VMware NSX 4.x Professional (2023) — Question 85

An NSX administrator is reviewing syslog and notices that Distributed Firewall Rules hit counts are not being logged.

What could cause this issue?

Answer options

• A. Zero Trust Security is not enabled.
• B. Distributed Firewall Rule logging is not enabled.
• C. Syslog is not configured on the NSX Manager.
• D. Syslog is not configured on the ESXi transport node.

Correct answer: B

Explanation

The correct answer is B because Distributed Firewall Rule logging must be enabled for hit counts to be recorded. Option A is incorrect as Zero Trust Security does not directly affect logging for firewall rules. Option C is not the issue because syslog configuration on the NSX Manager pertains to overall logging, not specifically to the Distributed Firewall. Option D also doesn't apply since the logging issue is related to the firewall rules, not the transport node's syslog configuration.