Nest 0 Cart
Nest Account
Popular Exams
All Categories...
Nest
Nest 0
Contact
Log In / Sign Up
Copyright 2024 © store. All rights reserved.
Home Cisco® 300-620

Cisco® 300-620 Exam Practice Questions (P. 3)

  • Full Access (324 questions)
  • Six months of Premium Access
  • Access to one million comments
  • Seamless ChatGPT Integration
  • Ability to download PDF files
  • Anki Flashcard files for revision
  • No Captcha & No AdSense
  • Advanced Exam Configuration
Get Contributor Access
Question #21
Which two types of interfaces are supported on border leaf switches to connect to an external router? (Choose two.)
  1. A
    subinterface with VXLAN tagging
  2. B
    subinterface with 802.1Q tagging
  3. C
    FEX host interface
  4. D
    out of band interface
  5. E
    Switch Virtual Interface

Correct Answer:
BE
chatbot-img GPT-4o - Answer
Absolutely right picks here! When connecting border leaf switches to an external router in Cisco ACI, your go-to options are typically subinterfaces with 802.1Q tagging and Switch Virtual Interfaces (SVIs). These interfaces let the switch communicate beyond the ACI fabric by allowing IP routing and VLAN tagging with external networks. Subinterfaces are perfect because they bring VLAN capabilities to a router link, a must-have for dividing traffic efficiently. On the other hand, SVIs enable routing on a switch, ensuring each VLAN can be managed individually without fuss. So, keep your focus on these interfaces when setting up connections to the outside world.

Question #22
Which Cisco APIC configuration prevents a remote network that is not configured on the bridge domain from being learned by the fabric?
  1. A
    enable Limit IP Learning to Subnet
  2. B
    enable Unicast Routing
  3. C
    enable IP Data-plane Learning
  4. D
    enable ARP Flooding to BD

Correct Answer:
A
Reference:
https://www.cisco.com/c/en/us/solutions/collateral/data-center-virtualization/application-centric-infrastructure/white-paper-c11-739989.html

Question #23
An engineer needs to deploy a leaf access port policy group in ACI Fabric to support the following requirements:
✑ Control the amount of application data flowing into the system
✑ Allow the newly connected device to auto-negotiate link speed with the leaf switch
Which two ACI policies must be configured to achieve these requirements? (Choose two.)
  1. A
    link level policy
  2. B
    L2 interface policy
  3. C
    slow drain policy
  4. D
    ingress data plane policing policy
  5. E
    ingress control plane policing policy

Correct Answer:
AD
Reference:
https://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/kb/b_Cisco_ACI_and_Forward_Error_Correction.html https://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/4-x/security/Cisco-APIC-Security-Configuration-Guide-401/ b_Cisco_APIC_Security_Guide_chapter_01110.html#:~:text=Use%20data%20plane%20policing%20(DPP,dropping%20of%20packets%20occurs%
20immediately
.

Question #24
A customer migrates a legacy environment to Cisco ACI. A Layer 2 trunk is configured to interconnect the two environments. The customer also builds ACI fabric in an application-centric mode. Which feature should be enabled in the bridge domain to reduce instability during the migration?
  1. A
    Set Multi-Destination Flooding to Flood in BD.
  2. B
    Enable Flood in Encapsulation.
  3. C
    Set Multi-Destination Flooding to Flood in Encapsulation.
  4. D
    Disable Endpoint Dataplane Learning

Correct Answer:
A
chatbot-img GPT-4o - Answer
When migrating a legacy environment to Cisco ACI, and particularly while setting up the ACI in application-centric mode, consider how multiple EPGs correlate within a single bridge domain (BD), often under differing VLAN tags. During the migration, it's beneficial to set Multi-Destination Flooding to "Flood in BD." This configuration allows for consistent flooding across the entire BD, ensuring that multicast, broadcast, and unknown unicast traffic is uniformly handled across multiple EPGs even with separate VLAN tags. This minimizes potential instability by maintaining traffic continuity between the ACI fabric and legacy systems.

Question #25
New ESXi hosts are procured in a data center compute expansion project. An engineer must update the configuration on the Cisco APIC controllers to support the addition of the new servers to the existing VMM domain. Which action should be taken to support this change?
  1. A
    Create a range of internal VLANs in the associated VLAN pool.
  2. B
    Set the encapsulation mode as VXLAN.
  3. C
    Enable infrastructure VLAN in the associated AEP.
  4. D
    Map the leaf interface selector to the AEP that is associated with the VMM domain.

Correct Answer:
D
chatbot-img GPT-4o - Answer
The correct action involves mapping the leaf interface selector to the Associated Application Entity Policy (AEP) linked with the VMM domain. This setup ensures that the newly added ESXi hosts are recognized under the correct virtual machine management domain, allowing streamlined management and connectivity within the Cisco ACI environment. This direct binding is essential in extending the domain's capabilities to accommodate additional hosts effectively.

Question #26
DRAG DROP -

Refer to the exhibit. A Cisco ACI fabric is newly deployed, and the security team requires more visibility of all inter EPG traffic flows. All traffic in a VRF must be forwarded to an existing firewall pair. During failover, the standby firewall must continue to use the same IP and MAC as the primary firewall. Drag and drop the steps from the left into the implementation order on the right to configure the service graph that meets the requirements. (Not all steps are used.)
Select and Place:


Correct Answer:

 Reference:
https://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/3-x/L4-L7_services_deployment/3_2_1/b_L4L7_Deploy_321/ b_L4L7_Deploy_321_chapter_01001.html

Question #27
An engineer is extending an EPG out of the ACI fabric using static path binding. Which statement about the endpoints is true?
  1. A
    Endpoints must connect directly to the ACI leaf port.
  2. B
    External endpoints are in a different bridge domain than the endpoints in the fabric.
  3. C
    Endpoint learning encompasses the MAC address only.
  4. D
    External endpoints are in the same EPG as the directly attached endpoints.

Correct Answer:
C
chatbot-img GPT-4o - Answer
When extending an EPG outside of the ACI fabric using static path binding, the primary concern is how endpoints are identified and managed. For ACI, endpoint learning within this context focuses predominantly on the MAC addresses. The system logs the MAC address of devices communicating through the statically bound ports. This aspect of endpoint learning is crucial as it maintains the integrity and efficiency of network operations, ensuring that traffic management and access control policies continue to apply correctly even as the network extends beyond the immediate ACI fabric. Although extending the EPG to include external endpoints under the same policies seems viable, the understanding of endpoint learning based solely on MAC addresses is pivotal.

Question #28
Which setting prevents the learning of Endpoint IP addresses whose subnet does not match the bridge domain subnet?
  1. A
    "Limit IP learning to network" setting within the bridge domain.
  2. B
    "Limit IP learning to subnet" setting within the EPG.
  3. C
    "Limit IP learning to network" setting within the EPG.
  4. D
    "Limit IP learning to subnet" setting within the bridge domain.

Correct Answer:
D
Reference:
https://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/2-x/L2_config/b_Cisco_APIC_Layer_2_Configuration_Guide/ b_Cisco_APIC_Layer_2_Configuration_Guide_chapter_010.html

Question #29
Which endpoint learning operation is completed on the egress leaf switch when traffic is received from an L3Out?
  1. A
    The source MAC and IP address of the traffic is learned as a local endpoint.
  2. B
    The source MAC address of the traffic is learned as a remote endpoint.
  3. C
    No source MAC or IP address of the traffic is learned as a remote endpoint.
  4. D
    The source IP address of the traffic is learned as a remote endpoint.

Correct Answer:
B
Reference:
https://www.cisco.com/c/en/us/solutions/collateral/data-center-virtualization/application-centric-infrastructure/white-paper-c11-739989.html

Question #30

Refer to the exhibit. Which two objects are created as a result of the configuration? (Choose two.)
  1. A
    application profile
  2. B
    attachable AEP
  3. C
    bridge domain
  4. D
    endpoint group
  5. E
    VRF

Correct Answer:
CE
Reference:
https://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/2-x/rest_cfg/2_1_x/b_Cisco_APIC_REST_API_Configuration_Guide/ b_Cisco_APIC_REST_API_Configuration_Guide_chapter_01110.html

Previous Questions Next Questions

All Pages