300-620 Online Practice Questions and Answers

An engineer is extending EPG connectivity to an external network. The external network houses the Layer 3 gateway and other end hosts. Which ACI bridge domain configuration should be used?

A. Forwarding: Custom L2 Unknown Unicast: Hardware Proxy L3 Unknown Multicast Flooding: Flood Multi Destination Flooding: Flood in BD ARP Flooding: Enabled

B. Forwarding: Custom L2 Unknown Unicast: Flood L3 Unknown Multicast Flooding: Flood Multi Destination Flooding: Flood in BD ARP Flooding: Enabled

C. Forwarding: Custom L2 Unknown Unicast: Hardware Proxy L3 Unknown Multicast Flooding: Flood Multi Destination Flooding: Flood in BD ARP Flooding: Disabled

D. Forwarding: Custom L2 Unknown Unicast: Flood L3 Unknown Multicast Flooding: Flood Multi Destination Flooding: Flood in BD ARP Flooding: Disabled

The Application team reports that a previously existing port group has disappeared from vCenter. An engineer confirms that the VMM domain association for the EPG is no longer present. Which action determines which user is responsible for the change?

A. Check the EPG audit logs for the "deletion" action and compare the affected object and user.

B. Evaluate the potential faults that are raised for that EPG.

C. Examine the health score and drill down to an object that affects the EPG combined score.

D. Inspect the server logs to see who was logging in to the APIC during the last few hours.

A customer must upgrade the Cisco ACI fabric to use a feature from the new code release. However, there is no direct path from the current release to the desired one. Based on the Cisco APIC Upgrade/Downgrade Support Matrix, the administrator must go through one intermediate release.

Which set of steps must be taken to upgrade the fabric to the new release?

A. 1. Upgrade the APICs to an interim release.

2.

Upgrade the switches to an interim release.

3.

Upgrade the APICs to the targeted release.

4.

Upgrade the leaf and spine switches to the targeted release.

B. 1. Upgrade the APICs to an interim release and then switches to an interim release.

2.

When all switches are operational, upgrade leaf switches to the targeted release.

3.

Upgrade the spine switches to the targeted release.

4.

Upgrade the APICs to the targeted release.

C. 1. Upgrade the APICs to an interim release.

2.

Upgrade the leaf switches directly to the targeted release.

3.

Upgrade the spine switches directly to the targeted release.

4.

Upgrade the APICs to the targeted release.

D. 1. Upgrade the APICs directly to the targeted release.

2.

Upgrade the switches to an interim release.

3.

When all switches are operational, upgrade the leaf switches to the targeted release.

4.

Upgrade the spine switches to the targeted release.

Refer to the exhibit.

A Cisco ACI environment hosts two e-commerce applications. The default contract from a common tenant between different application tiers is used, and the applications work as expected. The customer wants to move to more specific contracts to prevent unwanted traffic between EPGs. A network administrator creates the app-to-db contract to meet this objective for the application and database tiers. The application EPGs must communicate only with their respective database EPGs. How should this contract be configured to meet this requirement?

A. Set the app-to-db scope to Global.

B. Set the app-to-db scope to Application Profile.

C. Implement the app-to-db scope as VRF.

D. Implement the app-to-db as a Taboo contract.

An engineer must configure a Layer 3 connection to the WAN router. The hosts in production VRF must access WAN subnets. The engineer associates EPGs in the production VRF with the external routed domain. Which action completes the task?

A. Configure the Export Route Control Subnet scope for the external EPG.

B. Configure the External Subnets for the External EPG scope for the external EPG.

C. Configure the Import Route Control Subnet scope for the external EPG.

D. Configure the Shared Route Control Subnet scope for the external EPG.

What two actions should be taken to deploy a new Cisco ACI Multi-Pod setup? (Choose two.)

A. Configure MP-BGP on IPN routers that face the Cisco ACI spines.

B. Connect all spines to the IPN.

C. Configure anycast RP for the underlying multicast protocol

D. Configure the TEP pool of the new pod to be routable across the IPN.

E. Increase interface MTU for all IPN routers to support VXLAN traffic.

Refer to the exhibit.

An administrator configures inter-VRF route leaking between Production:vrf-prod and Non-Production:vrf-nonprod. However, the route in the Non-Production:vrf-nonprod VRF to the production tenant is missing. Which action resolves the VRF route leaking issue?

A. Change the contract scope to Global.

B. Enable the Shared between VRFs option for the BD subnet in the production VRF.

C. Enable the Shared between VRFs option for the EPG subnet in the non-production VRF.

D. Export the contract from provider to consumer tenant.

Refer to the exhibit.

A network engineer deploys Cisco APIC for the first time. Which connectivity type must be used to connect a Cisco ACI APIC node to connect to an out-of-band segment?

A. 4. 1-Gb Ethernet dedicated management port

B. 5. Serial port (RJ-45 connector)

C. 9. VIC 1455 with external 10/25-Gigabit Ethernet ports

D. 2. Dual 1-Gb/10-Gb Ethernet ports (LAN1 and LAN2)

Refer to the exhibit.

A load balancer is connected to the Cisco ACI fabric using a single interface. The load balancer is performing source and destination NAT. A service graph is configured on the Cisco ACI. Which action must be taken to allow traffic from host A to pass through the load balancer before reaching host B?

A. Apply PBR on contract between the load balancer and application EPGs.

B. Disable unicast routing on the bridge domain BD_2.

C. Configure limit IP learning to subnet on BD_3.

D. Set the default gateway for host B on the load balancer.

An engineer must configure Cisco ACI for VMM integration to VMware vCenter. Which two attributes must be configured on the Cisco APIC to achieve this goal? (Choose two.)

A. cluster name

B. virtual switch name

C. data center name

D. port group

E. logon credentials