An architect is designing the network model for a new VMware Cloud Foundation (VCF) solution. During the requirements gathering phase, the customer stated that the VCF solution must comply with the organization's security policy for traffic separation. The customer provided the architect with the following information from the policy:
• The physical network architecture is divided into multiple security zones.
• Traffic is not permitted to traverse between the zones with the exception of pre-approved monitoring tools.
• Physical servers may not be connected to multiple zones via a single network interface.
• Management and Storage traffic must be kept within network zone 1.
• Workload traffic must be kept within network zone 2.
The architect makes a design decision to use two vSphere Distributed Switches per cluster for both the Management and VI Workload domains.
Which two additional design decisions should the architect include in the virtual networking design for the separation of traffic between the vSphere Distributed Switches? (Choose two.)
Submit