Free VMware (5V0-43.21) Certification Sample Questions with Online Practice Test [Q10-Q29]

Share

Free VMware (5V0-43.21) Certification Sample Questions with Online Practice Test

5V0-43.21  Certification Study Guide Pass 5V0-43.21 Fast


VMware 5V0-43.21 certification exam certifies the candidate's ability to configure, manage, and troubleshoot NSX distributed routers and load balancers, which include a basic understanding of and ability to troubleshoot NSX Distributed Firewall. VMware NSX Advanced Load Balancer for Operators Skills certification exam is designed for Operators, administrators, and engineers who have a basic understanding of VMware NSX-T Data Center and desire for advanced knowledge of service insertion, load balancing, high availability, and security in their NSX-T Data Center environment. Professionals who obtain this certification will have a comprehensive knowledge of NSX-T components and their use cases, service insertion, and security, and how to optimize network performance.

 

NEW QUESTION # 10
Which setting should be configured to prevent source NAT of the client IP in the back-end connection?

  • A. Proxy Protocol in the L4 Application Profile
  • B. X-Forwarded-For HTTP Header in the HTTP Application Profile
  • C. Preserve Client IP in the Application Profile
  • D. Connection Multiplexing in the Application Profile

Answer: C


NEW QUESTION # 11
An administrator wants to increase the number of active Service Engines utilized by a Virtual Service for more performance.
Which action, if any, should be taken to meet this goal?

  • A. Use the Scale Out button in the Virtual Service popup.
  • B. No action is necessary since the data plane is scaled automatically.
  • C. Use the Scale Out button in the Service Engine Group configuration.
  • D. Use the Migrate button in the Virtual Service popup.

Answer: A


NEW QUESTION # 12
An operator in investigating a problem that requires checking the HTTP cookies supplied by the client.
When the logs are viewed, the operator finds that the cookies are not being shown.
Which configuration option should be enabled to fix this problem?

  • A. Non-significant logs
  • B. DataScript logs
  • C. Log all headers
  • D. Real-time metrics

Answer: A


NEW QUESTION # 13
An administrator has attached a WAF Policy to their Virtual Service and starts getting reports from users that they are receiving a "403 Forbidden" error when trying to reach their application.
Which configuration would likely cause this issue?

  • A. The WAF Policy has learning mode disabled.
  • B. The WAF Policy signatures are disabled.
  • C. The WAF Policy is in detection mode.
  • D. The WAF Policy is in enforcement mode.

Answer: A


NEW QUESTION # 14
Which scripting language is used to build a DataScript?

  • A. o Python
  • B. Tcl
  • C. Lua
  • D. Node.js

Answer: C


NEW QUESTION # 15
An operator has been asked to increase SSL offload performance for a Virtual Service without compromising security.
The Virtual Service is currently configured with both RSA and EC certificates.
Which action could the operator take to meet this requirement?

  • A. In the SSL/TLS Profile, uncheck "Enable SSL Session Reuse"
  • B. In the Virtual Service edit page, arrange the order so the EC certificate is before RSA
  • C. In the Virtual Service, scale out to an additional Service Engine
  • D. In the SSL/TLS Profile, disable all ciphers that have a check mark in the PFS column

Answer: C


NEW QUESTION # 16
An operator is troubleshooting reported performance problems for an HTTP Virtual Service and notices that the Server RTT in the End-to-End timing graph has recently increased significantly while Client RTT and App Response times have remained unchanged.
What can the operator deduce is the most likely explanation for the reported performance problems?

  • A. One or more pool servers are experiencing very high CPU utilization.
  • B. A networking issue has developed between the Service Engine and one or more pool servers.
  • C. A database server used by the application is experiencing a performance issue.
  • D. The Service Engine where the Virtual Service is placed has become overloaded.

Answer: A


NEW QUESTION # 17
Which task is performed by the Controller?

  • A. Resolving client DNS queries for GSLB
  • B. Terminating SSL/TLS
  • C. Renewing SSL/TLS Certificates
  • D. Removing HTTP Headers from the data stream

Answer: A


NEW QUESTION # 18
What is the default Minimum Scale per Virtual Service value in Active-Active HA, if one exists?

  • A. 0
  • B. 1
  • C. A default value does not exist.
  • D. 2

Answer: D


NEW QUESTION # 19
An administrator is tasked to enable a WAF Policy that was created by a fellow administrator in NSX Advanced Load Balancer.
How should this task be completed?

  • A. Associate the policy to the Pool
  • B. Configure the policy in the Application Profile
  • C. Attach the policy to the Service Engine
  • D. Enable the policy by associating it with a Virtual Service

Answer: D


NEW QUESTION # 20
Which WAF inspection method is the most computationally expensive?

  • A. Allow List
  • B. Signature
  • C. Positive Security
  • D. Mode Delegation

Answer: C


NEW QUESTION # 21
Which configuration option requires enabling Switch to Advanced in the Service Port section of the Virtual Service Advanced Setup wizard?

  • A. Disable port translation
  • B. Enable SSL termination
  • C. Enable multiple service ports
  • D. Enable service port ranges

Answer: D


NEW QUESTION # 22
In which situation would using the Advanced Setup mode of the "Create Virtual Service" wizard be required?

  • A. When adding servers as part of the Virtual Service creation
  • B. When specifying analytics settings
  • C. When determining the application type
  • D. When creating HTTPS Virtual Service type

Answer: A


NEW QUESTION # 23
The operator observes that the Health Score for a particular Virtual Service has a gray background and no numeric value.
What is the explanation for the state of this Health Score?

  • A. The Virtual Service has been disabled.
  • B. The Service Engines on which the Virtual Service is placed have lost connection to the Controller.
  • C. All of the servers in the Virtual Service's configured Pools are down.
  • D. All Service Engines in the Service Engine Group are at maximum capacity, preventing the Virtual Service from being placed.

Answer: C


NEW QUESTION # 24
An operator observes that the health score for a Virtual Service has reduced. When hovering over the health score popup, the operator sees a Security Penalty of -20 has been applied.
Which issue should be investigated as the most likely cause of this reduced score?

  • A. The CPU utilization of the Service Engine on which the Virtual Service is placed is exceeding 80%.
  • B. The WAF Policy has not been configured with Positive Security rules.
  • C. The Pool has been configured with an HTTP health monitor rather than an HTTPS health monitor.
  • D. The SSL certificate attached to the Virtual Service will expire within the next 30 days.

Answer: D


NEW QUESTION # 25
An operator selects "Average Values" and "Past 30 Minutes" for statistics type and timeframe on the Analytics tab of a Virtual Service and notices the graph only provides a new data point every five minutes. The graph had been updating more frequently when the Virtual Service was first created.
What is the explanation for this behavior?

  • A. The GUI Refresh Interval has been increased to five minutes.
  • B. The timeframe should be set to "Real Time" rather than "Past 30 Minutes."
  • C. The Real Time Metrics option has been disabled by another operator.
  • D. The statistics type should be set to "Current Values" rather than "Average Values."

Answer: B


NEW QUESTION # 26
An operator has created a Virtual Service with pass-through SSL using the System-L4-Application profile to load balance a secure HTTP application. The web servers only accept connections via TLS on port 443. The operator configures the Pool with default port 443 and an HTTP Health Monitor.
With this configuration, all pool members are marked as down. However, the application owner has confirmed that the web servers are operational.
Which configuration change should the operator make to correct this error?

  • A. Configure a Health Monitor of Type: HTTPS instead of Type: HTTP.
  • B. Configure "Enable SSL" in the Pool configuration.
  • C. Change the Application Profile in the Virtual Service to System-Secure-HTTP.
  • D. Configure "Enable SSL" in the HTTP Health Monitor.

Answer: A


NEW QUESTION # 27
An operator has been asked to provide a list of SSL/TLS ciphers used for the last 100 requests of a Virtual Service. The operator can't find this information in the GUI.
Which action, if any, retrieves this information?

  • A. The operator will need to enable Log all Headers in the VS configuration.
  • B. The operator can't retrieve this through the GUI since Avi does not record the ciphers for compliance reasons.
  • C. The operator will need to export the logs in a CSV file to retrieve the list of ciphers.
  • D. The operator will need to use the API since this list can only be retrieved through API.

Answer: B


NEW QUESTION # 28
An administrator needs to determine the rate of 5xx errors being returned by the Pool servers.
Which metrics graph in the Virtual Service Analytics tab can be used to complete this task?

  • A. Client Insights
  • B. End to End Timing
  • C. Requests
  • D. Conns

Answer: A


NEW QUESTION # 29
......

Get Perfect Results with Premium 5V0-43.21 Dumps Updated 88 Questions: https://www.testkingpdf.com/5V0-43.21-testking-pdf-torrent.html

5V0-43.21 Dumps PDF 2025 Program Your Preparation EXAM SUCCESS: https://drive.google.com/open?id=17FLV1v7ypPDI50Nfi0IFgT1kCEF4M87v