Is this exam completely free?

ExamCademy offers a free preview for every exam, covering around 20% of the total questions. Full access to all questions is available for free by signing up for an account. Optional supporters unlock AstroTutor (AI tutor) and advanced study modes.

Can I practice IT certification exams from Microsoft, AWS, or CompTIA?

Yes! ExamCademy supports a wide range of IT certification exams including Microsoft Azure, AWS Cloud Practitioner, and CompTIA A+ and Security+.

How accurate are the mock exams?

Our practice questions are community-created and moderator-reviewed to align with realistic exam objectives, style, and difficulty.

2V0-41-23 by VMware - Page 1 | ExamCademy

Mode Selection

Sort:

Question 1

Question 2

Question 3

Question 4

Question 5

Question 6

Question 7

Question 8

Question 9

Question 10

Question 11

Question 12

Question 13

Question 14

Question 15

Question 16

Question 17

Question 18

Question 19

Question 20

Question 21

Question 22

That's the end of the Preview

Create a free account to unlock all questions for this exam.

Log In / Sign Up

Page 1 of 5 • Questions 1-25 of 106

1 2 3 4 5

→

Know a question that should be here? Contribute to this exam

Which three security features are dependent on the NSX Application Platform? (Choose three.)

A NSX Intelligence
B NSX Firewall
C NSX Network Detection and Response
D NSX TLS Inspection
E NSX Distributed IDS/IPS
F NSX Malware Prevention

Which two of the following will be used for ingress traffic on the Edge node supporting a Single Tier topology? (Choose two.)

A Inter-Tier interface on the Tier-0 gateway
B Tier-0 Uplink interface
C Downlink Interface for the Tier-0 DR
D Tier-1 SR Router Port
E Downlink Interface for the Tier-1 DR

Which of the following exist only on Tier-1 Gateway firewall configurations and not on Tier-0?

A Applied To
B Actions
C Sources
D Profiles

What is the VMware recommended way to deploy a virtual NSX Edge Node?

A Through the NSX UI
B Through automated or interactive mode using an ISO
C Through the vSphere Web Client
D Through the OVF command line tool

When collecting support bundles through NSX Manager, which files should be excluded for potentially containing sensitive information?

A Audit Files
B Core Files
C Management Files
D Controller Files

Which command is used to test management connectivity from a transport node to NSX Manager?

A esxcli network ip connection list | grep 1234
B esxcli network connection list | grep 1235
C esxcli network ip connection list | grep 1235
D esxcli network connection list | grep 1234

An administrator needs to download the support bundle for NSX Manager.
Where does the administrator download the log bundle from?

A System > Utilities > Tools
B System > Settings > Support Bundle
C System > Support Bundle
D System > Settings

HOTSPOT -
Refer to the exhibit.
Which two items must be configured to enable OSPF for the Tier-0 Gateway in the image? Mark your answers by clicking twice on the image.

Question Image

An administrator has deployed 10 Edge Transport Nodes in their NSX Environment, but has forgotten to specify an NTP server during the deployment.
What is the efficient way to add an NTP server to all 10 Edge Transport Nodes?

A Use a Node Profile
B Use the CLI on each Edge Node
C Use Transport Node Profile
D Use a PowerCLI script

Which two BGP configuration parameters can be configured in the VRF Lite gateways? (Choose two.)

A Route Aggregation
B Route Distribution
C Graceful Restart
D BGP Neighbors
E Local AS

Which two are requirements for FQDN Analysis? (Choose two.)

A The NSX Edge nodes require access to the Internet to download category and reputation definitions.
B ESXi control panel requires access to the Internet to download category and reputation definitions.
C The NSX Manager requires access to the Internet to download category and reputation definitions.
D A layer 7 gateway firewall rule must be configured on the Tier-1 gateway uplink.
E A layer 7 gateway firewall rule must be configured on the Tier-0 gateway uplink.

Which three data collection sources are used by NSX Network Detection and Response to create correlations/intrusion campaigns? (Choose three.)

A Distributed Firewall flow data from the ESXi hosts
B East-West anti-malware events from the ESXi hosts
C Files and anti-malware file events from the NSX Edge nodes and the Security Analyzer
D IDS/IPS events from the ESXi hosts and NSX Edge nodes
E Suspicious Traffic Detection events from NSX Intelligence

What needs to be configured on a Tier-0 Gateway to make NSX Edge Services available to a VM on a VLAN-backed logical switch?

A Loopback Router Port
B VLAN Uplink
C Service interface
D Downlink interface

Which two statements are true about IDS Signatures? (Choose two.)

A Users can upload their own IDS signature definitions.
B An IDS signature contains data used to identify the creator of known exploits and vulnerabilities.
C IDS signatures can be High Risk, Suspicious, Low Risk and Trustworthy.
D An IDS signature contains data used to identify known exploits and vulnerabilities.
E An JDS signature contains a set of instructions that determine which traffic is analyzed.

Which of the two following characteristics about NAT64 are true? (Choose two.)

A NAT64 is stateless and requires gateways to be deployed in active-standby mode.
B NAT64 is supported on Tier-1 gateways only.
C NAT64 is supported on Tier-0 and Tier-1 gateways.
D NAT64 requires the Tier-1 gateway to be configured in active-standby mode.
E NAT64 requires the Tier-1 gateway to be configured in active-active mode.

Which command is used to set the NSX Manager's logging-level to debug mode for troubleshooting?

A set service manager logging-level debug
B set service nsx-manager logging-level debug
C set service nsx-manager log-level debug
D set service manager log-level debug

Which two logical router components span across all transport nodes? (Choose two.)

A DISTRIBUTED_ROUTER_TIER1
B TIER0_DISTRIBUTED_ROUTER
C SERVICE_ROUTER_TIER0
D DISTRIBUTED_ROUTER_TIER0
E SERVICE_ROUTER_TIER1

Which two choices are solutions offered by the VMware NSX portfolio? (Choose two.)

A VMware Aria Automation
B VMware NSX Distributed IDS/IPS
C VMware NSX Advanced Load Balancer
D VMware Tanzu Kubernetes Grid
E VMware Tanzu Kubernetes Cluster

An administrator has been tasked with implementing the SSL certificates for the NSX Manager Cluster VIP.
Which is the correct way to implement this change?

A Send an API call to https://<nsx-mgr>/api/v1/cluster/api-certificate? action=set_cluster_certificate&certificate_id=<certificate_id>
B Send an API call to https://<nsx-mgr>/api/v1/node/services/http? action=apply_certificate&certificate_id=<certificate_id>
C SSH as admin into the NSX manager with the cluster VIP IP and run nsxcli cluster certificate vip install <certificate_id>
D SSH as admin into the NSX manager with the cluster VIP IP and run nsxcli cluster certificate node install <certificate_id>

Which CLI command shows syslog on NSX Manager?

A show log manager follow
B get log-file syslog
C /var/log/syslog/syslog.log
D get log-file auth.log

Which VPN type must be configured before enabling a L2VPN?

A SSL-based IPSec VPN
B Route-based IPSec VPN
C Port-based IPSec VPN
D Policy-based IPSec VPN

A company security policy requires all users to log into applications using a centralized authentication system.
Which two authentication, authorization, and accounting (AAA) systems are available when integrating NSX with VMware Identity Manager? (Choose two.)

A LDAP and OpenLDAP based on Active Directory (AD)
B RSA SecureID
C Keygen Enterprise
D SecureDAP
E RADII 2.0