[Sep 07, 2021] Step by Step Guide to Prepare for 300-620 Exam BrainDumps [Q53-Q74]

Sep 07, 2021 Step by Step Guide to Prepare for 300-620 Exam BrainDumps

CCNP Data Center 300-620 Real Exam Questions and Answers FREE Updated on 2021

NEW QUESTION 53
An engineer must configure RADIUS authentication with Cisco ACI for remote authentication with out-of-band management access. Drag and drop the RADIUS configuration steps from the left into the required implementation order on the right. Not all steps are used.

Answer:

Explanation:

 

NEW QUESTION 54
An engineer is configuring a VRF for a tenant named Cisco. Drag and drop the child objects on the left onto the correct containers on the right for this configuration.

Answer:

Explanation:

Explanation
Application profile---> VRF--> Bridge Domain---> EPG

 

NEW QUESTION 55
Which type of profile needs to be created to deploy an access port policy group?

• A. leaf interface
• B. module
• C. Pod
• D. attachable entity

Answer: D

Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/1-x/Operating_ACI/guide/ b_Cisco_Operating_ACI/b_Cisco_Operating_ACI_chapter_0110.html

 

NEW QUESTION 56
Which two statements regarding ACI Multi-Site are true? (Choose two.)

• A. The Inter-Site network routers should run OSPF to establish peering with the spines.
• B. Routers in the Inter-Site network must run OSPF, DHCP relay, and MP-BGP.
• C. ACI Multi-Site is a solution that supports a dedicated APIC cluster per site.
• D. ACI Multi-Site is a solution that allows one APIC cluster to manage multiple ACI sites.
• E. The Multi-Site orchestrator must be directly attached to one ACI leaf.

Answer: A,E

 

NEW QUESTION 57
Refer to the exhibit.

Which two components should be configured as route reflectors in the ACI fabric? (Choose two.)

• A. apic2
• B. Leaf1
• C. Spine1
• D. apic1
• E. Leaf2
• F. Spine2

Answer: C,F

 

NEW QUESTION 58
What does a bridge domain represent?

• A. tenant
• B. physical domain
• C. Layer 2 forwarding construct
• D. Layer 3 cloud

Answer: C

 

NEW QUESTION 59
Refer to the exhibit.

Which action should be taken to ensure authentication if the RADIUS servers are unavailable?

• A. Adjust the priority of server 10.1.1.1 to 1.
• B. Set the default login realm to LDAP
• C. Set the fallback login to local.
• D. Assign the user to the default role.

Answer: C

Explanation:
Changing the server priority is not logical answer.
The command "aaa user default-role no-login" means that remote users who do not have a user role cannot login. This means that assigning the user to default role will not be able to login.
The "aaa authentication login default" and "aaa authentication login fallback" has identical configuration. The fallback uses RADIUS server. We should change is to local.

 

NEW QUESTION 60
What are two requirements for the IPN network when implementing a Multi-Pod ACI fabric? (Choose two.)

• A. BGP routing
• B. PIM ASM multicast routing
• C. EIGRP routing
• D. OSPF routing
• E. VLAN ID 4

Answer: C,D

Explanation:
Section: ACI Anywhere

 

NEW QUESTION 61
An engineer must limit management access to me Cisco ACI fabric that originates from a single subnet where the NOC operates. Access should be limited to SSH and HTTPS only. Where should the policy be configured on the Cisco APIC to meet the requirements?

• A. ACL on the management interface of the APIC
• B. policy on the management VLAN
• C. policy In the management tenant
• D. ACL on the console interface
  https://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/1-x/Operating_ACI/guide/b_Cisco_Operating_ACI/b_Cisco_Operating_ACI_chapter_0111.html
  

Answer: C

 

NEW QUESTION 62
What must be configured to redistribute externally learned OSPF routes within the ACI fabric?

• A. BGP Inter-leak Route Map
• B. PIM Sparse Mode
• C. BGP Route Reflector
• D. Route Control Profile

Answer: D

 

NEW QUESTION 63
What happens to the traffic flow when the Cisco ACI fabric has a stale endpoint entry for the destination endpoint?

• A. The leaf switch does not learn the source endpoint through data plane learning.
• B. The leaf switch sends the traffic to the wrong destination leaf.
• C. The leaf switch floods the traffic to the endpoint throughout the fabric.
• D. The leaf switch drops the traffic that is destined to the endpoint.

Answer: D

Explanation:
Reference:
https://www.ciscolive.com/c/dam/r/ciscolive/us/docs/2019/pdf/BRKACI-2641.pdf

 

NEW QUESTION 64
An engineer wants to monitor all configuration changes, threshold crossing, and link-state transitions in a Cisco ACI fabric. Which action must be taken to receive the required messages?

• A. Add Session Logs and Audit Logs to the monitor policy.
• B. Include Audit Logs and Events in the Syslog source policy.
• C. Add Faults and Events to the monitor policy.
• D. Include Events and Session Logs in the Syslog source policy.

Answer: B

 

NEW QUESTION 65
An engineer is implementing a Cisco ACI data center network that includes Cisco Nexus 2000 Series 10G fabric extenders. Which physical topology is supported?
A)

B)

C)

D)

• A. Option A
• B. Option D
• C. Option B
• D. Option C

Answer: B

 

NEW QUESTION 66
How is an EPG extended outside of the ACI fabric?

• A. Create an external bridged network that is assigned to a leaf port.
• B. Statically assign a VLAN ID to a leaf port in an EPG.
• C. Enable unicast routing within an EPG.
• D. Create an external routed network that is assigned to an EPG.

Answer: B

 

NEW QUESTION 67
Which statement regarding ACI Multi-Pod and TEP pool is true?

• A. The Pod1 TEP pool must be split and a portion of the TEP pool allocated to each Pod.
• B. The same TEP pool is used in all Pods.
• C. A different TEP pool must be assigned to each Pod.
• D. The IP addresses used in the IPN network can overlap TEP pool of the APIC.

Answer: C

Explanation:
Section: ACI Anywhere
Explanation/Reference: https://www.cisco.com/c/en/us/solutions/collateral/data-center-virtualization/application-centric- infrastructure/white-paper-c11-739714.html

 

NEW QUESTION 68
When Cisco ACI connects to an outside Layers 2 network, where does the ACI fabric flood the STP BPDU frame?

• A. between all the spine and leaf switches
• B. within the bridge domain
• C. within the APIC
• D. within the access encap VLAN

Answer: D

 

NEW QUESTION 69
Drag and drop the Cisco ACI Layer 4 to Layer 7 service insertion terms on the left to the correct descriptions on the right.

Answer:

Explanation:

 

NEW QUESTION 70
What must be configured to allow SNMP traffic on the APIC controller?

• A. out-of-band bridge domain
• B. SNMP relay policy
• C. out-of-band management interface
• D. contract under tenant mgmt

Answer: D

Explanation:
Section: ACI Management

 

NEW QUESTION 71
An engineer is implementing a connection that represents an external bridged network. Which two configurations are used? (Choose two.)

• A. Layers 2 internal
• B. Static path binding
• C. Layer 2 remote fabric
• D. VXLAN outside
• E. Layer 2 outside

Answer: B,E

 

NEW QUESTION 72
Which protocol does ACI use to securely sane the configuration in a remote location?

• A. FTP
• B. SCP
• C. TFTP
• D. HTTPS

Answer: B

Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/kb/ b_KB_Using_Import_Export_to_Recover_Config_States.html

 

NEW QUESTION 73
An engineer is configuring a VRF for a tenant named Cisco. Drag and drop the child objects on the left onto the correct containers on the right for this configuration.

Answer:

Explanation:

 

NEW QUESTION 74
......

Ultimate Guide to Prepare 300-620 Certification Exam for CCNP Data Center: https://www.dumpstillvalid.com/300-620-prep4sure-review.html

300-620 Ultimate Study Guide: https://drive.google.com/open?id=1havmsql5UrXr3gcYIxGR0uAnLd5Q7EAE