Free VMware 2V0-41.24 Actual Exam Questions - Question 1 Discussion
feature of NSX can be used to achieve this?
Makes sense that network segmentation is the key here because it actually isolates workloads to stop lateral moves, so I’d go with A. Virtual Security Zones seem more like organizing groups rather than enforcing strict traffic rules.
Not C, edge firewalling is more about controlling traffic at the perimeter rather than inside the network to stop lateral movement. Network segmentation (A) directly divides workloads to block internal threats.
B imo, Virtual Security Zones focus on grouping workloads with similar policies, which can limit lateral movement by applying consistent controls across those groups. It’s more about policy enforcement than just isolation.
I agree with option A. Network Segmentation is key because it isolates parts of the network, making lateral movement much tougher for attackers.
B imo, Virtual Security Zones add an extra layer by grouping workloads with similar security needs, making it harder for attackers to move sideways once inside.
Option A. Network Segmentation helps stop lateral movement by isolating workloads.