ExamGecko
Search Search Login
Home Home / Cisco / 300-620

Cisco 300-620 Practice Test - Questions Answers, Page 10

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

A network engineer demonstrates Cisco ACI to a customer. One of the test cases is to validate a disaster recovery event by resetting the ACI fabric to factory and then restoring the fabric to the state it was in before the event. Which setting must be enabled on ACI to export all configuration parameters that are necessary to meet these requirements?
Refer to the exhibit. Refer to the exhibit. An engineer is configuring a production Multi-Site solution to provide connectivity from EPGs from a specific site to networks reachable through a remote site L3OUT. All required schema and template objects are already defined. Which additional configuration must be implemented in the Multi-Site Orchestrator to support the cross-site connectivity?
Refer to the exhibit. Refer to the exhibit. An engineer must divert the traffic between VM-1 and VM-2 by using a Multi- Node service graph. The solution should prevent an insufficient number of available Layer 4 to Layer 7 devices in the first cluster. Which configuration set accomplishes this goal?
An application team tells the Cisco ACI network administrator that it wants to monitor the statistics of the unicast and BUM traffic that are seen in a certain EPG. Which statement describes the collection statistics?
What does a bridge domain represent?
Refer to the exhibit. Refer to the exhibit. Server A is connected to the Cisco ACI fabric using two teamed interfaces. One interface in a team is configured as active and the other remains in standby mode. When a failover occurs and the standby interface becomes active, it uses its built-in MAC address to send traffic. Which bridge domain configuration must be applied to resolve the issue?
What is the advantage of implementing an active-active firewall cluster that is stretched across separate pods when anycast services are configured?
Refer to the exhibit. Which two configurations enable inter-VRF communication? (Choose two.)
Refer to the exhibit. Refer to the exhibit. A Cisco APIC raises an error when the EPG must accept endpoints from a VMM domain created. Which action clears the fault?
When a pre-provision immediacy is used, when is the policy downloaded to the Cisco ACI leaf switch?

Question 91

Report
Export
Collapse

Which endpoint learning operation is completed on the ingress leaf switch when traffic is received from a Layer 3 Out?

A.

The source MAC address of the traffic is learned as a local endpoint.

A.

The source MAC address of the traffic is learned as a local endpoint.

Answers
B.

The source MAC address of the traffic is learned as a remote endpoint.

B.

The source MAC address of the traffic is learned as a remote endpoint.

Answers
C.

The source IP address of the traffic is learned as a remote endpoint.

C.

The source IP address of the traffic is learned as a remote endpoint.

Answers
D.

The source IP address of the traffic is learned as a local endpoint.

D.

The source IP address of the traffic is learned as a local endpoint.

Answers
Suggested answer: B

Question 92

Report
Export
Collapse

An engineer must configure a group of servers with a contract that uses TCP port 80. The EGP that contains the web servers requires an external Layer 3 cloud to initiate communication. Which action must be taken to meet these requirements?

A.

Configure the EGP as a provider and L3 out as consumer of the contract.

A.

Configure the EGP as a provider and L3 out as consumer of the contract.

Answers
B.

Configure OSPF to exchange routes between the L3 out and EGP.

B.

Configure OSPF to exchange routes between the L3 out and EGP.

Answers
C.

Configure a taboo contract and apply it to the EPG.

C.

Configure a taboo contract and apply it to the EPG.

Answers
D.

Configure the EPG as a consumer and L3 out as a provider of the contract.

D.

Configure the EPG as a consumer and L3 out as a provider of the contract.

Answers
Suggested answer: A

Question 93

Report
Export
Collapse

The unicast routing feature is enabled on the bridge domain. Which two conditions enable the Cisco ACI leaf to learn a source IP as a local endpoint? (Choose two.)

A.

Through Ethernet traffic received in a bridge domain.

A.

Through Ethernet traffic received in a bridge domain.

Answers
B.

IP traffic routed through an SVI.

B.

IP traffic routed through an SVI.

Answers
C.

Through VXLAN traffic received on the uplink.

C.

Through VXLAN traffic received on the uplink.

Answers
D.

IP traffic routed through a Layer 3 Out.

D.

IP traffic routed through a Layer 3 Out.

Answers
E.

Through ARP received on an SVI.

E.

Through ARP received on an SVI.

Answers
Suggested answer: B, E

Explanation:

https://www.cisco.com/c/en/us/solutions/collateral/data-center-virtualization/application-centricinfrastructure/white-paper-c11-739989.html

Question 94

Report
Export
Collapse

When does the Cisco ACI leaf learn a source IP or MAC as a remote endpoint?

A.

When VXLAN traffic arrives on a leaf fabric port from the spine and outer source IP is in the Layer 3 Out EPG subnet range.

A.

When VXLAN traffic arrives on a leaf fabric port from the spine and outer source IP is in the Layer 3 Out EPG subnet range.

Answers
B.

When VXLAN traffic arrives on a leaf fabric port from the spine and outer source IP is in the bridge domain subnets range.

B.

When VXLAN traffic arrives on a leaf fabric port from the spine and outer source IP is in the bridge domain subnets range.

Answers
C.

When VXLAN traffic arrives on a leaf fabric port from the spine and inner source IP is in the Layer 3 Out EPG subnet range.

C.

When VXLAN traffic arrives on a leaf fabric port from the spine and inner source IP is in the Layer 3 Out EPG subnet range.

Answers
D.

When VXLAN traffic arrives on a leaf fabric port from the spine and inner source IP is in the bridge domain subnets range.

D.

When VXLAN traffic arrives on a leaf fabric port from the spine and inner source IP is in the bridge domain subnets range.

Answers
Suggested answer: D

Question 95

Report
Export
Collapse

The company ESXi infrastructure is hosted on the Cisco UCS-B Blade Servers. The company decided to take advantage of ACI VMM integration to enable consistent enforcement of policies across virtual and physical workloads. The requirement is to prevent the packet loss between the distributed virtual switch and the ACI fabric. Which setting must be implemented on a vSwitch policy to accomplish this goal?

A.

Static Channel

A.

Static Channel

Answers
B.

MAC Pinning

B.

MAC Pinning

Answers
C.

LACP

C.

LACP

Answers
D.

LLDP

D.

LLDP

Answers
Suggested answer: D

Question 96

Report
Export
Collapse

An engineer is configuring ACI VMM domain integration with Cisco UCS-B Series. Which type of port channel policy must be configured in the vSwitch policy?

A.

LACP Active

A.

LACP Active

Answers
B.

MAC Pinning

B.

MAC Pinning

Answers
C.

LACP Passive

C.

LACP Passive

Answers
D.

MAC Pinning-Physical-NIC-load

D.

MAC Pinning-Physical-NIC-load

Answers
Suggested answer: A

Explanation:

Reference: https://www.cisco.com/c/en/us/support/docs/cloud-systems-management/applicationpolicy-infrastructure-controller-apic/118965-config-vmm-aci-ucs-00.html

Question 97

Report
Export
Collapse

In-band is currently configured and used to manage the Cisco ACI fabric. The requirement is for leaf and spine switches to use out-of-band management for NTP protocol. Which action accomplishes this goal?

A.

Select Out-of-Band as Management EPG in the default DateTimePolicy.

A.

Select Out-of-Band as Management EPG in the default DateTimePolicy.

Answers
B.

Create an Override Policy with NTP Out-of-Band for leaf and spine switches.

B.

Create an Override Policy with NTP Out-of-Band for leaf and spine switches.

Answers
C.

Change the interface used for APIC external connectivity to ooband.

C.

Change the interface used for APIC external connectivity to ooband.

Answers
D.

Add a new filter to the utilized Out-of-Band-Contract to allow NTP protocol.

D.

Add a new filter to the utilized Out-of-Band-Contract to allow NTP protocol.

Answers
Suggested answer: A

Explanation:

https://www.cisco.com/c/en/us/support/docs/cloud-systems-management/application-policyinfrastructure-controller-apic/200128-Configuring-NTP-in-ACI-Fabric-Solution.html

Question 98

Report
Export
Collapse

An administrator must migrate the vSphere Management VMkernel of all ESXi hosts in the production cluster from the standard default virtual switch to a VDS that is integrated with APIC in a VMM domain. Which action must be completed in this scenario?

A.

The Management VMkernel EPG resolution must be set to Pre-Provosion.

A.

The Management VMkernel EPG resolution must be set to Pre-Provosion.

Answers
B.

The administrator must create an in-band VMM Management EPG before performing the migration.

B.

The administrator must create an in-band VMM Management EPG before performing the migration.

Answers
C.

The administrator must set the Management VMkernel BD resolution immediacy to On-Demand.

C.

The administrator must set the Management VMkernel BD resolution immediacy to On-Demand.

Answers
D.

The VMkernel Management BD must be located under the Management Tenant.

D.

The VMkernel Management BD must be located under the Management Tenant.

Answers
Suggested answer: A

Question 99

Report
Export
Collapse

A customer implements RBAC on a Cisco APIC using a Windows RADIUS server that is configured with network control policies. The APIC is as follows:

Tenant = TenantX

Security Domain = Tenantx-SD

User = X

The customer requires User X to have access to TenantX only, without any extra privilege in the Cisco ACI fabric domain. Which Cisco AV pair must be implemented on the RADIUS server to meet these requirement?

A.

shell:domains = TenantX-SD/fabric-admin/,common//read-all

A.

shell:domains = TenantX-SD/fabric-admin/,common//read-all

Answers
B.

shell:domains = TenantX-SD/tenant-admin

B.

shell:domains = TenantX-SD/tenant-admin

Answers
C.

shell:domains = TenantX-SD/tenant-ext-admin/,common//read-all

C.

shell:domains = TenantX-SD/tenant-ext-admin/,common//read-all

Answers
D.

shell:domains = TenantX-SD/tenant-admin/,common//read-all

D.

shell:domains = TenantX-SD/tenant-admin/,common//read-all

Answers
Suggested answer: D

Explanation:

https://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/2-x/Security_config/b_Cisco_APIC_Security_Guide/b_Cisco_APIC_Security_Guide_chapter_0100.html

Question 100

Report
Export
Collapse

A network engineer must backup the PRODUCTION tenant. The configuration backup should be stored on the APIC using a markup language and contain all secure information. Which export policy must be used to meet these requirement?

A.


A.


Answers
B.


B.


Answers
C.


C.


Answers
D.

D.

Answers
Suggested answer: D
Total 192 questions
Go to page: of 20
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms