The latest VMware Certified Professional 6 – Network Virtualization NSX v6.2 (2V0-642) for VCP6-NV 2020 certification actual real practice exam question and answer (Q&A) dumps are available free, which are helpful for you to pass the VMware Certified Professional 6 – Network Virtualization NSX v6.2 (2V0-642) for VCP6-NV 2020 exam and earn VMware VCP6-NV 2020 certification.
Exam Question 1
Which virtual machine does VMware recommend be manually excluded from the Distributed Firewall?
A. NSX Manager
B. Microsoft SQL Server
C. vRealize Automation Appliance
D. vCenter Server
Correct Answer:
D. vCenter Server
Exam Question 2
What are two things that should be done before upgrading from vCloud Networking and Security to NSX? (Choose two.)
A. Power off vShield Manager
B. Deploy NSX Manager virtual appliance
C. Uninstall vShield Data Security
D. Ensure that forward and reverse DNS is functional
Correct Answer:
C. Uninstall vShield Data Security
D. Ensure that forward and reverse DNS is functional
Exam Question 3
Which three methods can be used by the NSX Distributed Firewall to discover IP addresses? (Choose three.)
A. DHCP Snooping
B. IP Sets
C. Spoofguard configured for Trust on First Use.
D. VMware Tools installed on every guest virtual machine.
E. ARP Snooping
Correct Answer:
A. DHCP Snooping
D. VMware Tools installed on every guest virtual machine.
E. ARP Snooping
Exam Question 4
Which two network services are abstracted from the underlying hardware by NSX? (Choose two.)
A. Virtual Private Networks.
B. Multiprotocol Label Switching.
C. Load Balancing.
D. Overlay Transport Virtualizations.
Correct Answer:
A. Virtual Private Networks.
C. Load Balancing.
Exam Question 5
When specifying a source for a security rule, what is the purpose of the Negate Source check box?
A. If Negate Source is selected, the rule is sent to only the objects identified under object type.
B. If Negate Source is selected, the rule is applied to traffic coming from all sources except for the source identified under the object type.
C. If Negate Source is not selected, the rule is applied to traffic coming from all sources except for the source identified under the object type.
D. if Negate Source is not selected, the rule is sent to only the objects identified under the object type.
Correct Answer:
B. If Negate Source is selected, the rule is applied to traffic coming from all sources except for the source identified under the object type.
Exam Question 6
You have deployed an Edge Services Gateway with the following interface configuration:
Your customer has requested that you provide the ability to use Remote Desktop Protocol to log into a virtual machine that has a tenant IP address of 192.168.7.21 using the provider IP address 192.168.100.4.
You have performed the following configuration however, you cannot RDP into the virtual machine.
What configuration change do you need to make to allow this connection?
A. Change Applied On to “Uplink”.
B. Change the Protocol to “any”.
C. Change the Translated Port/Range to “rdp”.
D. Swap the Original IP/Range and Translated IP/Range IP Addresses.
Correct Answer:
A. Change Applied On to “Uplink”.
Exam Question 7
Which two are accurate statements with regards to Guest Introspection installation? (Choose two.)
A. The service virtual machine performs data security and activity monitoring.
B. The installation deploys a virtual machine to hosts prepared for VMware NSX.
C. A security policy weight of 4300 is assigned to hosts prepared to Guest Introspection.
D. Guest Introspection is deployed with NSX Data Security by default.
Correct Answer:
A. The service virtual machine performs data security and activity monitoring.
B. The installation deploys a virtual machine to hosts prepared for VMware NSX.
Exam Question 8
Which three objects are supported for universal synchronization in a Cross-vCenter NSX deployment? (Choose three.)
A. IP Pools
B. IP Sets
C. L2 bridges
D. MAC Sets
E. Transport Zones
Correct Answer:
B. IP Sets
D. MAC Sets
E. Transport Zones
Exam Question 9
An organization has a PCI compliant application deployed as part of a larger NSX environment. Every year a team of contractors evaluates the security of the environment and recommends changes.
What NSX Role and Scope should the contractors be given to minimize access but still allow them to fulfill the stated requirement?
A. NSX Administrator, Limit access scope
B. Enterprise Administrator, Limit access scope
C. Auditor, Limit access scope
D. Security Administrator, No restrictions
Correct Answer:
C. Auditor, Limit access scope
Exam Question 10
What is the effect on NSX Edge virtual machines when NSX Edge high availability is configured but vSphere HA is NOT configured?
A. The active-standby NSX Edge pair will survive one failure. However, the virtual machines must reside on the same host to prevent NSX Edge availability from being compromised.
B. The active-standby NSX Edge HA pair will survive multiple failures.
C. The active-standby NSX Edge HA pair will survive one failure. However, if another failure happens before the second Edge appliance is restored, NSX Edge availability can be compromised.
D. The active-standby NSX Edge HA pair will survive two failures. However, the virtual machines must reside on two different hosts.
Correct Answer:
C. The active-standby NSX Edge HA pair will survive one failure. However, if another failure happens before the second Edge appliance is restored, NSX Edge availability can be compromised.