An NSX administrator is reviewing syslog and notices that Distributed Firewall Rules hit counts are not being logged.
What could cause this issue?
If Distributed Firewall Rule hit counts are not being logged, it is likely because Distributed Firewall Rule logging is not enabled. For hit counts to appear in the logs, logging must be explicitly enabled on each firewall rule where tracking is required. Without enabling logging at the rule level, no hit count information will be recorded in syslog.
An administrator needs to download the support bundle for NSX Manager.
Where does the administrator download the log bundle from?
To download the support bundle for NSX Manager, an administrator navigates to System > Support Bundle in the NSX Manager UI. This section provides options to generate and download the log bundle, which contains diagnostic information useful for troubleshooting and support.
An NSX administrator would like to create an L2 segment with the following requirements:
* L2 domain should not exist on the physical switches.
* East/West communication must be maximized as much as possible.
Which type of segment must the administrator choose?
An overlay segment is a layer 2 broadcast domain that is implemented as a logical construct in the NSX-T Data Center software. Overlay segments do not require any configuration on the physical switches, and they allow for optimal east/west communication between workloads on different ESXi hosts. Overlay segments use the Geneve protocol to encapsulate and decapsulate traffic between the hosts. Overlay segments are created and managed by the NSX Manager.
As part of an organization's IT security compliance requirement, NSX Manager must be configured for 2FA (two-factor authentication).
What should an NSX administrator have ready before the integration can be configured?
To enable two-factor authentication (2FA) for NSX Manager, VMware Identity Manager must be configured and integrated with NSX. The NSX Manager should be added as a web application in VMware Identity Manager, which will allow 2FA to be applied during the authentication process. VMware Identity Manager supports 2FA methods, including integration with external identity providers, and it can manage access to NSX with additional security layers.
Which two are supported by L2 VPN clients? (Choose two.)
The NSX Edge supports L2 VPN (Layer 2 VPN) functionality, which allows it to connect different Layer 2 networks over an IP transport.
Third-party hardware VPN devices can also be used as L2 VPN clients, providing connectivity between different Layer 2 networks through an external device.
