Exam 3V0-24.25 Topic 1 Question 45 Discussion
Actual exam question for VMware's 3V0-24.25 exam
Question #: 45
Topic #: 1
Question #: 45
Topic #: 1
A Security Architect is designing the ingress and egress traffic flow for a highly regulated PCI-DSS zone within vSphere with Tanzu.
The requirements state:
1. Ingress: All incoming HTTP/S traffic must pass through a dedicated WAF (Web Application Firewall) before reaching the Kubernetes Ingress Controller.
2. Egress: All outbound traffic from the namespace must be identifiable by a unique, persistent IP address to allow for strict firewall rules on the perimeter.
3. Isolation: The namespace must use a dedicated T1 Gateway in NSX.
Review the following design decisions.
Which configuration choices correctly support these requirements? (Select all that apply.)
The requirements state:
1. Ingress: All incoming HTTP/S traffic must pass through a dedicated WAF (Web Application Firewall) before reaching the Kubernetes Ingress Controller.
2. Egress: All outbound traffic from the namespace must be identifiable by a unique, persistent IP address to allow for strict firewall rules on the perimeter.
3. Isolation: The namespace must use a dedicated T1 Gateway in NSX.
Review the following design decisions.
Which configuration choices correctly support these requirements? (Select all that apply.)
Suggested Answer: B,D,E Vote an answer
by George at Jan 29, 2026, 11:05 PM
0
0
0
10
Comments
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Report Comment
Commenting
You can sign-up / login (it's free).