The two statements that are true about NSX Intelligence are that it assists to build service insertion with Partner SVM and that it supports planning of NSX-T Edge Firewall rules and policy. NSX Intelligence can be used in conjunction with vRealize Network Insight to provide visibility and insights into the network, but it cannot be used to visualize the physical infrastructure. Additionally, while it can help to plan firewall rules and policy, it does not support planning of distributed firewall rules and policy.

Zero-Trust with segmentation is a security strategy that uses micro-segmentation to protect a network from malicious actors. By breaking down the network into smaller segments, the NSX Distributed Firewall can create a zero-trust architecture which limits access to only users and devices that have been authorized. This reduces the risk of a malicious actor gaining access to sensitive data and systems.

Lateral Movement of Attacks prevention is another use-case for the NSX Distributed Firewall. Lateral movement of attacks are when an attacker is already inside the network and attempts to move laterally between systems. The NSX Distributed Firewall can help protect the network from these attacks by controlling the flow of traffic between systems and preventing unauthorized access.

References: https://www.vmware.com/products/nsx/distributed-firewall.html  https://searchsecurity.techtarget.com/definition/zero-trust-network

The three CU commands required to configure remote logging on an ESXi host are esxcli syslog config set "loghost-udp://:", esxcli network firewall ruleset set -r syslog -e true, and esxcli system syslog reload. The first command sets the remote log server IP address and port for the ESXi host, the second command enables the syslog ruleset, and the third command reloads the syslog configuration. This will ensure that all syslog messages generated by the ESXi host will be sent to the remote log server. References: [1] https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.security.doc/GUID-CFE0E8FC-7C27-4F45-A037-CACCD8A1E9A2.html  [2] https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.security.doc/GUID-A2F2A3D2-076A-4FE6-

The NSX-T IDS/IPS updates are provided through VMware's cloud-based internet service at two different intervals: daily periodic updates, and off-schedule for 0-day updates. Daily periodic updates are provided on a daily basis to ensure the latest threat signature files. Off-schedule updates are provided as needed when a 0-day threat is identified, allowing customers to have the most up-to-date protection from the latest threats. References: https://docs.vmware.com/en/VMware-NSX-T-Data-Center/3.1/nsxt_31_ids_ips/GUID-D0F3F66C-FF83-4B3C-B0A3-C12F19D7A8AD.html  https://blogs.vmware.com/networkvirtualization/2020/02/nsx-t-ids-and-ips-threat-protection.html