Implementing Cisco Application Centric Infrastructure - Advanced v1.0

Page:    1 / 8   
Exam contains 120 questions
Expand All


Refer to the exhibit. Which configuration must be implemented on L3Out EBGP to advertise out of the fabric 172.16.2.0/24 network that is learned from L3Out
OSPF?
A.

B.

C.

D.



Answer : A


Refer to the exhibit. The 0.0.0.0/0 is configured as a default static route on L3Out-1. Which action should be taken for the 0.0.0.0/0 prefix to advertise out on
L3Out-2 OSPF?

  • A. Enable Shared Security Import Subnet
  • B. Enable Aggregate Export Subnet
  • C. Enable Shared Route Control Subnet
  • D. Enable Export Route Control Subnet


Answer : B


Refer to the exhibit. Which configuration must be implemented to allow intra-VRF transit routing between the two external routers?

  • A. Deploy both areas under the same L3Out policy
  • B. Change one of the areas to area 0
  • C. Configure OSPF virtual links
  • D. Modify L3Out 1 to use the same OSPF area as L3Out 2


Answer : A


Refer to the exhibit. Which configuration mode must be selected for the VMM vSwitch Port Channel policy to avoid MAC flapping on the Cisco UCS Fls and Cisco
ACI leaf switches?

  • A. LACP Passive
  • B. MAC Pinning
  • C. LACP Active
  • D. Static Channel ג€" Mode On


Answer : B

A cloud provider must make a pair of firewalls available to all tenants. Each tenant defines its own service graph. Where should the Layer 4 to Layer 7 service be configured to accomplish this goal?

  • A. management tenant
  • B. infrastructure tenant
  • C. user tenant
  • D. common tenant


Answer : C


Refer to the exhibit. A customer experiences resource overconsumption on one of its border leaf switches. Which action should be taken to reduce the consumption on this switch?

  • A. Disable VRF Policy Control Enforcement
  • B. Disable IP Data Plane Learning
  • C. Migrate L3Outs to another switch
  • D. Disable Remote EP Learning


Answer : B

Which feature should be disabled on a bridge domain when a default gateway for endpoints is on an external device instead of a Cisco ACI bridge domain SVI?

  • A. unicast routing
  • B. ARP flooding
  • C. unknown unicast flooding
  • D. proxy ARP


Answer : C

An engineer created a Cisco ACI environment in which multiple tenants reuse the same contract. The requirement is to prevent inter-tenant communication. Which action meets this requirement?

  • A. Create the contract in the user tenant with the scope set to VRF and exported to other tenants
  • B. Create the contract in the common tenant with the scope set to Tenant
  • C. Create the contract in the user tenant with the scope set to Global and exported to other tenants
  • D. Create the contract in the common tenant with the scope set to Global


Answer : B


Refer to the exhibit. The client endpoint uses the load-balancer VIP as the destination address to send traffic to the server endpoint. If the load balancer does not do source NAT, which set of configurations must be applied on Cisco ACI to allow only the return traffic to be redirected to the service node?
A.
✑ Create a contract with a filter matching `IP` only
✑ Create a L4-L7 device, function type `GoTo`
✑ Create a L4-L7 Policy-Based Redirect Policy with the L3 Destination set to the load-balancer inside IP/MAC
✑ Create a service graph template that references the previously created contract and L4-L7 device
✑ Apply the service graph template. Select `L3 Destination` and reference L4-L7 Policy-Based Redirect Policy on the provider connector only
B.
✑ Create a contract linked to the common/default filter
✑ Create a L4-L7 device, function type `GoThrough`
✑ Create a L4-L7 Policy-Based Redirect Policy with the L3 Destination set to the load-balancer inside IP/MAC
✑ Create a service graph template that references the previously created contract and L4-L7 device
✑ Apply the service graph template. Select `L3 Destination` and reference L4-L7 Policy-Based Redirect Policy on the consumer and provider connector
C.
✑ Create a contract linked to the common/default filter
Create a L4-L7 device, function type `GoTo`

✑ Create a L4-L7 Policy-Based Redirect Policy with `Anycast Endpoint` enabled and the L3 Destination set to the load-balancer inside IP/MAC
✑ Create a service graph template that references the previously created contract and L4-L7 device
✑ Apply the service graph template. Select `L3 Destination` and reference L4-L7 Policy-Based Redirect Policy on the consumer connector only
D.
✑ Create a contract with a filter matching `IP` only
✑ Create a L4-L7 device, function type `GoThrough`
✑ Create a L4-L7 Policy-Based Redirect Policy with `Anycast Endpoint` enabled and the L3 Destination set to the load-balancer inside IP/MAC
✑ Create a service graph template that references the previously created contract and L4-L7 device
✑ Apply the service graph template. Select `L3 Destination` and reference L4-L7 Policy-Based Redirect Policy on the consumer and provider



Answer : D

A customer is deploying a new application across two ACI pods that is sensitive to latency and jitter. The application sets the DSCP values of packets to AF31 and
CS6, respectively. Which configuration changes must be made on the APIC to support the new application and prevent packets from being delayed or dropped between pods?

  • A. disable DSCP translation policy
  • B. align the ACI QoS levels and IPN QoS policies
  • C. disable DSCP mapping on the IPN devices
  • D. align the custom QoS policy on the EPG site in the customer tenant


Answer : D

Reference:
https://www.ciscolive.com/c/dam/r/ciscolive/emea/docs/2019/pdf/BRKACI-2210.pdf

As part of a newly deployed ACI fabric, a pair of border leaf switches have been deployed to provide shared services for all tenants. The configured L3Out runs
OSPF as the routing protocol. The requirement is to advertise the routes from the border leaf switches to the compute leaf switches. Which configuration must be implemented to meet these requirements?

  • A. Configure a BGP route reflector policy for the Cisco ACI pod
  • B. Define the shared L3Out in the common tenant
  • C. Enable Import Route Control Enforcement in the L3Out policy
  • D. Define the consumer subnet under the consumer EPG


Answer : A

Reference:
https://www.cisco.com/c/en/us/solutions/collateral/data-center-virtualization/application-centric-infrastructure/guide-c07-743150.html

An engineer must allow routes learned from one L3Out to be advertised out another L3Out. The engineer does not have an explicit list of all the routes that must be advertised out, however, they know that they are all part of the 10.16.0.0/16 CIDR block. Which attributes must be selected under Ext-EPG to allow the necessary routes to be advertised out?

  • A. Enable Export Route Control Subnet and enable Aggregate Export
  • B. Disable Shared Route Control Subnet and enable Aggregate Shared Routes
  • C. Enable Export Route Control Subnet and disable Aggregate Shared Routes
  • D. Enable Export Route Control Subnet and enable Shared Route Control Subnet


Answer : A

Reference:
https://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/1-x/ACI_Best_Practices/b_ACI_Best_Practices/ b_ACI_Best_Practices_chapter_01001.html

An organization expands a Cisco ACI Multi-Pod from two to six pods and must ensure that the control plane scales. What should be configured in the IPN to ensure that BUM traffic is forwarded efficiently across the IPN?

  • A. spine headend replication
  • B. BIDIR-PIM
  • C. MP-BGP
  • D. MSDP


Answer : B

Reference:
https://www.cisco.com/c/en/us/solutions/collateral/data-center-virtualization/application-centric-infrastructure/white-paper-c11-737855.html

An engineer designs a Cisco ACI Multi-Pod solution that requires a pair of active-standby firewalls in different pods for external connectivity. How should the firewalls be implemented?

  • A. PBR for routed firewalls
  • B. separate L3Out peerings for routed firewalls
  • C. routed firewall for the default gateway
  • D. transparent firewalls


Answer : D

Reference:
https://www.cisco.com/c/en/us/solutions/collateral/data-center-virtualization/application-centric-infrastructure/white-paper-c11-739571.html

How is broadcast forwarded in Cisco ACI Multi-Pod after ARP flooding is enabled?

  • A. For the specific bridge domain, all spines forward the broadcast frames to IPN routers
  • B. Broadcast frames are forwarded inside the pod and across the IPN using the multicast address that is associated to the bridge domain
  • C. Within a pod, the ingress leaf switch floods the broadcast frame on all fabric ports
  • D. Ingress replication is used on the spines to forward broadcast frames in the IPN infrastructure


Answer : A

Page:    1 / 8   
Exam contains 120 questions
Expand All

Talk to us!

Have any questions or issues ? Please dont hesitate to contact us

[email protected]

Certlibrary.com is owned by MBS Tech Limited: Room 1905 Nam Wo Hong Building, 148 Wing Lok Street, Sheung Wan, Hong Kong. Company registration number: 2310926
Certlibrary doesn't offer Real Microsoft Exam Questions. Certlibrary Materials do not contain actual questions and answers from Cisco's Certification Exams.
CFA Institute does not endorse, promote or warrant the accuracy or quality of Certlibrary. CFA® and Chartered Financial Analyst® are registered trademarks owned by CFA Institute.
Terms & Conditions | Privacy Policy