VMware 6V0-21.25 Exam - Topic 17 Question 6 Discussion

Actual exam question for VMware's 6V0-21.25 exam

Question #: 6
Topic #: 17

[All 6V0-21.25 Questions]

Which of the following are true regarding Antrea? (Select all that apply)

AAntrea Agent runs on every Worker Node

BAntrea integration allows support of mixed rules of Virtual Machines and Kubernetes objects

CAntrea Agent computes NetworkPolicies from K8s and publishes the results to the Antrea Controller

DAntrea Agent runs on every node of the management cluster

Show Suggested Answer

Suggested Answer: A, B

Antrea is VMware's Kubernetes-native Container Network Interface (CNI) utilized for micro-segmenting container pods.

Option A is True: Architecturally, Antrea deploys an antrea-agent component on every single Kubernetes Worker Node (typically as a DaemonSet). This agent is responsible for programming the Open vSwitch (OVS) datapath on that specific node to enforce pod routing and security policies.

Option B is True: A massive advantage of integrating Antrea with vDefend (NSX) is unified security. The vDefend management plane synchronizes Kubernetes inventory (Pods, Namespaces). This allows security administrators to write 'mixed' Distributed Firewall rules within a single policy framework---for example, permitting traffic from a traditional Virtual Machine (e.g., a DB server) directly to a Kubernetes Pod (e.g., a Web frontend) using dynamic tagging.

(Option C is False because the flow is reversed: the Controller computes the policies and pushes them down to the Agents. Option D is False because data plane agents run on worker/compute nodes, not the management cluster).

=========================

by Jordan at May 06, 2026, 06:56 PM

Limited Time Offer

25%

Off

Get Premium 6V0-21.25 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!