The VMware 2V0-642 exam preparation guide is designed to provide candidates with necessary information about the VCP-NV 2020 exam. It includes exam summary, sample questions, practice test, objectives and ways to interpret the exam objectives to enable candidates to assess the types of questions-answers that may be asked during the VMware Certified Professional - Network Virtualization 2020 (VCP-NV 2020) exam.
It is recommended for all the candidates to refer the 2V0-642 objectives and sample questions provided in this preparation guide. The VMware VCP-NV 2020 certification is mainly targeted to the candidates who want to build their career in Network Virtualization domain and demonstrate their expertise. We suggest you to use practice exam listed in this cert guide to get used to with exam environment and identify the knowledge areas where you need more work prior to taking the actual VMware Certified Professional 6 - Network Virtualization (NSX v6.2) exam.
VMware 2V0-642 Exam Summary:
|
Exam Name
|
VMware Certified Professional 6 - Network Virtualization (NSX v6.2) (VCP-NV 2020) |
| Exam Code | 2V0-642 |
| Exam Price | $250 USD |
| Duration | 120 minutes |
| Number of Questions | 77 |
| Passing Score | 300 / 500 |
| Recommended Training / Books |
VMware NSX: Install, Configure, Manage [V6.2] VMware NSX for Internetworking Experts Fast Track [V6.2] VMware NSX: Design & Deploy [V6.2] |
| Schedule Exam | PEARSON VUE |
| Sample Questions | VMware 2V0-642 Sample Questions |
| Recommended Practice | VMware Certified Professional - Network Virtualization 2020 (VCP-NV 2020) Practice Test |
VMware VCP-NV 2020 Syllabus:
| Section | Objectives |
|---|---|
Section 1: Understand VMware NSX Technology and Architecture |
|
| Compare and Contrast the Benefits of a VMware NSX Implementation |
- Determine challenges with physical network implementations - Understand common VMware NSX terms - Differentiate NSX network and security functions and services - Differentiate common use cases for VMware NSX |
| Understand VMware NSX Architecture |
- Differentiate component functionality of NSX stack infrastructure components - Compare and contrast with advantages/disadvantages of topologies (star, ring, etc.) as well as scaling limitations - Compare and contrast VMware NSX data center deployment models - Prepare a vSphere implementation for NSX |
| Prepare a vSphere implementation for NSX |
- Differentiate logical and physical topologies, components and services - Differentiate logical and physical security constructs
|
| Understand VMware NSX Integration with Third-Party Products and Services |
- Understand integration with third-party partner tools and systems using NSX REST APIs - Determine integration with third-party services
- Determine integration with third-party hardware
- Install/register a third-party service with NSX |
| Understand VMware NSX Integration with vRealize Automation (vRA) |
- Understand integration with vRealize Automation - Demonstrate NSX deployment capabilities built into vRealize Automation - Compare and contrast Network Profiles available in vRealize Automation - Understand NSX preparation tasks for attaching a network profile to a blueprint - Discern vRealize Automation preparation tasks for deploying a machine with on-demand network services |
Section 2: Understand VMware NSX Physical Infrastructure Requirements |
|
|
Compare and Contrast the Benefits of Running VMware NSX on Physical Network Fabrics
|
- Differentiate physical network topologies
- Differentiate virtual network topologies
- Given a specific physical topology, determine what challenges could be addressed by a VMware NSX implementation. |
| Determine Physical Infrastructure Requirements for a VMware NSX Implementation |
- Discern management and edge cluster requirements
Differentiateminimum/optimalphysicalinfrastructurerequirementsfora VMwareNSX implementation
- Determine how traffic types are handled in a physical infrastructure - Determine use cases for available virtual architectures - Describe ESXi host vmnic requirements - Differentiate virtual to physical switch connection methods - Compare and contrast VMkernel networking scenarios |
Section 3: Configure and Manage vSphere Networking |
|
| Configure and Manage vSphere Distributed Switches (vDS) |
- Compare and contrast vDS capabilities - Create/Delete a vDS - Add/Remove ESXi hosts from a vDS - Edit general vSphere vDS settings - Add/Configure/Remove dvPortgroups - Configure dvPort settings - Add/Remove uplink adapters to dvUplinkgroups - Create/Configure/Remove virtual adapters - Migrate virtual machines to/from a vDS - Monitor dvPort state - Determine use cases for a vDS |
| Configure and Manage vDS Policies |
- Compare and contrast common vDS policies - Configure dvPortgroup blocking policies - Explain benefits of Multi-Instance TCP/IP stack - Configure load balancing and failover policies - Configure VLAN settings - Configure traffic shaping policies - Enable TCP Segmentation Offload (TOE) support for a virtual machine - Enable Jumbo Frame support on appropriate components - Determine appropriate VLAN configuration for a vSphere implementation - Understand how DSCP is handled in a VXLAN frame |
Section 4: Install and Upgrade VMware NSX |
|
| Configure Environment for Network Virtualization |
- Comprehend physical infrastructure configuration for NSX Compute, Edge and Management clusters (MTU, Dynamic Routing for Edge, etc.) - Prepare a Greenfield vSphere Infrastructure for NSX Deployment
- Configure a Brownfield vSphere Infrastructure for NSX |
| Deploy VMware NSX Components |
- Install/Register NSX Manager - Prepare ESXi hosts - Deploy NSX Controllers - Understand assignment of Segment ID Pool and appropriate need for Multicast addresses - Install Guest Introspection - Create an IP pool - Understand when to use IP Pools versus DHCP for VTEP configuration |
| Upgrade Existing vCNS/NSX Implementation |
- Based on a given upgrade scenario, identify requisite steps and components for upgrading to NSX 6.x - Upgrade vCNS 5.5 to NSX 6.x - Upgrade vCNS Virtual Wires to NSX Logical Switches - Upgrade to NSX Components
- Upgrade NSX Manager from 6.0 to 6.x |
| Expand Transport Zone to Include New Cluster(s) |
- Understand the function of a Transport Zone - Understand proper addition of a Transport Zone - Understand necessity to expand or contract a Transport Zone - Edit a Transport Zone - Understand appropriate use of Control Plane mode modification of a Transport zone |
Section 5: Configure VMware NSX Virtual Networks |
|
| Create and Administer Logical Switches |
- Given a scenario, demonstrate the proper way to add/remove a Logical Switch - Determine use case for and contrast the three Control Plane Modes
- Deploy services to a Logical Switch |
| Configure VXLAN |
- Determine areas where VXLANs should be configured - Understand physical network requirements for virtual topologies with VXLANs - Understand how to prepare a vSphere cluster for VXLAN - Determine the appropriate teaming policy for a given implementation - Understand how to configure and modify the options of a Transport Zone - Understand how prepare VXLAN Tunnel End Points (VTEPs) on vSphere clusters |
| Configure and Manage Layer 2 Bridging |
- Given a scenario, determine an appropriate High Availability configuration for Layer 2 Bridging - Understand how to add a Layer 2 Bridge to an NSX Edge device - Determine when Layer 2 Bridging would be required for a given NSX implementation - Determine use cases for multiple Layer 2 Bridges - Compare and contrast software and hardware bridging |
| Configure and Manage Logical Routers |
- Install NSX Edge - Understand how to connect/disconnect a Logical Switch from a logical router - Understand and describe the different types of router interfaces - Determine NSX components needed to build out topologies with logical routers - Understand how to add and configure a new logical router - Determine use case for and configure a management interface - Determine use case for and configure High Availability for a logical router - Configure routing protocols
- Configure default gateway |
Section 6: Configure and Manage NSX Network Services |
|
| Configure and Manage Logical Load Balancing |
- Differentiate when to use the two topologies for load balancing - Understand how to configure load balancing - Configure and understand service monitors - Understand how to Add/Edit/Delete a server pool - Understand how to Add/Edit/Delete an application profile - Understand how to Add/Edit/Delete virtual servers - Determine appropriate NSX Edge instance size based on load balancing requirements |
| Configure and Manage Logical Virtual Private Networks (VPN) |
- Understand how to configure IPSec VPN
- Understand how to configure Layer 2 VPN
- Configure Network Access/Web Access SSL VPN-Plus
- Determine appropriate VPN service type for a given NSX implementation |
| Configure and Manage DHCP/DNS/NAT |
- Understand proper use and addition of a DHCP IP Pool - Enable a DHCP IP pool - Determine use and proper implementation of DNS services - Determine when and how to configure Source NAT - Determine when and how to configure Destination NAT - Given a scenario, compare and contrast proper DHCP uses |
| Configure and Manage Edge Services High Availability |
- Given a scenario, compare and contrast proper HA uses - Determine service availability during an Edge High Availability failover - Differentiate NSX Edge High Availability and vSphere High Availability - Configure NSX Edge High Availability
- Modify and existing Edge High Availability deployment
- Combine ECMP with other stateful services |
Section 7: Configure and Administer Netw Network Security |
|
| Configure and Administer Logical Firewall Services |
- Add/Edit/Delete an Edge Firewall rule - Configure Source/Destination/Service/Action rule components - Compare and contrast between Edge Rule Types (PreRules/Internal/User Rules/Default Rules) - Change the order of an Edge User Firewall rule - Demonstrate how to configure an Edge Firewall PreRule - Understand the limitations of ECMP and Edge Firewall Policy |
| Configure Distributed Firewall Services |
- Understand VM IP Address learning for the purposes of DFW vCenter attribute learning - Differentiate between Layer 2 and Layer 3 rules - Differentiate between entity-based and identity-based rules - Understand firewall rule entities - Determine rule processing order - Understand rule segregation - Demonstrate steps to Add/Delete a Distributed Firewall rule - Demonstrate configuration of Source/Destination/Service/Action rule components - Change the order of a Distributed Firewall rule - Add/Merge/Delete a Distributed Firewall rule section - Determine publishing requirements for rules in a given NSX implementation - Demonstrate Import/Export Distributed Firewall Configuration - Load Distributed Firewall configuration - Determine need for excluding virtual machines from distributed firewall protection - Describe SpoofGuard Operation and Default Policy and Actions - Describe SpoofGuard IP Address Learning - Determine requirements for a Spoofguard Policy - Demonstrate how to Create and Edit a SpoofGuard Policy
|
| Configure and Manage Service Composer |
- Understand assets that can be used with a Security Group - Differentiate services contained in a Security Policy - Compare and contrast common Service Composer use cases - Differentiate third party integration and service redirection - Differentiate Security Groups and Security Policies - Demonstrate the ability to redirect specific flows (e.g. 80) to network introspection services - Differentiate between vCenter attribute based Firewall rules (including IP Sets) vs Active Directory identity-based rule - Create/Edit a Security Group in Service Composer - Create/Edit/Delete a Security Policy in Service Composer - Map a Security Policy to a Security Group - Add/Edit/Delete a Security Tag - Assign and view a Security Tag |
Section 8: Deploy a Cross-vCenter NSX environment |
|
| Differentiate single and Cross-vCenter NSX deployments |
- Understand the benefits/use cases for Cross-vCenter NSX - Contrast single and Cross-vCenter deployment models - Determine the appropriate NSX topology for a given use case - Understand options for ingress and egress traffic flows in a multi-site topology - Describe and differentiate Universal components
|
| Determine Cross-vCenter Requirements and Configurations |
- Deploy a Cross-vCenter NSX environment
- Migrate an NSX deployment to Cross-vCenter
- Compare and contrast Local and Universal Firewall Rules |
Section 9: Perform Operations Tasks in a VMware NSX Environment |
|
| Configure Roles, Permissions, and Scopes |
- Understand default roles - Understand Single Sign-On (SSO) integration - Configure SSO - Assign a role to a vCenter Server user or group - Compare and contrast the uses for the various NSX Security Roles - Determine how roles can be applied to a subset of the vCenter infrastructure for multi Tenancy purposes - Understand how to apply NSX Roles to an AD group - Assign objects to a user - Enable/Disable a user account - Edit/Delete a user account |
| Understand NSX Automation |
- Discern common use cases that require the NSX REST API - Compare and contrast how the NSX REST API works and how it is used with a support browser - Understand how NSX REST API Calls are sent to the NSX Manager - Differentiate common NSX REST API verbs - Determine how to use NSX REST API calls to learn the network topology |
| Monitor a VMware NSX Implementation |
- Compare and contrast available monitoring methods (UI, CLI, API, etc.) - Monitor infrastructure components
- Perform Inbound/Outbound activity monitoring
|
| Perform Auditing and Compliance |
- Given an auditing scenario, determine where applicable log information can be located - Differentiate permissions for auditing - Differentiate common data security regulations supported by NSX Data Security - Differentiate information available in audit logs - Use flow monitoring to audit firewall rules - Audit deleted users - Audit infrastructure changes - View NSX Manager audit logs and change data - Configure NSX Data Security - Create a Data Security Policy - Install Data Security - Run a Data Security scan - View and download compliance reports - Create a regular expression - Configure Guest Introspection (Install vShield Endpoint) |
| Administer Logging |
- Given a scenario, utilize information contained in technical support bundles/logs to assist in troubleshooting - Explain usage of CLI for logging - Configure Syslog(s) - Configure logging for Dynamic Routing information - Log Distributed Firewall rule processing information - Log Edge Firewall rule processing information - Log address translation information - Log VPN traffic - Configure basic/advanced Load Balancer logging - Log DHCP assignments - Log DNS resolutions - Log security policy session information - Download NSX Edge tech support logs - Generate NSX Manager tech support logs |
| Backup and Recover Configurations |
- Understand how to backup and recover various components - Schedule backups - Export/Restore vSphere Distributed Switch configuration - Import/Export Service Composer profiles - Perform NSX Manager backup and restore operation |
Section 10: Troubleshoot a VMware Network Virtualization Implementation |
|
| Compare and Contrast Tools Available for Troubleshooting |
- Capture and trace uplink, vmknic, and physical NIC packets - Audit NSX infrastructure changes - Output packet data for use by a protocol analyzer - Capture and analyze traffic flows - Mirror network traffic for analysis - Perform a network health check - Configure vSphere Distributed Switch alarms |
| Troubleshoot Common NSX Installation/Configuration Issues |
- Troubleshoot lookup service configuration - Troubleshoot vCenter Server link - Troubleshoot licensing issues - Troubleshoot permissions issues - Troubleshoot host preparation issues - Troubleshoot IP pool issues |
| Troubleshoot Common NSX Component Issues |
- Differentiate NSX Edge logging and troubleshooting commands - Verify NSX Controller cluster status and roles - Verify NSX Controller node connectivity - Check NSX Controller API service - Validate VXLAN and Logical Router mapping tables - List Logical Router instances and statistics - Verify Logical Router interface and route mapping tables - Verify active controller connections - View Bridge instances and learned MAC addresses - Display Logical Router instances - Verify NSX Manager services status - View Logical Interfaces and routing tables - Analyze NSX Edge statistics |
| Troubleshoot Common Connectivity Issues |
- Review netcpa logs for control plane connectivity issues - Verify VXLAN, VTEP, MAC, and ARP mapping tables - List VNI configuration - View VXLAN connection tables and statistics - Perform VTEP connectivity tests |
| Troubleshoot Common vSphere Networking Issues |
- Verify network configuration - Verify a given virtual machine is configured with the correct network resources - Troubleshoot virtual switch and port group configuration issues - Troubleshoot physical network adapter configuration issues - Determine the root cause of a network issue based on troubleshooting information |