Nutanix Certified Master – Multicloud Infrastructure (NCM-MCI) — Question 1

An administrator of a Nutanix Enterprise Cloud has microsegmentation enabled and a firewall VM installed. The security team notifies the administrator that one of the VMs hosted in the environment has been exhibiting suspect network activity. The administrator wants to isolate the VM from the production network, but must still be able to access it to perform diagnostics.
What should the administrator do to meet the requirement?

Answer options

• A. Disable the vNIC on the affected VM
• B. Quarantine the VM using the Forensic Method
• C. Create a firewall rule that blocks VM traffic but permits diagnostic access
• D. Create a security policy with a service chain directing that VMs traffic to the firewall

Correct answer: B

Explanation

The correct answer is B, as the Forensic Method specifically allows for the isolation of a VM while still enabling access for diagnostics. Option A would completely cut off access to the VM, which is not acceptable for diagnostics. Option C does not fully isolate the VM, and option D does not directly address the need for isolation while maintaining accessibility.