VMware NSX-T Data Center (VCP-NV 2019) — Question 53

Which security feature on Tier-1 Gateways helps limit malicious traffic?

Answer options

• A. Unicast Reverse Path Forwarding (URPF)
• B. Centralized Service Port (CSP)
• C. Promiscuous Mode
• D. Reverse Path Forwarding (RPF)

Correct answer: A

Explanation

Unicast Reverse Path Forwarding (URPF) is designed to validate the source of incoming traffic and helps mitigate IP spoofing, thereby limiting malicious traffic. The other options do not focus on traffic validation in the same way; Centralized Service Port (CSP) is for service management, Promiscuous Mode allows all traffic to be received, and Reverse Path Forwarding (RPF) does not specifically limit malicious traffic.