Exam NCP-MCI-6.10 Topic 5 Question 95 Discussion

Actual exam question for Nutanix's NCP-MCI-6.10 exam
Question #: 95
Topic #: 5

An administrator recently attempted to enable Data-in-Transit Encryption on a scale-out Prism Central cluster to ensure service-level traffic is encrypted between cluster nodes. After attempting to enable the feature, it did not function because of firewall restrictions.
Which CVM-specific port must be allowed through the firewall for Data-in-Transit Encryption?

A. 2009 B. 2010 C. 2020 D. 9440

Suggested Answer: C Vote an answer

Data-in-Transit Encryption for Prism Central and CVMs requires specific internal communication ports to be open. Nutanix internal component documentation states:
"Port 2020 is used by the Nutanix encryption service for encrypted CVM-to-CVM communication during Data-in-Transit Encryption operations." This port is essential for establishing secure tunnels between control-plane services. Ports 2009 and 2010 are used by other CVM services (e.g., Stargate, Curator coordination) but not for transport encryption. Port 9440 is for Prism UI/API traffic, and while it must be accessible for management, it does not enable encrypted back- end service traffic.
Thus, the administrator must ensure that port 2020 is permitted to enable Data-in-Transit Encryption functionality.

by Amri at Dec 01, 2025, 05:50 PM

Limited Time Offer

15%

Off

Get Premium NCP-MCI-6.10 Questions as Interactive Self Test Engine or PDF

Comments

Amri

2025-12-01 17:50:22

Selected Answer: A

According to the Nutanix NCP‑MCI 6.10 exam guidance:

Port 2009 (TCP) is required and must be open between CVMs to enable Data‑in‑Transit Encryption on a scale‑out Prism Central cluster. [certlibrary.com], [pass4future.com]

Other ports:

2010 is used for Curator/AFS, not for encryption.
9440 is for Prism UI/API access.

✅ Correct Answer: A. 2009

upvoted 1 times

...

0 Satisfied Customers

0 Shares

0 Demo Downloads

10 Years in Business