Free VMware 5V0-41.21 Practice Test & Real Exam Questions

Exam Code/Number: 5V0-41.21
Exam Name/Title: VMware NSX-T Data Center 3.1 Security
Certification Provider: VMware
Corresponding Certification: VMware NSX-T Data Center Security Skills 2023

Exam Questions: 72
Updated On: Jun 03, 2026

Question #1

Which are two use-cases for the NSX Distributed Firewall' (Choose two.)

A. Zero-Trust with segmentation

B. Lateral Movement of Attacks prevention

C. Network Visualization

D. Security Analytics

E. Software defined networking

Discussion 0

Correct Answer: A,B Vote an answer

Explanation: Only visible for Pass4Leader members. You can sign-up / login (it's free).

Question #2

Which is an insertion point for East-West service insertion?

A. Partner SVM

B. transport node

C. tier-1 gateway

D. Guest VM vNlC

Discussion 0

Correct Answer: D Vote an answer

Explanation: Only visible for Pass4Leader members. You can sign-up / login (it's free).

Question #3

A security administrator is verifying why users are blocked from sports sites but are able to access gambling websites from the corporate network. What needs to be updated In nsx-T to block the gambling websites?

A. URL Analysis Attributes

B. vSphere Firewall Policy

C. Endpoint Protection Rules

D. Network Introspection Policy

Discussion 0

Correct Answer: A Vote an answer

Explanation: Only visible for Pass4Leader members. You can sign-up / login (it's free).

Question #4

An administrator wants to configure NSX-T Security Groups inside a distributed firewall rule. Which menu item would the administrator select to configure the Security Groups?

A. Inventory

B. Networking

C. System

D. Security

Discussion 0

Correct Answer: D Vote an answer

Explanation: Only visible for Pass4Leader members. You can sign-up / login (it's free).

Question #5

There has been a confirmed case of virus infection on multiple VMs managed by Endpoint Protection. A security administrator wants to create a group to quarantine infected VMs in the future.
What criteria will be used to build this group?

A. vSphere Tags

B. VM Name

C. NSX Tags

D. Segment

Discussion 0

Correct Answer: A Vote an answer

Explanation: Only visible for Pass4Leader members. You can sign-up / login (it's free).

Question #6

Which dot color indicates an on-going attack of medium severity in the IDS/IPS events tab of NSX-T Data Center?

A. blinking orange dot

B. solid red dot

C. blinking yellow dot

D. solid orange dot

Discussion 0

Correct Answer: D Vote an answer

Explanation: Only visible for Pass4Leader members. You can sign-up / login (it's free).

Question #7

Reference the CLI output.

What is the source IP address in the distributed firewall rule to accept HTTP traffic?

A. 172.16.30.11

B. 172.16.20.11

C. 172.16.10.11

D. 172.16.10.12

Discussion 0

Correct Answer: C Vote an answer

Question #8

A Security Administrator needs to update their NSX Distributed IDS/IPS policy to detect new attacks with critical CVSS scoring that leads to credential theft from targeted systems.
Which actions should you take?

A. * Edit your Distributed IDS rule from Security > Distributed IDS/IPS > Rules
* Filter on attack type and select Successful Credential Theft Detected
* Update Mode to detect and prevent
* Click on gear icon and change direction to IN-OUT

B. * Edit your Distributed IDS rule from Security > Distributed IDS/IPS > Rules
* Filter on attack type and select Successful Credential Theft Detected
* Update Mode to detect and prevent
* Click on gear icon and change direction to OUT

C. * Create a new profile from Security > Distributed IDS > Profiles
* Select Critical severity, filter on attack type and select Successful Credential Theft Detected
* Check the profile is applied In Distributed IDS rules
* Monitor Distributed IDS alerts to validate changes are applied

D. * Update Distributed IDS/IPS signature database
* Edit your profile from Security > Distributed IDS > Profiles
* Select Critical severity, filter on attack type and select Successful Credential Theft Detected
* Check the profile is applied in Distributed IDS rules

Discussion 0

Correct Answer: D Vote an answer

Explanation: Only visible for Pass4Leader members. You can sign-up / login (it's free).

Download Free VMware 5V0-41.21 Demo

Simply submit your e-mail address below to get started with our free demo of your VMware 5V0-41.21 exam.