VMware vSphere 6 Advanced Design (VCAP6-DCV Design) — Question 39

A development team must provide layer 2 network isolation between virtual machines that are in the same VLAN. The solutions architect must provide additional security between the virtual machines on the same subnet.
How can this be done without consuming more VLANs?

Answer options

• A. Use Virtual Switch Tagging.
• B. Use Private VLANs.
• C. Use Virtual Guest Tagging.
• D. Use External Switch Tagging.

Correct answer: B

Explanation

The correct answer is B, as Private VLANs allow for isolation between virtual machines on the same VLAN, providing enhanced security without the need for additional VLANs. Other options like Virtual Switch Tagging, Virtual Guest Tagging, and External Switch Tagging do not offer the same level of isolation between VMs on the same subnet.