auditing and troubleshooting the distributed firewall.
https://docs.vmware.com/en/VMware-NSX-T-Data- Center/2.5/nsxt_25_admin_guide/GUID-E0CC7D8A-F9E6-4A6F-A6F8-6A3D7B3DC3EF.html#GUID- E0CC7D8A-F9E6-4A6F-A6F8-6A3D7B3DC3EF
A Security Administrator needs to update their NSX Distributed IDS/IPS policy to detect new attacks with critical CVSS scoring that leads to credential theft from targeted systems.Which actions should you take?
Answer(s): A
https://docs.vmware.com/en/VMware-NSX-T-Data-Center/3.1/nsxt_31_ids_ips/GUID-B2D6A7F6-
Which is an insertion point for East-West service insertion?
Answer(s): C
East-West service insertion refers to the ability to insert security services, such as firewall and intrusion detection and prevention, between virtual machines (VMs) that are communicating within the same logical network.One of the insertion points for East-West service insertion is the virtual network interface card (vNIC) of the guest VM. The vNIC is the virtual representation of a physical NIC on a VM, and it connects the VM to the virtual network. By inserting security services at the vNIC level, traffic between VMs can be inspected and secured before it reaches the virtual switch.VMware NSX-T Data Center documentation https://docs.vmware.com/en/VMware-NSX-T-Data- Center/index.htmlVMware NSX-T Data Center Security documentation https://docs.vmware.com/en/VMware-NSX-T- Data-Center/3.1/com.vmware.nsxt.security.doc/GUID-8F7C8B70-F1A6-4F31-8D6C- A0A9B9C9A9D3.html
An NSX administrator has been tasked with configuring a remote logging server (192.168.110.60) to send FW connections and packets logs to a remote logging server. The administrator is using this command syntax found in the NSX-T 3.1 documentation:Which of the following commands does the administrator use to complete the configuration task?
The administrator is using the command syntax found in the NSX-T 3.1 documentation to configure a remote logging server to send firewall connections and packets logs. In order to complete the configuration task, the administrator needs to use the correct options for the command.The options used in the command are:logging-server: This option specifies the IP address or hostname of the remote logging server. In this case, the IP address of the remote logging server is 192.168.110.60. proto: This option specifies the protocol to be used to send the logs to the remote server. In this case, the protocol used is UDP.level: This option specifies the level of logging to be sent to the remote server. In this case, the level of logging is "info"facility: This option specifies the facility to be used for syslog messages. In this case, the facility used is "syslog"message Id: This option specifies the message Id that will be used for the logs. In this case, the message Id used is "FIREWALL-PKTLOG"
VMware NSX-T Data Center documentation https://docs.vmware.com/en/VMware-NSX-T-Data- Center/index.htmlVMware NSX-T Data Center Logging documentation https://docs.vmware.com/en/VMware-NSX-T- Data-Center/3.1/com.vmware.nsxt.logging.doc/GUID-2B9E9F8D-6CA9-4A1E-B7B1- 8B8C7F0C2B2E.html
Which dot color indicates an on-going attack of medium severity in the IDS/IPS events tab of NSX-T Data Center?
The dot color that indicates an on-going attack of medium severity in the IDS/IPS events tab of NSX-T Data Center is a solid orange dot. This indicates that the attack has been detected and is ongoing at a medium severity level.
https://docs.vmware.com/en/VMware-NSX-T-Data-Center/3.1/nsxt_31_admin_guide/GUID-A8FAC8A1-F9F9-43EC-A822-F2F2CB5C5E5A.html#GUID- A8FAC8A1-F9F9-43EC-A822-F2F2CB5C5E5AIn the IDS/IPS events tab of NSX-T Data Center, different colors of dots are used to indicate the severity of an attack.A solid red dot indicates a critical attack, which is the highest severity level. A solid orange dot indicates a medium attack, which is a moderate severity level. A solid yellow dot indicates a low attack, which is the lowest severity level. In this case, a solid orange dot is used to indicate an on-going attack of medium severity in the IDS/IPS events tab of NSX-T Data Center.It's worth noting that there is no blinking dots in this context, all the dots are solid.VMware NSX-T Data Center documentation https://docs.vmware.com/en/VMware-NSX-T-Data-Center/index.htmlVMware NSX-T Data Center Intrusion Detection and Prevention documentation https://docs.vmware.com/en/VMware-NSX-T-Data-Center/3.1/com.vmware.nsxt.ids.doc/GUID- C4ED1F4D-4E4B-4A9C-9F5C-7AC081A5C5D5.html
Share your comments for VMware 5V0-41.21 exam with other users:
i need questions/dumps for this exam.
i need this exam, when will it be uploaded
i need the dumps !
very helpful
good source
my 3rd test and passed on first try. hats off to this brain dumps site.
please upload it
does anybody know if are these real exam questions?
are these questions similar to actual questions in the exam? because they seem to be too easy
i have a lot of experience but what comes in the exam is totally different from the practical day to day tasks. so i thought i would rather rely on these brain dumps rather failing the exam.
good questions
valied exam dumps. they were very helpful and i got a pretty good score. i am very grateful for this service and exam questions
will it help?
very useful to verify knowledge before exam
good stuffs
question 17 : responses arent b and c ?
just passed the exam on my first try using these dumps.
these questions look good.
this is very helpful content
please provide the dumps
it is amazing
quesion 178 about "a banking system that predicts whether a loan will be repaid is an example of the" the answer is classification. not regresion, you should fix it.
please upload apache spark dumps
q14 is b&c to reduce you will switch off mail for every single alert and you will switch on daily digest to get a mail once per day, you might even skip the empty digest mail but i see this as a part of the daily digest adjustment
i think it is good question
good for students who wish to give certification.
is there a google drive link to the images? the links in questions are not working.
very promising, looks great, so much wow!
i scored 87% on the az-204 exam. thanks! i always trust
good need more
sample questions seems good
huawei is ok
good one nice