Practice Free Cisco 300-620 Exam Questions Online, 300-620 Free Demo

Question 1 Selectable Answer

Refer to the exhibit.

Which Adjacency Type value should be set when the client endpoint and the service node interface are in a different subnet?

A. Routed
B. Unicast
C. L3Out
D. L3

Answer:

Question 2 Selectable Answer

An engineer must perform a Cisco ACI fabric upgrade that minimizes the impact on user traffic and allows only permitted users to perform an upgrade.
Which two configuration steps should be taken to meet these requirements?

A. Divide Cisco APIC controllers into two or more maintenance groups.
B. Grant tenant-ext-admin access to a user who performs an upgrade
C. Combine all switches into an upgrade group.
D. Divide switches into two or more maintenance groups.
E. Grant the fabric administrator role to a user who performs an upgrade.

Answer:
Explanation:
Reference: https://www.cisco.com/c/en/us/td/docs/dcn/whitepapers/cisco-application-centric-infrastructure-design-guide.html

Question 3 Selectable Answer

What is the purpose of the Overlay Multicast TEP in a Cisco ACI Multi-Site deployment?

A. to source and receive unicast VXLAN data plane traffic
B. to establish MP-BGP EVPN adjacencies with the spine nodes in remote sites
C. to encapsulate multicast traffic in a common multicast group
D. to perform head-end replication for BUM traffic

Answer:

Question 4 Selectable Answer

An engineer needs to deploy a leaf access port policy group in ACI Fabric to support the following requirements:
• Control the amount of application data flowing into the system
• Allow the newly connected device to auto-negotiate link speed with the leaf switch.
Which two ACI policies must be configured to achieve these requirements? (Choose two.)

A. L2 interface policy
B. link level policy
C. slow drain policy
D. ingress control plane policing policy
E. ingress data plane policing policy

Answer:
Explanation:

Slow Drain handles FCoE packets that are causing traffic congestion on ACI fabric. So, it is wrong.
Ingress control plane is wrong, because the request is for “application data flowing”.
L2 interface policy is concerned about QinQ and VLAN scope.

Question 5 Selectable Answer

What are two requirements for the IPN network when implementing a Multi-Pod ACI fabric? (Choose two.)

A. EIGRP routing
B. PIM ASM multicast routing
C. BGP routing
D. VLAN ID 4
E. OSPF routing

Answer:

Question 6 Selectable Answer

Which two components are essential parts of a Cisco ACI Virtual Machine Manager (VMM)
domain policy configuration? (Choose two.)

A. VMM domain profile
B. EPG static port binding
C. Layer 3 outside interface association
D. IP address pool association
E. EPG association

Answer:
Explanation:
https://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/1-x/aci-fundamentals/b_ACI-Fundamentals/b_ACI-Fundamentals_chapter_01011.html#concept_74EFC437C0AA44A391676F70ACE59DF3

Question 7 Selectable Answer

Refer to the exhibit.

How are the STP BPDUs forwarded over Cisco ACI fabric?

A. Cisco ACI acts as the STP root for all three external switches.
B. STP BPDUs that are generated by Switch2 are received by Switch1 and Switch3
C. STP BPDUs that are generated by Switch1 are received only by Switch3.
D. Cisco ACI fabric drops all STP BPDUs that are generated by the external switches.

Answer:

Question 8 Selectable Answer

Refer to the exhibit.

An engineer must allow IP mobility between Site1 and Site2 in a Cisco ACI Multi-Site orchestrator. The design must meet these requirements:
A disaster recovery (DR) solution must exist between the sites that do not require vMotion support.
The application must be started at a DR site without having to re-IP the application servers.
The solution must avoid any broadcast storms between the sites.
Which two actions meet these criteria? (Choose two.)

A. Define a unique bridge domain subnet per site.
B. Configure STP between Cisco ACI fabrics.
C. Deploy a local EPG for Site1 and Site2.
D. Disable Inter-site BUM Traffic.
E. Apply the L2 Stretch feature.

Answer:

Question 9 Selectable Answer

A customer implements RBAC on a Cisco APIC using a Windows RADIUS server that is configured with network control policies.
The APIC is as follows:
✑ Tenant = TenantX
✑ Security Domain = Tenantx-SD ✑ User = X
The customer requires User X to have access to TenantX only, without any extra privilege in the Cisco ACI fabric domain.
Which Cisco AV pair must be implemented on the RADIUS server to meet these requirement?

A. shell:domains = TenantX-SD/fabric-admin/,common//read-all
B. shell:domains = TenantX-SD/tenant-admin
C. shell:domains = TenantX-SD/tenant-ext-admin/,common//read-all
D. shell:domains = TenantX-SD/tenant-admin/,common//read-all

Answer:
Explanation:
https://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/2-x/Security_config/b_Cisco_APIC_Security_Guide/b_Cisco_APIC_Security_Guide_chapter_ 0100.html

Graphical user interface, text, application
Description automatically generated

Question 10 Selectable Answer

Which endpoint learning operation is completed on the egress leaf switch when traffic is received from an L3Out?

A. The source MAC and IP address of the traffic is learned as a local endpoint.
B. The source MAC address of the traffic is learned as a remote endpoint.
C. No source MAC or IP address of the traffic is learned as a remote endpoint.
D. The source IP address of the traffic is learned as a remote endpoint.

Answer:
Explanation:
Reference: https://www.cisco.com/c/en/us/solutions/collateral/data-center-virtualization/application-centric- infrastructure/white-paper-c11-739989.html

Question 11 Selectable Answer

An organization has encountered many STP-related issues in the past due to failed hardware components. They are in the process of long-term migration to a newly deployed ACI fabric. Senior engineers are worried that spanning-tree loops in the existing network may be extended to the ACI fabric.
Which feature must be enabled on the ACI leaf ports to protect the fabric from spanning-tree loops?

A. BPDU Guard
B. per-VLANMCP
C. Storm Control
D. BPDU Filter

Answer:
Explanation:
Reference: https://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/4-x/aci-fundamentals/Cisco-ACI-Fundamentals-401/Cisco-ACI-Fundamentals-401_chapter_0101.html

Question 12 Selectable Answer

Which table holds IP address, MAC address and VXLAN/VLAN information on a Cisco ACI leaf?

A. endpoint
B. adjacency
C. RIB
D. ARP

Answer:
Explanation:
Reference: https://www.cisco.com/c/en/us/solutions/collateral/data-center-virtualization/application-centric-infrastructure/white-paper-c11-739989.html

Question 13 Selectable Answer

An engineer must set up a Cisco ACI fabric to send Syslog messages related to hardware events, such as chassis line card failures. The messages should be sent to a dedicated Syslog server.
Where in the Cisco APIC should the policy be configured to meet this requirement?

A. uni/tn-common/monepg-default
B. uni/infra/monifra-default
C. uni/fabric/monfab-default
D. uni/fabric/moncommon

Answer:
Explanation:
https://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/4-x/aci-fundamentals/Cisco-ACI-Fundamentals-401/Cisco-ACI-Fundamentals-401_chapter_01100.html

Graphical user interface, text, application, email
Description automatically generated

Question 14 Selectable Answer

Refer to the exhibit.

A Cisco ACI fabric displays this fault.
Which set of actions modifies the event to be displayed as a warning in the future?

A. Navigate to the ACI Events tab. Create a new record.
B. Navigate to the ACI Fault tab. Create a new record.
C. Navigate to the ACI Events tab. Change the severity level.
D. Navigate to the ACI Fault tab. Change the severity level.

Answer:

Question 15 Selectable Answer

A network engineer must backup the PRODUCTION tenant. The configuration backup should be stored on the APIC using a markup language and contain all secure information.
Which export policy must be used to meet these requirement?
A)

B)

C)

D)

A. Option A
B. Option B
C. Option D
D. Option D

Answer:

Test Online Free Cisco 300-620 Exam Questions and Answers