VMware vSphere 6 Beta — Question 56
A user has configured a specific distributed firewall rule preventing VM-A (172.16.10.11) on the Web-Logical Switch to communicate to VM-B (172.16.20.11), running on the same switch. After the changes, the user is still able to communicated to VM-A from VM-B.
To debug this anomaly, the user will need to obtain logs from which component?
Answer options
- A. The Distributed Logical Router
- B. The Edge Services Gateway
- C. The appropriate ESXi Hosts(s)
- D. The appropriate NSX Controller(s)
Correct answer: C
Explanation
The correct answer is C because the logs from the ESXi hosts will provide insights into traffic flow and any potential issues with the distributed firewall rule implementation. The other options, including the Distributed Logical Router, Edge Services Gateway, and NSX Controllers, do not directly handle the traffic between VMs on the same logical switch as effectively as the ESXi Hosts.