VCAP6-NV (VCIX6-NV) Sample Question 9

Posted on May 14, 2017 by josh@sostechblog.com

Sample Question Intro
HOL: HOL-1703-SDC-1 – VMware NSX: Introduction and Feature Tour
Prerequisites: Question 8
Lab: Module 3 : Edge Services Gateway : L2VPN

Question 9

A previous question deployed a VPN sever for the Web Tier network.

Deploy a client to test the VPN tunnel

Requirements:
VMware web client login: administrator@vsphere.local / VMware1!

Distributed Switch: RegionA01-vDS-COMP
New Port Group: Uplink-RegionA01-vDS-COMP
New Port Group: Trunk-Network-RegionA01-vDS-COMP

New ESG name: L2VPN-Client
Username: Admin
Password: VMware1!VMware1!

Host: esx-03a.corp.local
Folder: Discovered virtual machine.

Uplink name: L2VPN-Client-Uplink
Uplink Network: Uplink-RegionA01-vDS-COMP
Uplink IP: 192.168.200.5 / 24
Default Gateway: 192.168.200.1

Trunk Interface Name: L2PVN-Client-Trunk
Trunk Port Group: Trunk-Network-RegionA01-vDS-COMP

Subinterface name: L2VPN-Client-SubInterface
Tunnel ID: 1
IP Address: 172.16.10.1 / 24
Network: VM-RegionA01-vDS-COMP

VPN:
Server Address: 192.168.5.5
Encryption algorithm: ECDHE-RSA-AES256-GCM-SHA384
User ID: siteadmin
Password: VMware1!

1) Create two new distributed port groups.
2) Create a new ESG to act as a VPN client.
3) Ensure the firewall on the new ESG does not block any traffic.
4) Verify Tunnel Status shows “Up”

This entry was posted in Certification, Network, NSX, Virtualization, VMware and tagged , , , . Bookmark the permalink.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.