3V0-42.20 Online Practice Questions and Answers

An architect is helping an organization with the Physical Design of an NSX-T Data Center solution.

This information was gathered during a workshop:

Some workloads should be moved to a Cloud Provider.

Extend network's VLAN or VNI across sites on the same broadcast domain.

Enable VM mobility use cases such as migration and disaster recovery without IP address changes.

Support 1500 byte MTU between sites.

Which selection should the architect include in their design? (Choose the best answer.)

A. Load Balancer

B. Reflexive NAT

C. SSL VPN

D. L2 VPN

An architect is helping an organization with the Physical Design of an NSX-T Data Center solution. This information was gathered during a workshop:

Some workloads should be moved to a Cloud Provider.

Extend network's VLAN or VNI across sites on the same broadcast domain.

Enable VM mobility use cases such as migration and disaster recovery without IP address changes.

Support 1500 byte MTU between sites.

Which selection should the architect include in their design? (Choose the best answer.)

A. Create a vSphere Distributed Switch (vDS) for Management VMkernel traffic and assign one NIC. Also, create an NSX-T Virtual Distributed Switch (N-VDS) for overlay traffic and assign one NIC.

B. Create an NSX-T Virtual Distributed Switch (N-VDS) for Management VMkernel traffic and assign one NIC. Also, create an NSX-T Virtual Distributed Switch (N-VDS) for overlay traffic and assign one NIC.

C. Create an NSX-T Virtual Distributed Switch (N-VDS) for Management VMKernel and overlay traffic and assign both NICs.

D. Create an NSX-T Virtual Distributed Switch (N-VDS) for Management VMkernel and overlay traffic and assign a new virtual NIC.

An architect is helping an organization with the Logical Design of an NSX-T Data Center solution.

This information was gathered during the Assessment Phase:

There is a performance based SLA for East – West traffic.

The business critical applications require prioritization of their traffic.

One of the services is a file share and has a high demand for bandwidth.

Which selection should the architect include in their design? (Choose the best answer.)

A. Review average North/South traffic from the core switches and firewall.

B. Include a segment QoS profile and review the impact of utilizing this feature.

C. Meet with the organization's application team to get additional information.

D. Monitor East-West traffic throughout normal business cycles.

Which selection is associated with the Review Task of the Engagement Lifecycle? (Choose the best answer.)

A. Gather and document requirements, assumptions, and constraints.

B. Build, deploy, implement, and test the design.

C. Measure performance against customer's objective.

D. Create and document the logical and physical design.

An architect is helping an organization with the Logical Design of an NSX-T Data Center solution. This information was gathered during the Assessment Phase:

NSX-T will span across two sites for disaster recovery.

Public Load Balancer VIP should be accessible from a secondary site.

Distributed Firewall Policies should be available at a secondary site.

Routing capabilities should be maintained after failure.

NAT capabilities are required.

Which two selections should the architect include in their design? (Choose two.)

A. Use of the same ISPs across sites.

B. Use two separate ISPs across sites.

C. Use MTU to 1550 between sites.

D. Set MTU to 1550 between sites.

E. Use IP sets or groups to configure DFW rules.

An architect is helping an organization with the Conceptual Design of an NSX-T Data Center solution.

Which risk is documented by an architect? (Choose the best answer.)

A. The security team has a firewall communication matrix documented.

B. The team is not trained for NSX-T but have a very strong experience with vSphere.

C. Open communication between different application tiers is not allowed.

D. Aggregate N-S throughput at any given time should be at least 10G.

An architect is helping an organization with the Logical Design of an NSX-T Data Center solution.

This information was gathered during the Assessment Phase:

Data between two networks connected over a public network needs to be encrypted.

Certificate authentication is required.

Dynamic route learning is preferred.

Which selection should the architect include in their design? (Choose the best answer.)

A. Deploy a Tier-0 gateway in Active/Standby mode. Configure policy-based IPSec VPN with SHA512 with RSA as the hash algorithm.

B. Deploy a Tier-0 gateway in Active/Active mode. Configure route-based IPSec VPN with SHA512 with RSA as the hash algorithm.

C. Deploy a Tier-0 gateway in Active/Standby mode. Configure route-based IPSec VPN with SHA512 with RSA as the hash algorithm.

D. Deploy a Tier-0 gateway in Active/Active mode. Configure policy-based IPSec VPN with SHA512 with RSA as the hash algorithm.

An architect is helping an organization with the Logical Design of a Layer 2 bridging solution.

This information was gathered during the Assessment Phase:

Workloads are running on ESXi hosts.

Workloads are running on KVM hosts.

Workloads on hypervisors should use bridging services.

VLAN 50 is used for Tier-0 uplink connectivity.

Which selection should the architect include in their design? (Choose the best answer.)

A. Create an NSX Edge Bridge Cluster and configure the bridging profile with VLAN 60.

B. Create an NSX Edge Bridge Cluster and configure the bridging profile with VLAN 50.

C. Create an ESXi Bridge Cluster and configure the bridging profile with VLAN 50.

D. Create an ESXi Bridge Cluster and configure the bridging profile with VLAN 60.

A customer has a requirement to implement a next generation firewall (NGFW) to improve security network introspection. The customer wants to apply the NGFW to all workloads exposed both internally and externally. The customer wants the NGFW to work seamlessly with NSX-T Data Center and vSphere.

Which solution should be recommended to the customer? (Choose the best answer.)

A. Use network introspection only on the external workloads and use NSX DFW for internal workloads.

B. Apply the NGFW on bare metal hosts which will offer better performance of inline network introspection.

C. Apply the NGFW to internal and external workloads for increased protection and use NSX-T Data Center with Federation to set network policies.

D. Use NSX-T Data Center leveraged with NSX Intelligence to protect all workloads at the network inspection level.

Which three choices are part of a Design Approach when discussing design alternatives and their effects? (Choose three.)

A. backup

B. budget

C. cost

D. performance

E. knowledge

F. security

Which two VMware recommendations should an architect follow when configuring top of rack (ToR) switches in an NSX-T Data Center environment? (Choose two.)

A. Use only IPv4 addressing in all deployments.

B. Configure redundant physical switches to enhance availability.

C. Configure switch ports that connect to ESXi host manually as trunk ports.

D. Configure switch ports with a Dynamic Trunking Protocol.

E. Modify the Spanning Tree Protocol to increase the time to transition to the forwarding state.

An NSX-T architect is working with a customer who wants to improve performance and future-proof their

workloads with a multi-site architecture.

A current-state analysis captured this information:

Latency between sites is 160ms.

Bandwidth is 2Gbps.

The MTU is 1600.

What two VMware design recommendations should the architect recommend to the organization to

achieve future-proofing? (Choose two.)

A. MTU is recommended to be 9000.

B. MTU must be at least 1700.

C. Bandwidth must be at least 10Gbps.

D. Latency RTT is acceptable.

E. Latency must be less than 150ms.

An architect is helping an organization with the Logical Design of an NSX-T Data Center solution.

Which two statements should the architect consider as non-technical requirements? (Choose two.)

A. Any solution should add more value to current and future customers engagements.

B. The design should offer agility and freedom for application phases.

C. All application servers have hardcoded IP addresses.

D. Current business continuity and disaster recovery plans are based on tape technology.

E. Different vendors are used for the storage solution.

Which selection must be taken into consideration when creating a Logical Design for a planned migration? (Choose the best answer.)

A. An N-VDS can only attach to a single Overlay transport zone.

B. An N-VDS can only attach to a single VLAN transport zone.

C. An N-VDS can attach to both an Overlay and a VLAN transport zone to a N-VDS having different name/s.

D. An N-VDS must be disabled before attaching both Overlay and VLAN transport zones.

An architect is helping an organization with the Logical Design of an NSX-T Data Center solution.

This information was gathered during the Assessment Phase:

Customer is concerned with NSX Manager availability.

3 cabinets/racks are available in the data center.

No integration with 3rd party solution is required.

There is no budget for physical equipment acquisition.

The 3 cabinets/racks do not share the same L2 domain.

Which three selections should the architect include in their design to address the customer's concern with

NSX Manager availability? (Choose three.)

A. Deploy 2 cold standby NSX Manager appliances in rack 2/3.

B. Use separate IP per NSX Manager appliance per rack.

C. Use another NSX Manager IP in case an appliance fails.

D. Deploy a single active NSX Manager appliance in rack 1.

E. Deploy an NSX Manager Appliance per rack and cluster them.

F. Use a physical/internal load-balancer with the cluster.