An administrator is setting up vSAN file services on a vSAN cluster.
Which two security policies on the distributed port groups are automatically enabled in the process? (Choose two.)
An administrator is setting up vSAN file services on a vSAN cluster.
Which two security policies on the distributed port groups are automatically enabled in the process? (Choose two.)
When setting up vSAN file services on a vSAN cluster, the security policies that are automatically enabled on the distributed port groups are Forged Transmits and MacLearning. Forged Transmits is a security policy that allows the network to accept forged transmissions from virtual machines, which is necessary for certain network configurations. MacLearning is important for managing MAC address changes and ensuring proper communication between virtual machines. These policies are crucial for the operation of vSAN file services and are automatically enabled to ensure network functionality and security.
I think AE https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.vsan.doc/GUID-CA9CF043-9434-454E-86E7-DCA9AD9B0C09.html MacLearning and Forged Transmits are enabled as part of the vSAN File Services enablement process for a provided DVS port group.
AE for sure https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.vsan.doc/GUID-CA9CF043-9434-454E-86E7-DCA9AD9B0C09.html You must ensure to prepare the network as vSAN File Service network: If using standard switch based network, the Promiscuous Mode and Forged Transmits are enabled as part of the vSAN File Services enablement process. If using DVS based network, vSAN File Services are supported on DVS version 6.6.0 or later. Create a dedicated port group for vSAN File Services in the DVS. MacLearning and Forged Transmits are enabled as part of the vSAN File Services enablement process for a provided DVS port group.
MacLearning and Forged Transmits are enabled as part of the vSAN File Services enablement process for a provided DVS port group. https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.vsan.doc/GUID-CA9CF043-9434-454E-86E7-DCA9AD9B0C09.html
A & E. https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.vsan.doc/GUID-CA9CF043-9434-454E-86E7-DCA9AD9B0C09.html
Answer is A & B. https://www.yellow-bricks.com/2020/04/15/vsan-file-services-considerations/
A and E
https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.vsan.doc/GUID-CA9CF043-9434-454E-86E7-DCA9AD9B0C09.html
As there is mention Distributed Port Group, Correct Answer is A&E https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.vsan.doc/GUID-CA9CF043-9434-454E-86E7-DCA9AD9B0C09.html
A and E correct
Correct answer AE: MacLearning and Forged Transmits are enabled as part of the vSAN File Services enablement process for a provided DVS port group.
AB its ok On a standard and distributed (v)Switch, the following settings are enabled on the port group automatically: Forged Transmits, Promiscuous Mode
For Standard vSwitch is OK, But for VDS MacLearning and Forged Transmits are enabled as part of the vSAN File Services. A and E are the correct answers.