Valid 3V0-41.22 Dumps shared by ExamDiscuss.com for Helping Passing 3V0-41.22 Exam! ExamDiscuss.com now offer the newest 3V0-41.22 exam dumps, the ExamDiscuss.com 3V0-41.22 exam questions have been updated and answers have been corrected get the newest ExamDiscuss.com 3V0-41.22 dumps with Test Engine here:
SIMULATION Task 11 upon testing the newly configured distributed firewall policy for the Boston application. it has been discovered that the Boston-Web virtual machines can be "pinged" via ICMP from the main console. Corporate policy does not allow pings to the Boston VMs. You need to: * Troubleshoot ICMP traffic and make any necessary changes to the Boston application security policy. Complete the requested task. Notes: Passwords are contained in the user _readme.txt. This task is dependent on Task 5.
Correct Answer:
See the Explanation part of the Complete Solution and step by step instructions Explanation: To troubleshoot ICMP traffic and make any necessary changes to the Boston application security policy, you need to follow these steps: Log in to the NSX Manager UI with admin credentials. The default URL is https://<nsx-manager-ip-address>. Navigate to Security > Distributed Firewall and select the firewall policy that applies to the Boston application. For example, select Boston-web-Application. Click Show IPSec Statistics and view the details of the firewall rule hits and logs. You can see which rules are matching the ICMP traffic and which actions are taken by the firewall. If you find that the ICMP traffic is allowed by a rule that is not intended for it, you can edit the rule and change the action to Drop or Reject. You can also modify the source, destination, or service criteria of the rule to make it more specific or exclude the ICMP traffic. If you find that the ICMP traffic is not matched by any rule, you can create a new rule and specify the action as Drop or Reject. You can also specify the source, destination, or service criteria of the rule to match only the ICMP traffic from the main console to the Boston web VMs. After making the changes, click Publish to apply the firewall policy. Verify that the ICMP traffic is blocked by pinging the Boston web VMs from the main console again. You should see a message saying "Request timed out" or "Destination unreachable".
