Pre-Summer Sale 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: Board70

NCP-NS-7.5 Exam Dumps - Nutanix NCP-NS Questions and Answers

Question # 4

An administrator needs to use Prism Central to identify a subnet belonging to a VPC. How can the administrator identify networks associated with a VPC within Prism Central?

Options:

A.

There will be a valid IP Prefix for the subnet.

B.

The subnet will reference multiple clusters.

C.

The subnet will have a non-zero VLAN ID.

D.

The subnet will be identified as type Overlay.

Buy Now
Question # 5

Which step is required to prepare an AHV cluster for Flow Network Security Next-Gen?

Options:

A.

Enable microsegmentation and network controller on the cluster.

B.

Assign static IP addresses to all VMs before enabling Flow.

C.

Enable microsegmentation policies on all VM groups before enabling Flow.

D.

Disable all existing VLANs in the cluster to allow Flow to control traffic.

Buy Now
Question # 6

An administrator configures a VPN gateway with eBGP for dynamic route exchange. After setup, routes are not advertised to the remote peer. Which configuration is most likely missing?

Options:

A.

DHCP options for assigning IP addresses to remote endpoints.

B.

ASN configuration for the local gateway to identify its autonomous system.

C.

VLAN ID alignment between local and remote networks.

D.

Peer IP address required for establishing the BGP session.

Buy Now
Question # 7

An administrator creates a new VPC in No NAT mode to allow VMs in a web tier to reach an external firewall. After deployment... none of the VMs can reach external IP addresses... Which action should the administrator take to restore routed north-south connectivity from the VPC?

Options:

A.

Configure a Flow Security Policy to allow egress traffic from the VPC subnet.

B.

Create an Externally Routable Prefix (ERP) entry for the overlay subnet in the VPC.

C.

Change the VPC mode to NAT so that outbound traffic is automatically translated.

D.

Add a default static route in each VM pointing to the external firewall's IP address.

Buy Now
Question # 8

An administrator is setting up a transit VPC to connect two VPCs and enable both internal (on-prem) and Internet connectivity. Which is the best configuration to meet the requirement?

Options:

A.

Configure the transit VPC with two NAT External Subnets to support redundancy for internet connectivity.

B.

Configure the transit VPC with one NAT External Subnet and one No-NAT External Subnet, each serving different traffic types.

C.

Configure the transit VPC with two No-NAT Overlay External Subnets for both Internet and on-prem traffic.

D.

Configure the transit VPC with a single No-NAT External Subnet to handle both internal and internet traffic.

Buy Now
Question # 9

An administrator has deployed a microsegmentation policy in Nutanix Flow that allows certain VM traffic based on Active Directory (AD) user group membership. Users in a specific AD group report they are unable to access the VMs, while other users can connect without issues. The administrator suspects the problem is related to identity-based policy mapping. What should the administrator do to troubleshoot and resolve the access issue related to the identity-based policy?

Options:

A.

Add the IP addresses of the blocked VMs to the Inbound ruleset.

B.

Ensure the VMs are associated to the proper AD group categories.

C.

Reboot all VMs associated with the policy to refresh their security group mapping.

D.

Verify that the affected users are members of the mapped AD group.

Buy Now
Question # 10

Refer to Exhibit:

An administrator is tasked with configuring an application policy for a two-tier public website with Web and DB components. The database servers need to communicate with each other for replication, but the web servers should not be able to communicate with each other. The administrator configures the policy... and sets it to Enforce mode. Later testing reveals that the web servers are able to communicate with each other. What should the administrator do to resolve this?

Options:

A.

Create an isolation policy for the PubSite-Prod-Web entity group.

B.

Edit the PubSite-Prod-Web entity group's intra-tier rule.

C.

Configure a VPC Network Policy to deny the traffic.

D.

Ensure the PubSite-Prod-Web servers are in different Subnets.

Buy Now
Question # 11

Refer to Exhibit:

An administrator has been tasked with troubleshooting why the servers in the Web Category are not able to ping the servers in the App Category. Why is this issue occurring?

Options:

A.

ICMP is not allowed between the Web and App categories.

B.

The firewall on the App Servers is blocking Ping packets.

C.

Ping is not installed in the Web Servers.

D.

The servers are not in the same category.

Buy Now
Question # 12

A newly-deployed Flow Virtual Networking VPC environment is experiencing connectivity issues... A packet capture on the physical switch shows packets are being fragmented. What is the probable cause of the packet fragmentation and performance issues?

Options:

A.

A Network Security Group is incorrectly filtering IP fragments.

B.

The MTU on the physical or virtual switch layer is set too low.

C.

The VM's guest OS network driver is faulty and requires an update.

D.

The VPC's external network uplink has an incorrect VLAN ID configured.

Buy Now
Question # 13

Which policy type takes highest precedence in Enforce mode?

Options:

A.

Application

B.

Isolation

C.

Quarantine

D.

Shared Service

Buy Now
Exam Code: NCP-NS-7.5
Exam Name: Nutanix Certified Professional - Network and Security (NCP-NS) 7.5
Last Update: Apr 25, 2026
Questions: 106
NCP-NS-7.5 pdf

NCP-NS-7.5 PDF

$25.5  $84.99
NCP-NS-7.5 Engine

NCP-NS-7.5 Testing Engine

$28.5  $94.99
NCP-NS-7.5 PDF + Engine

NCP-NS-7.5 PDF + Testing Engine

$40.5  $134.99