Topics

Explore all topics

Universities

uni logo
University of North Carolina at Chapel Hill
uni logo
University of Notre Dame
uni logo
Clemson University
Explore all Universities

Professors

Overall Quality
-/5
c c
Overall Quality
-/5
Billt Camp
Overall Quality
-/5
mathio g
Explore all Professors
Add Browser Extension
Start Free Trial
Need Help? Contact us
title
Textbook Solutions
Step-by-step solutions verified by experts
title
24/7 Homework Help
Complete assignments with the help of our community
title
Flashcards
Stimulate your visual memory & walk into test day with confidence
title
DocuAssist
Upload your study materials and we’ll help fill in the answers.
title
Campus Reps
Become a Campus Rep and earn up to 20% commission, plus weekly and monthly cash prizes.
title
My Courses
Add the courses you're enrolled in for tailored study material to meet your requirements
Explore all services
Add Browser Extension
Start Free Trial
Need Help? Contact us
back arrowfull exam logo
العربية
search
ai logoChat with AI
Servicesarrow
Textbook Solutions icon
Textbook Solutions
24/7 Homework Help icon
24/7 Homework Help
Flashcards icon
Flashcards
DocuAssist icon
DocuAssist
Campus Reps icon
Campus Reps
My Courses icon
My Courses
Mobile App icon
Mobile App
Explore All Services
Discoverarrow

Topics

Explore All Services

Universities

uni logo
University of North Carolina at Chapel Hill
uni logo
University of Notre Dame
uni logo
Clemson University
Explore all Universities

professors

/5
c c
/5
Billt Camp
/5
mathio g
Explore all Professors
Explore all topics
Discover more topics
HomeSchoolingAsk a question

Deck 21: Automating Cisco Data Center Solutions (DCAUTO)

Full screen (f)
exit full mode
Question
<strong> Refer to the exhibit. Which three actions should be taken to implement the vPC in the Cisco ACI fabric? (Choose three.)</strong> A) Select a common vPC interface policy group B) Select individual interface profiles C) Select common interface profiles D) Select individual switch profiles E) Select common switch profiles <div style=padding-top: 35px> Refer to the exhibit. Which three actions should be taken to implement the vPC in the Cisco ACI fabric? (Choose three.)

A) Select a common vPC interface policy group
B) Select individual interface profiles
C) Select common interface profiles
D) Select individual switch profiles
E) Select common switch profiles
Use Space or
up arrow
down arrow
to flip the card.
Question
<strong> Refer to the exhibit. What must be configured to allow the PBR node (LB-int) to monitor the availability of the endpoint that is in the EPG server?</strong> A) Endpoint Dataplane Learning B) Unicast Route disabled for client and server bridge domains C) PBR node tracking D) Direct Connect in the service graph template <div style=padding-top: 35px> Refer to the exhibit. What must be configured to allow the PBR node (LB-int) to monitor the availability of the endpoint that is in the EPG server?

A) Endpoint Dataplane Learning
B) Unicast Route disabled for client and server bridge domains
C) PBR node tracking
D) Direct Connect in the service graph template
Question
<strong> Refer to the exhibit. A customer experiences resource overconsumption on one of its border leaf switches. Which action should be taken to reduce the consumption on this switch?</strong> A) Disable VRF Policy Control Enforcement B) Disable IP Data Plane Learning C) Migrate L3Outs to another switch D) Disable Remote EP Learning <div style=padding-top: 35px> Refer to the exhibit. A customer experiences resource overconsumption on one of its border leaf switches. Which action should be taken to reduce the consumption on this switch?

A) Disable VRF Policy Control Enforcement
B) Disable IP Data Plane Learning
C) Migrate L3Outs to another switch
D) Disable Remote EP Learning
Question
<strong> Refer to the exhibit. What must be configured in the service graph to redirect HTTP traffic between the EPG client and EPG server to go through the Cisco ASA firewall?</strong> A) contract filter to allow ARP and HTTP B) precise filter to allow only HTTP traffic C) contract with no filter D) permit-all contract filter <div style=padding-top: 35px> Refer to the exhibit. What must be configured in the service graph to redirect HTTP traffic between the EPG client and EPG server to go through the Cisco ASA firewall?

A) contract filter to allow ARP and HTTP
B) precise filter to allow only HTTP traffic
C) contract with no filter
D) permit-all contract filter
Question
<strong> Refer to the exhibit. How is the ARP request from VM1 forwarded when VM2 is not learned in the Cisco ACI fabric?</strong> A) Leaf 101 forwards the ARP request to one of the proxy VTEP spines. B) POD1 spine responds to the ARP request after the POD1 COOP is updated with the VM2 location. C) Leaf 101 encapsulates the ARP request into a multicast packet that is destined to 225.0.37.192. D) Leaf 101 switch consumes the ARP reply of VM2 to update the local endpoint table. <div style=padding-top: 35px> Refer to the exhibit. How is the ARP request from VM1 forwarded when VM2 is not learned in the Cisco ACI fabric?

A) Leaf 101 forwards the ARP request to one of the proxy VTEP spines.
B) POD1 spine responds to the ARP request after the POD1 COOP is updated with the VM2 location.
C) Leaf 101 encapsulates the ARP request into a multicast packet that is destined to 225.0.37.192.
D) Leaf 101 switch consumes the ARP reply of VM2 to update the local endpoint table.
Question
Which two components must be configured as stretched to establish intra-VRF communication between two EPGs that are deployed in different sites and different bridge domains? (Choose two.)

A) contract
B) tenant
C) application profile
D) bridge domain
E) EPG
Question
<strong> Refer to the exhibit. Which configuration mode must be selected for the VMM vSwitch Port Channel policy to avoid MAC flapping on the Cisco UCS Fls and Cisco ACI leaf switches?</strong> A) LACP Passive B) MAC Pinning C) LACP Active D) Static Channel - Mode On <div style=padding-top: 35px> Refer to the exhibit. Which configuration mode must be selected for the VMM vSwitch Port Channel policy to avoid MAC flapping on the Cisco UCS Fls and Cisco ACI leaf switches?

A) LACP Passive
B) MAC Pinning
C) LACP Active
D) Static Channel - Mode On
Question
An engineer designs a Cisco ACI Multi-Pod solution that requires a pair of active-standby firewalls in different pods for external connectivity. How should the firewalls be implemented?

A) PBR for routed firewalls
B) separate L3Out peerings for routed firewalls
C) routed firewall for the default gateway
D) transparent firewalls
Question
What is the purpose of the Forwarding Tag (FTAG) in Cisco ACI?

A) FTAG is used in Cisco ACI to add a label to the iVXLAN traffic in the fabric to apply the correct policy.
B) FTAG is used in Cisco ACI to add a label to the VXLAN traffic in the fabric to apply the correct policy.
C) FTAG trees in Cisco ACI are used to load balance unicast traffic.
D) FTAG trees in Cisco ACI are used to load balance mutli-destination traffic.
Question
An engineer must limit local and remote endpoint learning to the bridge domain subnet. Which action should be taken inside the Cisco APIC?

A) Disable Remote EP Learn
B) Enable Enforce Subnet Check
C) Disable Endpoint Dataplane Learning
D) Enable Limit IP Learning to Subnet
Question
Which two actions should be taken to ensure a scalable solution when multiple EPGs in a VRF require unrestricted communication? (Choose two.)

A) Configure a taboo contract between the EPGs that require unrestricted communication between each other.
B) Enable Preferred Group Member under the EPG Collection for VRF section.
C) Set the VRF policy control enforcement preference to Unenforced.
D) Set the EPGs that require unrestricted communication between each other as preferred group members.
E) Set the EPGs that require policy enforcement between each other as preferred group members.
Question
<strong> Refer to the exhibit. Which configuration must be implemented on L3Out EBGP to advertise out of the fabric 172.16.2.0/24 network that is learned from L3Out OSPF?</strong> A) B) C) D) <div style=padding-top: 35px> Refer to the exhibit. Which configuration must be implemented on L3Out EBGP to advertise out of the fabric 172.16.2.0/24 network that is learned from L3Out OSPF?

A) <strong> Refer to the exhibit. Which configuration must be implemented on L3Out EBGP to advertise out of the fabric 172.16.2.0/24 network that is learned from L3Out OSPF?</strong> A) B) C) D) <div style=padding-top: 35px>
B) <strong> Refer to the exhibit. Which configuration must be implemented on L3Out EBGP to advertise out of the fabric 172.16.2.0/24 network that is learned from L3Out OSPF?</strong> A) B) C) D) <div style=padding-top: 35px>
C) <strong> Refer to the exhibit. Which configuration must be implemented on L3Out EBGP to advertise out of the fabric 172.16.2.0/24 network that is learned from L3Out OSPF?</strong> A) B) C) D) <div style=padding-top: 35px>
D) <strong> Refer to the exhibit. Which configuration must be implemented on L3Out EBGP to advertise out of the fabric 172.16.2.0/24 network that is learned from L3Out OSPF?</strong> A) B) C) D) <div style=padding-top: 35px>
Question
A cloud provider must make a pair of firewalls available to all tenants. Each tenant defines its own service graph. Where should the Layer 4 to Layer 7 service be configured to accomplish this goal?

A) management tenant
B) infrastructure tenant
C) user tenant
D) common tenant
Question
Which feature should be disabled on a bridge domain when a default gateway for endpoints is on an external device instead of a Cisco ACI bridge domain SVI?

A) unicast routing
B) ARP flooding
C) unknown unicast flooding
D) proxy ARP
Question
<strong> Refer to the exhibit. Which configuration must be implemented to allow intra-VRF transit routing between the two external routers?</strong> A) Deploy both areas under the same L3Out policy B) Change one of the areas to area 0 C) Configure OSPF virtual links D) Modify L3Out 1 to use the same OSPF area as L3Out 2 <div style=padding-top: 35px> Refer to the exhibit. Which configuration must be implemented to allow intra-VRF transit routing between the two external routers?

A) Deploy both areas under the same L3Out policy
B) Change one of the areas to area 0
C) Configure OSPF virtual links
D) Modify L3Out 1 to use the same OSPF area as L3Out 2
Question
<strong> Refer to the exhibit. The 0.0.0.0/0 is configured as a default static route on L3Out-1. Which action should be taken for the 0.0.0.0/0 prefix to advertise out on L3Out-2 OSPF?</strong> A) Enable Shared Security Import Subnet B) Enable Aggregate Export Subnet C) Enable Shared Route Control Subnet D) Enable Export Route Control Subnet <div style=padding-top: 35px> Refer to the exhibit. The 0.0.0.0/0 is configured as a default static route on L3Out-1. Which action should be taken for the 0.0.0.0/0 prefix to advertise out on L3Out-2 OSPF?

A) Enable Shared Security Import Subnet
B) Enable Aggregate Export Subnet
C) Enable Shared Route Control Subnet
D) Enable Export Route Control Subnet
Question
An organization expands a Cisco ACI Multi-Pod from two to six pods and must ensure that the control plane scales. What should be configured in the IPN to ensure that BUM traffic is forwarded efficiently across the IPN?

A) spine headend replication
B) BIDIR-PIM
C) MP-BGP
D) MSDP
Question
What does the VXLAN source port add to the overlay packet forwarding when it uses the hash of Layer 2, Layer 3, and Layer 4 headers of the inner packet?

A) ECMP
B) TCP optimization
C) disabled fragmentation
D) jumbo frames
Question
<strong> Refer to the exhibits. Which subject must be configured for the All_noSSH contract to allow all IP traffic except SSH between the two EPGs?</strong> A) B) C) D) <div style=padding-top: 35px> <strong> Refer to the exhibits. Which subject must be configured for the All_noSSH contract to allow all IP traffic except SSH between the two EPGs?</strong> A) B) C) D) <div style=padding-top: 35px> Refer to the exhibits. Which subject must be configured for the All_noSSH contract to allow all IP traffic except SSH between the two EPGs?

A) <strong> Refer to the exhibits. Which subject must be configured for the All_noSSH contract to allow all IP traffic except SSH between the two EPGs?</strong> A) B) C) D) <div style=padding-top: 35px>
B) <strong> Refer to the exhibits. Which subject must be configured for the All_noSSH contract to allow all IP traffic except SSH between the two EPGs?</strong> A) B) C) D) <div style=padding-top: 35px>
C) <strong> Refer to the exhibits. Which subject must be configured for the All_noSSH contract to allow all IP traffic except SSH between the two EPGs?</strong> A) B) C) D) <div style=padding-top: 35px>
D) <strong> Refer to the exhibits. Which subject must be configured for the All_noSSH contract to allow all IP traffic except SSH between the two EPGs?</strong> A) B) C) D) <div style=padding-top: 35px>
Question
<strong> Refer to the exhibit. Which two configurations enable inter-VRF communication? (Choose two.)</strong> A) Set the subnet scope to Shared Between VRFs B) Enable Advertise Externally under the subnet scope C) Change the contract scope to Tenant D) Change the subject scope to VRF E) Export the contract and import as a contract interface <div style=padding-top: 35px> Refer to the exhibit. Which two configurations enable inter-VRF communication? (Choose two.)

A) Set the subnet scope to Shared Between VRFs
B) Enable Advertise Externally under the subnet scope
C) Change the contract scope to Tenant
D) Change the subject scope to VRF
E) Export the contract and import as a contract interface
Question
What are two characteristics of Cisco ACI and Spanning Tree Protocol interaction? (Choose two.)

A) When a TCN BPDU is received in a VLAN, Cisco ACI flushes the endpoints for the associated encapsulation.
B) STP BPDUs are dropped due to MCP.
C) MST BPDUs are flooded correctly in Cisco ACI fabric without additional configuration.
D) BPDU filter and BPDU guard can be configured on Cisco ACI leaf edge ports.
E) Cisco ACI must be configured as the STP root for all VLANs.
Question
Cisco ACI fabric is migrated from network-centric mode to application-centric mode. What is possible in an application-centric design?

A) remapping of VLAN pools
B) migration of bare metal servers to virtual machines
C) creation of additional EPGs under one bridge domain
D) Cisco ACI VMM integration with hypervisors
Question
<strong> Refer to the exhibit. Which two configuration steps are required in ISN for Cisco ACI Multi-Site setup? (Choose two.)</strong> A) Connect Spine2 to ISN routers. B) Configure BIDIR-PIM throughout the ISN C) Increase ISN MTU to support the maximum MTU that is sent by endpoints D) Configure OSPF between spines and ISN routers E) Enable IGMPv3 on ISN routers <div style=padding-top: 35px> Refer to the exhibit. Which two configuration steps are required in ISN for Cisco ACI Multi-Site setup? (Choose two.)

A) Connect Spine2 to ISN routers.
B) Configure BIDIR-PIM throughout the ISN
C) Increase ISN MTU to support the maximum MTU that is sent by endpoints
D) Configure OSPF between spines and ISN routers
E) Enable IGMPv3 on ISN routers
Question
An engineer creates the objects that must be deployed at each site in Cisco ACI Multi-Site Orchestrator. Which action should be taken before the schema can be associated with the newly configured site?

A) Attach the templates to the newly configured site
B) Configure a provider for the Cisco ACI Multi-Site Orchestrator
C) Import existing policies from an existing tenant to Cisco ACI Multi-Site Orchestrator
D) Configure the Infra Site-Specific Settings
Question
An engineer configures a new Cisco ACI Multi-Pod and must set up the link between the spine and the IPN device. Which three actions should be taken to accomplish this goal? (Choose three.)

A) Enable MP-BGP routing
B) Enable BIDIR-PIM protocol
C) Enable PIM-SM protocol
D) Enable OSPF routing
E) Enable IS-IS routing
F) Enable DHCP relay
Question
<strong> Refer to the exhibit. A network engineer configures a Layer 4 to Layer 7 device for an outside routed firewall that is connected to POD-1 inside a Cisco ACI fabric that consists of two pods. All traffic from POD-1 or POD-2 that uses the L3Out should pass through the routed firewall. Which Function Type must be implemented in the service graph for POD-2 to use L3Out?</strong> A) GoThrough B) L1 C) GoTo D) L2 <div style=padding-top: 35px> Refer to the exhibit. A network engineer configures a Layer 4 to Layer 7 device for an outside routed firewall that is connected to POD-1 inside a Cisco ACI fabric that consists of two pods. All traffic from POD-1 or POD-2 that uses the L3Out should pass through the routed firewall. Which Function Type must be implemented in the service graph for POD-2 to use L3Out?

A) GoThrough
B) L1
C) GoTo
D) L2
Question
Which firewall connection allows for the integration of service nodes in transparent mode with a Cisco ACI Multi-Pod setup?

A) active-standby mode across pods
B) active-active mode per pods for communication between internal endpoints
C) active-standby mode per pods for communication between endpoints and external networks
D) active-active mode across pods
Question
An organization deploys active-active data centers and active-standby firewalls in each data center. Which action should be taken in a Cisco ACI Multi-Pod to maintain traffic symmetry through the firewalls?

A) Enable Endpoint Dataplane Learning
B) Disable service node Health Tracking
C) Enable Pod ID Aware Redirection
D) Disable Resilient Hashing
Question
An engineer configures a new Cisco ACI Multi-Pod setup. Which action should be taken for fabric discovery to be successful for the nodes in Pod 2?

A) Select the Route Reflector field in Pod Peering
B) Enable the DSCP class-cos translation policy for Layer 3 traffic
C) Configure POD 2 Data Plane TEP under the Pod Connection Profile
D) Add the IPN subnet under the Fabric External Routing Profile
Question
What is a characteristic of a stretched bridge domain solution between Cisco ACI sites with Layer 2 flood disabled?

A) The application profile that is associated to the bridge domain have local significance in each site.
B) The tenant and VRF that associated to the bridge domain have local significance in each site.
C) Headend replication is used for BUM traffic between sites.
D) IP mobility is ensured between sites for disaster recovery.
Question
Where are STP BPDUs flooded in Cisco ACI fabric?

A) in the bridge domain VLAN
B) in the native VLAN ID
C) in the access encapsulation VLAN part of different VLAN pools
D) in the VNID that is assigned to the FD VLAN
Question
<strong> Refer to the exhibit. A customer implements Cisco ACI Multi-Site with default MTU settings between two sites. Which configuration should be applied on the interface Eth1/10 on the ISN-1 device?</strong> A) B) C) D) <div style=padding-top: 35px> Refer to the exhibit. A customer implements Cisco ACI Multi-Site with default MTU settings between two sites. Which configuration should be applied on the interface Eth1/10 on the ISN-1 device?

A) <strong> Refer to the exhibit. A customer implements Cisco ACI Multi-Site with default MTU settings between two sites. Which configuration should be applied on the interface Eth1/10 on the ISN-1 device?</strong> A) B) C) D) <div style=padding-top: 35px>
B) <strong> Refer to the exhibit. A customer implements Cisco ACI Multi-Site with default MTU settings between two sites. Which configuration should be applied on the interface Eth1/10 on the ISN-1 device?</strong> A) B) C) D) <div style=padding-top: 35px>
C) <strong> Refer to the exhibit. A customer implements Cisco ACI Multi-Site with default MTU settings between two sites. Which configuration should be applied on the interface Eth1/10 on the ISN-1 device?</strong> A) B) C) D) <div style=padding-top: 35px>
D) <strong> Refer to the exhibit. A customer implements Cisco ACI Multi-Site with default MTU settings between two sites. Which configuration should be applied on the interface Eth1/10 on the ISN-1 device?</strong> A) B) C) D) <div style=padding-top: 35px>
Question
A network engineer configured an active-active firewall cluster that is stretched across separate pods in the Cisco ACI fabric. Which two implementation setups for anycast services are available? (Choose two.)

A) Modify the Cisco ACI contract scope
B) Modify the MAC address on the second firewall
C) Configure the firewalls behind an EPG subnet
D) Deselect No Default SVI Gateway under EPG Subnet
E) Deploy a Layer 4 to Layer 7 service graph with PBR
Question
<strong> Refer to the exhibit. An engineer extends a Cisco ACI Multi-Pod setup to a Cisco ACI Multi-Site implementation. Which action allows the interconnection?</strong> A) Configure BIDIR-PIM in the IPN and ISN B) Use dedicated uplinks on Site 1 spines for ISN connections C) Connect all spines to the IPN and ISN D) Filter the advertisement of the Site 2 TEP pool into the IPN <div style=padding-top: 35px> Refer to the exhibit. An engineer extends a Cisco ACI Multi-Pod setup to a Cisco ACI Multi-Site implementation. Which action allows the interconnection?

A) Configure BIDIR-PIM in the IPN and ISN
B) Use dedicated uplinks on Site 1 spines for ISN connections
C) Connect all spines to the IPN and ISN
D) Filter the advertisement of the Site 2 TEP pool into the IPN
Question
What are two characteristics of Cisco ACI interaction with MSTP? (Choose two.)

A) A Cisco ACI leaf flushes all local endpoints in the received EPG when an MSTP TCN frame is received.
B) A static path binding is required for native VLAN to carry the MST BPDUs in existing EPGs.
C) Mis-cabling protocol is used to snoop the MSTP TCN packets.
D) A dedicated EPG must be created for the native VLAN ID with static bindings toward the MSTP-enabled switches.
E) The PVST simulation must be configured on external network switches to support MSTP.
Question
In a Cisco ACI Multi-Site fabric, the Inter-Site BUM Traffic Allow option is enabled in a specific stretched bridge domain. What is used to forward BUM traffic to all endpoints in the same broadcast domain?

A) ingress replication on the spines in the source site
B) egress replication on the source leaf switches
C) egress replication on the destination leaf switches
D) ingress replication on the spines in the destination site
Unlock Deck
Sign up to unlock the cards in this deck!
Unlock Deck
Unlock Deck
1/36
auto play flashcards
Play
simple tutorial
Full screen (f)
exit full mode
Deck 21: Automating Cisco Data Center Solutions (DCAUTO)
1
<strong> Refer to the exhibit. Which three actions should be taken to implement the vPC in the Cisco ACI fabric? (Choose three.)</strong> A) Select a common vPC interface policy group B) Select individual interface profiles C) Select common interface profiles D) Select individual switch profiles E) Select common switch profiles Refer to the exhibit. Which three actions should be taken to implement the vPC in the Cisco ACI fabric? (Choose three.)

A) Select a common vPC interface policy group
B) Select individual interface profiles
C) Select common interface profiles
D) Select individual switch profiles
E) Select common switch profiles
Select a common vPC interface policy group
Select individual interface profiles
Select common switch profiles
2
<strong> Refer to the exhibit. What must be configured to allow the PBR node (LB-int) to monitor the availability of the endpoint that is in the EPG server?</strong> A) Endpoint Dataplane Learning B) Unicast Route disabled for client and server bridge domains C) PBR node tracking D) Direct Connect in the service graph template Refer to the exhibit. What must be configured to allow the PBR node (LB-int) to monitor the availability of the endpoint that is in the EPG server?

A) Endpoint Dataplane Learning
B) Unicast Route disabled for client and server bridge domains
C) PBR node tracking
D) Direct Connect in the service graph template
Endpoint Dataplane Learning
3
<strong> Refer to the exhibit. A customer experiences resource overconsumption on one of its border leaf switches. Which action should be taken to reduce the consumption on this switch?</strong> A) Disable VRF Policy Control Enforcement B) Disable IP Data Plane Learning C) Migrate L3Outs to another switch D) Disable Remote EP Learning Refer to the exhibit. A customer experiences resource overconsumption on one of its border leaf switches. Which action should be taken to reduce the consumption on this switch?

A) Disable VRF Policy Control Enforcement
B) Disable IP Data Plane Learning
C) Migrate L3Outs to another switch
D) Disable Remote EP Learning
Disable IP Data Plane Learning
4
<strong> Refer to the exhibit. What must be configured in the service graph to redirect HTTP traffic between the EPG client and EPG server to go through the Cisco ASA firewall?</strong> A) contract filter to allow ARP and HTTP B) precise filter to allow only HTTP traffic C) contract with no filter D) permit-all contract filter Refer to the exhibit. What must be configured in the service graph to redirect HTTP traffic between the EPG client and EPG server to go through the Cisco ASA firewall?

A) contract filter to allow ARP and HTTP
B) precise filter to allow only HTTP traffic
C) contract with no filter
D) permit-all contract filter
Unlock Deck
Unlock for access to all 36 flashcards in this deck.
Unlock Deck
k this deck
5
<strong> Refer to the exhibit. How is the ARP request from VM1 forwarded when VM2 is not learned in the Cisco ACI fabric?</strong> A) Leaf 101 forwards the ARP request to one of the proxy VTEP spines. B) POD1 spine responds to the ARP request after the POD1 COOP is updated with the VM2 location. C) Leaf 101 encapsulates the ARP request into a multicast packet that is destined to 225.0.37.192. D) Leaf 101 switch consumes the ARP reply of VM2 to update the local endpoint table. Refer to the exhibit. How is the ARP request from VM1 forwarded when VM2 is not learned in the Cisco ACI fabric?

A) Leaf 101 forwards the ARP request to one of the proxy VTEP spines.
B) POD1 spine responds to the ARP request after the POD1 COOP is updated with the VM2 location.
C) Leaf 101 encapsulates the ARP request into a multicast packet that is destined to 225.0.37.192.
D) Leaf 101 switch consumes the ARP reply of VM2 to update the local endpoint table.
Unlock Deck
Unlock for access to all 36 flashcards in this deck.
Unlock Deck
k this deck
6
Which two components must be configured as stretched to establish intra-VRF communication between two EPGs that are deployed in different sites and different bridge domains? (Choose two.)

A) contract
B) tenant
C) application profile
D) bridge domain
E) EPG
Unlock Deck
Unlock for access to all 36 flashcards in this deck.
Unlock Deck
k this deck
7
<strong> Refer to the exhibit. Which configuration mode must be selected for the VMM vSwitch Port Channel policy to avoid MAC flapping on the Cisco UCS Fls and Cisco ACI leaf switches?</strong> A) LACP Passive B) MAC Pinning C) LACP Active D) Static Channel - Mode On Refer to the exhibit. Which configuration mode must be selected for the VMM vSwitch Port Channel policy to avoid MAC flapping on the Cisco UCS Fls and Cisco ACI leaf switches?

A) LACP Passive
B) MAC Pinning
C) LACP Active
D) Static Channel - Mode On
Unlock Deck
Unlock for access to all 36 flashcards in this deck.
Unlock Deck
k this deck
8
An engineer designs a Cisco ACI Multi-Pod solution that requires a pair of active-standby firewalls in different pods for external connectivity. How should the firewalls be implemented?

A) PBR for routed firewalls
B) separate L3Out peerings for routed firewalls
C) routed firewall for the default gateway
D) transparent firewalls
Unlock Deck
Unlock for access to all 36 flashcards in this deck.
Unlock Deck
k this deck
9
What is the purpose of the Forwarding Tag (FTAG) in Cisco ACI?

A) FTAG is used in Cisco ACI to add a label to the iVXLAN traffic in the fabric to apply the correct policy.
B) FTAG is used in Cisco ACI to add a label to the VXLAN traffic in the fabric to apply the correct policy.
C) FTAG trees in Cisco ACI are used to load balance unicast traffic.
D) FTAG trees in Cisco ACI are used to load balance mutli-destination traffic.
Unlock Deck
Unlock for access to all 36 flashcards in this deck.
Unlock Deck
k this deck
10
An engineer must limit local and remote endpoint learning to the bridge domain subnet. Which action should be taken inside the Cisco APIC?

A) Disable Remote EP Learn
B) Enable Enforce Subnet Check
C) Disable Endpoint Dataplane Learning
D) Enable Limit IP Learning to Subnet
Unlock Deck
Unlock for access to all 36 flashcards in this deck.
Unlock Deck
k this deck
11
Which two actions should be taken to ensure a scalable solution when multiple EPGs in a VRF require unrestricted communication? (Choose two.)

A) Configure a taboo contract between the EPGs that require unrestricted communication between each other.
B) Enable Preferred Group Member under the EPG Collection for VRF section.
C) Set the VRF policy control enforcement preference to Unenforced.
D) Set the EPGs that require unrestricted communication between each other as preferred group members.
E) Set the EPGs that require policy enforcement between each other as preferred group members.
Unlock Deck
Unlock for access to all 36 flashcards in this deck.
Unlock Deck
k this deck
12
<strong> Refer to the exhibit. Which configuration must be implemented on L3Out EBGP to advertise out of the fabric 172.16.2.0/24 network that is learned from L3Out OSPF?</strong> A) B) C) D) Refer to the exhibit. Which configuration must be implemented on L3Out EBGP to advertise out of the fabric 172.16.2.0/24 network that is learned from L3Out OSPF?

A) <strong> Refer to the exhibit. Which configuration must be implemented on L3Out EBGP to advertise out of the fabric 172.16.2.0/24 network that is learned from L3Out OSPF?</strong> A) B) C) D)
B) <strong> Refer to the exhibit. Which configuration must be implemented on L3Out EBGP to advertise out of the fabric 172.16.2.0/24 network that is learned from L3Out OSPF?</strong> A) B) C) D)
C) <strong> Refer to the exhibit. Which configuration must be implemented on L3Out EBGP to advertise out of the fabric 172.16.2.0/24 network that is learned from L3Out OSPF?</strong> A) B) C) D)
D) <strong> Refer to the exhibit. Which configuration must be implemented on L3Out EBGP to advertise out of the fabric 172.16.2.0/24 network that is learned from L3Out OSPF?</strong> A) B) C) D)
Unlock Deck
Unlock for access to all 36 flashcards in this deck.
Unlock Deck
k this deck
13
A cloud provider must make a pair of firewalls available to all tenants. Each tenant defines its own service graph. Where should the Layer 4 to Layer 7 service be configured to accomplish this goal?

A) management tenant
B) infrastructure tenant
C) user tenant
D) common tenant
Unlock Deck
Unlock for access to all 36 flashcards in this deck.
Unlock Deck
k this deck
14
Which feature should be disabled on a bridge domain when a default gateway for endpoints is on an external device instead of a Cisco ACI bridge domain SVI?

A) unicast routing
B) ARP flooding
C) unknown unicast flooding
D) proxy ARP
Unlock Deck
Unlock for access to all 36 flashcards in this deck.
Unlock Deck
k this deck
15
<strong> Refer to the exhibit. Which configuration must be implemented to allow intra-VRF transit routing between the two external routers?</strong> A) Deploy both areas under the same L3Out policy B) Change one of the areas to area 0 C) Configure OSPF virtual links D) Modify L3Out 1 to use the same OSPF area as L3Out 2 Refer to the exhibit. Which configuration must be implemented to allow intra-VRF transit routing between the two external routers?

A) Deploy both areas under the same L3Out policy
B) Change one of the areas to area 0
C) Configure OSPF virtual links
D) Modify L3Out 1 to use the same OSPF area as L3Out 2
Unlock Deck
Unlock for access to all 36 flashcards in this deck.
Unlock Deck
k this deck
16
<strong> Refer to the exhibit. The 0.0.0.0/0 is configured as a default static route on L3Out-1. Which action should be taken for the 0.0.0.0/0 prefix to advertise out on L3Out-2 OSPF?</strong> A) Enable Shared Security Import Subnet B) Enable Aggregate Export Subnet C) Enable Shared Route Control Subnet D) Enable Export Route Control Subnet Refer to the exhibit. The 0.0.0.0/0 is configured as a default static route on L3Out-1. Which action should be taken for the 0.0.0.0/0 prefix to advertise out on L3Out-2 OSPF?

A) Enable Shared Security Import Subnet
B) Enable Aggregate Export Subnet
C) Enable Shared Route Control Subnet
D) Enable Export Route Control Subnet
Unlock Deck
Unlock for access to all 36 flashcards in this deck.
Unlock Deck
k this deck
17
An organization expands a Cisco ACI Multi-Pod from two to six pods and must ensure that the control plane scales. What should be configured in the IPN to ensure that BUM traffic is forwarded efficiently across the IPN?

A) spine headend replication
B) BIDIR-PIM
C) MP-BGP
D) MSDP
Unlock Deck
Unlock for access to all 36 flashcards in this deck.
Unlock Deck
k this deck
18
What does the VXLAN source port add to the overlay packet forwarding when it uses the hash of Layer 2, Layer 3, and Layer 4 headers of the inner packet?

A) ECMP
B) TCP optimization
C) disabled fragmentation
D) jumbo frames
Unlock Deck
Unlock for access to all 36 flashcards in this deck.
Unlock Deck
k this deck
19
<strong> Refer to the exhibits. Which subject must be configured for the All_noSSH contract to allow all IP traffic except SSH between the two EPGs?</strong> A) B) C) D) <strong> Refer to the exhibits. Which subject must be configured for the All_noSSH contract to allow all IP traffic except SSH between the two EPGs?</strong> A) B) C) D) Refer to the exhibits. Which subject must be configured for the All_noSSH contract to allow all IP traffic except SSH between the two EPGs?

A) <strong> Refer to the exhibits. Which subject must be configured for the All_noSSH contract to allow all IP traffic except SSH between the two EPGs?</strong> A) B) C) D)
B) <strong> Refer to the exhibits. Which subject must be configured for the All_noSSH contract to allow all IP traffic except SSH between the two EPGs?</strong> A) B) C) D)
C) <strong> Refer to the exhibits. Which subject must be configured for the All_noSSH contract to allow all IP traffic except SSH between the two EPGs?</strong> A) B) C) D)
D) <strong> Refer to the exhibits. Which subject must be configured for the All_noSSH contract to allow all IP traffic except SSH between the two EPGs?</strong> A) B) C) D)
Unlock Deck
Unlock for access to all 36 flashcards in this deck.
Unlock Deck
k this deck
20
<strong> Refer to the exhibit. Which two configurations enable inter-VRF communication? (Choose two.)</strong> A) Set the subnet scope to Shared Between VRFs B) Enable Advertise Externally under the subnet scope C) Change the contract scope to Tenant D) Change the subject scope to VRF E) Export the contract and import as a contract interface Refer to the exhibit. Which two configurations enable inter-VRF communication? (Choose two.)

A) Set the subnet scope to Shared Between VRFs
B) Enable Advertise Externally under the subnet scope
C) Change the contract scope to Tenant
D) Change the subject scope to VRF
E) Export the contract and import as a contract interface
Unlock Deck
Unlock for access to all 36 flashcards in this deck.
Unlock Deck
k this deck
21
What are two characteristics of Cisco ACI and Spanning Tree Protocol interaction? (Choose two.)

A) When a TCN BPDU is received in a VLAN, Cisco ACI flushes the endpoints for the associated encapsulation.
B) STP BPDUs are dropped due to MCP.
C) MST BPDUs are flooded correctly in Cisco ACI fabric without additional configuration.
D) BPDU filter and BPDU guard can be configured on Cisco ACI leaf edge ports.
E) Cisco ACI must be configured as the STP root for all VLANs.
Unlock Deck
Unlock for access to all 36 flashcards in this deck.
Unlock Deck
k this deck
22
Cisco ACI fabric is migrated from network-centric mode to application-centric mode. What is possible in an application-centric design?

A) remapping of VLAN pools
B) migration of bare metal servers to virtual machines
C) creation of additional EPGs under one bridge domain
D) Cisco ACI VMM integration with hypervisors
Unlock Deck
Unlock for access to all 36 flashcards in this deck.
Unlock Deck
k this deck
23
<strong> Refer to the exhibit. Which two configuration steps are required in ISN for Cisco ACI Multi-Site setup? (Choose two.)</strong> A) Connect Spine2 to ISN routers. B) Configure BIDIR-PIM throughout the ISN C) Increase ISN MTU to support the maximum MTU that is sent by endpoints D) Configure OSPF between spines and ISN routers E) Enable IGMPv3 on ISN routers Refer to the exhibit. Which two configuration steps are required in ISN for Cisco ACI Multi-Site setup? (Choose two.)

A) Connect Spine2 to ISN routers.
B) Configure BIDIR-PIM throughout the ISN
C) Increase ISN MTU to support the maximum MTU that is sent by endpoints
D) Configure OSPF between spines and ISN routers
E) Enable IGMPv3 on ISN routers
Unlock Deck
Unlock for access to all 36 flashcards in this deck.
Unlock Deck
k this deck
24
An engineer creates the objects that must be deployed at each site in Cisco ACI Multi-Site Orchestrator. Which action should be taken before the schema can be associated with the newly configured site?

A) Attach the templates to the newly configured site
B) Configure a provider for the Cisco ACI Multi-Site Orchestrator
C) Import existing policies from an existing tenant to Cisco ACI Multi-Site Orchestrator
D) Configure the Infra Site-Specific Settings
Unlock Deck
Unlock for access to all 36 flashcards in this deck.
Unlock Deck
k this deck
25
An engineer configures a new Cisco ACI Multi-Pod and must set up the link between the spine and the IPN device. Which three actions should be taken to accomplish this goal? (Choose three.)

A) Enable MP-BGP routing
B) Enable BIDIR-PIM protocol
C) Enable PIM-SM protocol
D) Enable OSPF routing
E) Enable IS-IS routing
F) Enable DHCP relay
Unlock Deck
Unlock for access to all 36 flashcards in this deck.
Unlock Deck
k this deck
26
<strong> Refer to the exhibit. A network engineer configures a Layer 4 to Layer 7 device for an outside routed firewall that is connected to POD-1 inside a Cisco ACI fabric that consists of two pods. All traffic from POD-1 or POD-2 that uses the L3Out should pass through the routed firewall. Which Function Type must be implemented in the service graph for POD-2 to use L3Out?</strong> A) GoThrough B) L1 C) GoTo D) L2 Refer to the exhibit. A network engineer configures a Layer 4 to Layer 7 device for an outside routed firewall that is connected to POD-1 inside a Cisco ACI fabric that consists of two pods. All traffic from POD-1 or POD-2 that uses the L3Out should pass through the routed firewall. Which Function Type must be implemented in the service graph for POD-2 to use L3Out?

A) GoThrough
B) L1
C) GoTo
D) L2
Unlock Deck
Unlock for access to all 36 flashcards in this deck.
Unlock Deck
k this deck
27
Which firewall connection allows for the integration of service nodes in transparent mode with a Cisco ACI Multi-Pod setup?

A) active-standby mode across pods
B) active-active mode per pods for communication between internal endpoints
C) active-standby mode per pods for communication between endpoints and external networks
D) active-active mode across pods
Unlock Deck
Unlock for access to all 36 flashcards in this deck.
Unlock Deck
k this deck
28
An organization deploys active-active data centers and active-standby firewalls in each data center. Which action should be taken in a Cisco ACI Multi-Pod to maintain traffic symmetry through the firewalls?

A) Enable Endpoint Dataplane Learning
B) Disable service node Health Tracking
C) Enable Pod ID Aware Redirection
D) Disable Resilient Hashing
Unlock Deck
Unlock for access to all 36 flashcards in this deck.
Unlock Deck
k this deck
29
An engineer configures a new Cisco ACI Multi-Pod setup. Which action should be taken for fabric discovery to be successful for the nodes in Pod 2?

A) Select the Route Reflector field in Pod Peering
B) Enable the DSCP class-cos translation policy for Layer 3 traffic
C) Configure POD 2 Data Plane TEP under the Pod Connection Profile
D) Add the IPN subnet under the Fabric External Routing Profile
Unlock Deck
Unlock for access to all 36 flashcards in this deck.
Unlock Deck
k this deck
30
What is a characteristic of a stretched bridge domain solution between Cisco ACI sites with Layer 2 flood disabled?

A) The application profile that is associated to the bridge domain have local significance in each site.
B) The tenant and VRF that associated to the bridge domain have local significance in each site.
C) Headend replication is used for BUM traffic between sites.
D) IP mobility is ensured between sites for disaster recovery.
Unlock Deck
Unlock for access to all 36 flashcards in this deck.
Unlock Deck
k this deck
31
Where are STP BPDUs flooded in Cisco ACI fabric?

A) in the bridge domain VLAN
B) in the native VLAN ID
C) in the access encapsulation VLAN part of different VLAN pools
D) in the VNID that is assigned to the FD VLAN
Unlock Deck
Unlock for access to all 36 flashcards in this deck.
Unlock Deck
k this deck
32
<strong> Refer to the exhibit. A customer implements Cisco ACI Multi-Site with default MTU settings between two sites. Which configuration should be applied on the interface Eth1/10 on the ISN-1 device?</strong> A) B) C) D) Refer to the exhibit. A customer implements Cisco ACI Multi-Site with default MTU settings between two sites. Which configuration should be applied on the interface Eth1/10 on the ISN-1 device?

A) <strong> Refer to the exhibit. A customer implements Cisco ACI Multi-Site with default MTU settings between two sites. Which configuration should be applied on the interface Eth1/10 on the ISN-1 device?</strong> A) B) C) D)
B) <strong> Refer to the exhibit. A customer implements Cisco ACI Multi-Site with default MTU settings between two sites. Which configuration should be applied on the interface Eth1/10 on the ISN-1 device?</strong> A) B) C) D)
C) <strong> Refer to the exhibit. A customer implements Cisco ACI Multi-Site with default MTU settings between two sites. Which configuration should be applied on the interface Eth1/10 on the ISN-1 device?</strong> A) B) C) D)
D) <strong> Refer to the exhibit. A customer implements Cisco ACI Multi-Site with default MTU settings between two sites. Which configuration should be applied on the interface Eth1/10 on the ISN-1 device?</strong> A) B) C) D)
Unlock Deck
Unlock for access to all 36 flashcards in this deck.
Unlock Deck
k this deck
33
A network engineer configured an active-active firewall cluster that is stretched across separate pods in the Cisco ACI fabric. Which two implementation setups for anycast services are available? (Choose two.)

A) Modify the Cisco ACI contract scope
B) Modify the MAC address on the second firewall
C) Configure the firewalls behind an EPG subnet
D) Deselect No Default SVI Gateway under EPG Subnet
E) Deploy a Layer 4 to Layer 7 service graph with PBR
Unlock Deck
Unlock for access to all 36 flashcards in this deck.
Unlock Deck
k this deck
34
<strong> Refer to the exhibit. An engineer extends a Cisco ACI Multi-Pod setup to a Cisco ACI Multi-Site implementation. Which action allows the interconnection?</strong> A) Configure BIDIR-PIM in the IPN and ISN B) Use dedicated uplinks on Site 1 spines for ISN connections C) Connect all spines to the IPN and ISN D) Filter the advertisement of the Site 2 TEP pool into the IPN Refer to the exhibit. An engineer extends a Cisco ACI Multi-Pod setup to a Cisco ACI Multi-Site implementation. Which action allows the interconnection?

A) Configure BIDIR-PIM in the IPN and ISN
B) Use dedicated uplinks on Site 1 spines for ISN connections
C) Connect all spines to the IPN and ISN
D) Filter the advertisement of the Site 2 TEP pool into the IPN
Unlock Deck
Unlock for access to all 36 flashcards in this deck.
Unlock Deck
k this deck
35
What are two characteristics of Cisco ACI interaction with MSTP? (Choose two.)

A) A Cisco ACI leaf flushes all local endpoints in the received EPG when an MSTP TCN frame is received.
B) A static path binding is required for native VLAN to carry the MST BPDUs in existing EPGs.
C) Mis-cabling protocol is used to snoop the MSTP TCN packets.
D) A dedicated EPG must be created for the native VLAN ID with static bindings toward the MSTP-enabled switches.
E) The PVST simulation must be configured on external network switches to support MSTP.
Unlock Deck
Unlock for access to all 36 flashcards in this deck.
Unlock Deck
k this deck
36
In a Cisco ACI Multi-Site fabric, the Inter-Site BUM Traffic Allow option is enabled in a specific stretched bridge domain. What is used to forward BUM traffic to all endpoints in the same broadcast domain?

A) ingress replication on the spines in the source site
B) egress replication on the source leaf switches
C) egress replication on the destination leaf switches
D) ingress replication on the spines in the destination site
Unlock Deck
Unlock for access to all 36 flashcards in this deck.
Unlock Deck
k this deck
locked card icon
Unlock Deck
Unlock for access to all 36 flashcards in this deck.
QuizPlus
surly
Quizplus
Work With Us
Policies
Download the App
Scan to downloadDownload the App
qr-code
Links
Links
Work With Us
Download the App
surly
English
English
العربية
Scan to downloadDownload the App
qr-code

English
English
العربية
Copyright © 2025 Quizplus LLC.
  • facebook-footer
  • instagram-footer
  • x-footer
  • tiktok
  • Linktree