What is the optimal way to group them in order to enforce security policies from NSX-T Data Center?

A company is deploying a NSX-T Data Center micro-segmentation in their vSphere environment to secure a simple application composed of web, app, and database tiers.

The naming convention will be:

– WKS-WEB-SRV-XXX

– WKY-APP-SRR-XXX

– WKI-DB-SRR-XXX

What is the optimal way to group them in order to enforce security policies from NSX-T Data Center?
A . Create an Ethernet based security policy.
B . Group all by means of tags membership.
C . Use Edge as a firewall between tiers.
D . Do a service insertion to accomplish the task.

View Answer

Answer: B