Free NVIDIA NCP-AIN Actual Exam Questions - Question 11 Discussion
You are implementing a multi-tenant environment on your Spectrum-X switches for different
departments in your organization. You need to ensure that each department's network traffic is
isolated and secure.
Which Spectrum-X security feature would be most effective in creating isolated network
environments for each department?
It’s C, because ACLs directly restrict traffic and work on all models regardless of VRF support.
Maybe C here—ACLs can tightly control who talks to whom, so even if full VRF isn’t supported, you get decent isolation by blocking unwanted traffic between departments.
Makes sense to pick B since VRF really slices the network into separate routing tables. ACLs (C) control access but don’t fully isolate traffic, so they’re less complete. B
B/C? VRF is great for keeping traffic separate, but ACLs can also enforce strict controls if VRF isn’t fully reliable on all devices. Depending on support, combining both could work well.
I’m thinking D is off since LLDP is mainly for device discovery, not isolation. That leaves B and C, and B fits better for separating traffic entirely, so I’d go with B.
C VRFs are solid for isolation, but ACLs can add an extra layer of security by controlling what traffic is allowed between VLANs. So if VRF isn't fully supported everywhere, ACLs could be a backup solution.
B makes the most sense here—VRF is designed for isolating traffic between tenants or departments. ACLs help but don’t fully isolate networks like VRF does.