Examice

Exam 1Y0-403 All QuestionsBrowse all questions from this exam

Question 54

Scenario: A Citrix Architect is designing a new Citrix Virtual Apps and Desktops environment. The environment will run on 2 Citrix Hypervisor platforms, each consisting of 3 NICs. The company maintains strict security standards for all business data traffic, so the architect is designing and configuring hypervisor network traffic to limit infrastructure vulnerabilities.

How should the architect configure the hypervisor network traffic to provide the best security for the environment?

Use 1 physical NIC on the host for management, and a second NIC shared for storage and virtual machines (VMs). Create 2 subnets ג€" 1 for management and the other for storage and VMs. Confirm that the storage and VMs use a NIC on the same network as the host NIC, and sort traffic between the host and storage/VM with a switch port.

Use each physical NIC on the hosts ג€" 1 for management, 1 for storage, and 1 for the virtual machines (VMs). Create 2 subnets ג€" 1 for management and the other for storage. Confirm that the VMs use a NIC for guest traffic on a separate network, and connect all networks to separate network switches.

Use each physical NIC on the hosts ג€" 1 for management, 1 for storage, and 1 for the virtual machines (VMs). Keep all traffic on a single subnet. Confirm that the VMs use a NIC for guest traffic on the same network as the host NIC, and sort the traffic between the host and VMs with switch port.

Use 1 physical NIC on the host for management, and a second NIC shared for storage and virtual machines (VMs). Keep all traffic on a single subnet. Confirm that the storage and VMs use a NIC on the same network as the host NIC, and sort the traffic between the host and storage/VM with a switch port.

Correct Answer: B

To provide the best security for the environment, the architect should use each physical NIC on the hosts for separate purposes: one for management, one for storage, and one for the virtual machines (VMs). Additionally, creating separate subnets for management and storage, and ensuring that the VMs use a NIC for guest traffic on a separate network, will help to isolate different types of traffic. Connecting all networks to separate network switches further ensures that data traffic is securely segmented, which limits infrastructure vulnerabilities and adheres to strict security standards.

Discussion

d0bermannnOption: B

B. Use each physical NIC on the hosts ג€" 1 for management, 1 for storage, and 1 for the virtual machines (VMs). Create 2 subnets ג€" 1 for management and the other for storage. Confirm that the VMs use a NIC for guest traffic on a separate network, and connect all networks to separate network switches.

certhunterfembotOption: B

B- Security question. Keep everything as isolated as possible. All other options have something merged together, so they won't work in this question.

maurizio_n91Option: B

B is right