How does Panorama prompt VMWare NSX to quarantine an infected VM?
How does Panorama prompt VMWare NSX to quarantine an infected VM?
Panorama uses predefined payload formats in the HTTP Server Profile to communicate with NSX-V Manager. When a virtual machine (VM) is found to be infected, Panorama makes an API call to NSX-V Manager, informing it to tag the infected VM with a specific security tag. Once tagged, NSX-V Manager dynamically moves the VM into the quarantine security group, effectively isolating the compromised VM. This integration and workflow are facilitated through the HTTP Server Profile.
Panorama includes predefined payload formats for threat and traffic logs in the HTTP Server Profile. These payload formats correspond to predefined security tags in NSX-V. When a guest VM is found in the threat or traffic logs, Panorama makes an API call to NSX-V Manager telling NSX-V Manager to tag the guest VM with the tag specified in the HTTP Server Profile. When the guest VM becomes tagged, NSX-V Manager dynamically moves the tagged guest VM into the quarantine security group, which places the guest VM into the quarantine dynamic address group.
A is correct and here is the updated reference: https://docs.paloaltonetworks.com/vm-series/10-0/vm-series-deployment/set-up-the-vm-series-firewall-on-nsx/set-up-the-vm-series-firewall-on-vmware-nsx/dynamically-quarantine-infected-guests.html#id8e9a242e-e038-4ba2-b0ea-eaaf53690be0
Agreed. The correct answer is "A" and this applies for both NSX-V and NSX-T.
https://docs.paloaltonetworks.com/vm-series/10-0/vm-series-deployment/set-up-the-vm-series-firewall-on-nsx/set-up-the-vm-series-firewall-on-vmware-nsx/dynamically-quarantine-infected-guests
According to the links provided here, the answer is HTTP Server profile
Answer is A