Cisco 300-620 Online Practice Questions and Exam Preparation

Cisco 300-620 Online Questions & Answers

• Question 211:

  A Cisco ACI fabric is experiencing packet loss that originates from a bare metal server. The engineer must configure the syslog service to meet these requirements:

  1.

  The ACI syslog information must be collected with logging information from other network devices.

  2.

  The monitoring must only be performed on leaf 103 and leaf 104.

  Which set of actions accomplishes these goals?

  A. Configure the Syslog Monitoring Destination Group to remote server logging. Create an Access Monitoring policy for ingress and egress packet drops. Apply the Monitoring policy to the appropriate Switch Profile group.
  B. Configure the Syslog Monitoring Destination Group to Console logging. Create a Fabric-Wide Monitoring policy for ingress packet drops. Apply the Monitoring policy to the appropriate Switch Profile group.
  C. Configure the Syslog Monitoring Destination Group to Local File logging. Create a Fabric Monitoring policy for ingress and egress bytes. Apply the Monitoring policy to the appropriate Switch Profile group.
  D. Configure the Syslog Monitoring Destination Group to Console logging. Create an Access Monitoring policy for egress packet drops. Apply the Monitoring policy to the appropriate Switch Profile group.
  A. Configure the Syslog Monitoring Destination Group to remote server logging. Create an Access Monitoring policy for ingress and egress packet drops. Apply the Monitoring policy to the appropriate Switch Profile group.

  ---

  Explanation/Reference:

  "The ACI syslog information must be collected with logging information from other network devices" could refer to a syslog server, so no local or console, but remote syslog server

• Question 212:

  Refer to the exhibit.

  

  An engineer must configure an L3Out peering with the backbone network. The L3Out must forward unicast and multicast traffic over the link. Which two methods should be used to configure L3Out to meet these requirements? (Choose two.)

  A. Layer 3 routed port
  B. VPC with SVI
  C. port channel with SVI
  D. Layer 3 routed subinterface
  E. Layer 3 floating SVI
  A. Layer 3 routed port
  D. Layer 3 routed subinterface

  ---

  Explanation/Reference:

• Question 213:

  Refer to the exhibit.

  

  A company deployed Cisco ACI and plans to migrate the first servers to the Cisco ACI fabric. The current network setup experiences a small number of silent hosts. What is the Cisco recommended bridge domain configuration to support the network topology presented?

  A. Unicast Routing: Disabled L2 Unknown Unicast: Flood
  B. Unicast Routing: Enabled L2 Unknown Unicast: Hw Proxy
  C. ARP Flooding: Enabled Multi Destination Flooding: Flood in BD
  D. ARP Flooding: Disabled L3 Unknown Multicast Flooding: Flood
  A. Unicast Routing: Disabled L2 Unknown Unicast: Flood

• Question 214:

  A situation causes a fault to be raised on the APIC. The ACI administrator does not want that fault to be raised because it is not directly relevant to the environment. Which action should the administrator take to prevent the fault from appearing?

  A. Under System -> Faults, right-click on the fault and select Acknowledge Fault so that acknowledged faults will immediately disappear.
  B. Create a stats threshold policy with both rising and falling thresholds defined so that the critical severity threshold matches the squelched threshold.
  C. Under System -> Faults, right-click on the fault and select Ignore Fault to create a fault severity assignment policy that hides the fault.
  D. Create a new global health score policy that ignores specific faults as identified by their unique fault code.
  C. Under System -> Faults, right-click on the fault and select Ignore Fault to create a fault severity assignment policy that hides the fault.

• Question 215:

  Which routing protocol is supported between Cisco ACI spines and IPNs in a Cisco ACI Multi-Pod environment?

  A. OSPF
  B. IS-IS
  C. BGP
  D. EIGRP
  A. OSPF

  ---

  Explanation/Reference:

• Question 216:

  A network engineer configures a Cisco ACI fabric with this configuration:

  1.

  Endpoint-1 with an IP address 10.1.0.1/24 is attached to Leaf-101.

  2.

  Endpoint-2 with an IP address 10.1.0.2/24 is attached to Leaf-102.

  3.

  Both endpoints are in EPG-A.

  4.

  The bridge domain for EPG-A is called BD-A and contains a single subnet 10.1.0.254/24.

  5.

  Endpoint-1 cannot reach Endpoint-2.

  Which action allows Endpoint-1 to communicate with Endpoint-2?

  A. Set L2 Unknown Unicast to Hardware Proxy.
  B. Configure a contract between the endpoints.
  C. Create a contract with a preferred group.
  D. Enable silent host detection.
  A. Set L2 Unknown Unicast to Hardware Proxy.

  ---

  Explanation/Reference:

• Question 217:

  Refer to the exhibit.

  

  Which two objects are created as a result of the configuration? (Choose two.)

  A. application profile
  B. attachable AEP
  C. bridge domain
  D. endpoint group
  E. VRF
  C. bridge domain
  E. VRF

  ---

  Explanation/Reference:

  Configure the tenant, VRF, and bridge domain.

  This example configures tenant t1 with VRF v1 and bridge domain bd1. The tenant, VRF, and BD are not yet deployed.

  Example:

  />

• Question 218:

  An engineer must implement user activity tracking in the Cisco ACI with a solution that meets these requirements:

  1.

  All user activity that is related to the Cisco ACI infrastructure hardware must be tracked.

  2.

  All audit logs with severity level 5 and below must be collected and exported.

  3.

  Logs must be exported to a Security Information and Event Management (SIEM) appliance.

  Which set of steps must be taken?

  A. Create a Syslog Monitoring Destination Group with a remote destination of the SIEM device. Create a Tenant-level Syslog Source under the Monitoring section of the Tenant Tab. Select Audit Logs and a severity level of Warning,
  B. Create a Syslog Monitoring Destination Group with a Local File destination. Create an Access-level Syslog Source under the Monitoring section of the Fabric Tab. Select Fault Logs and a severity level of Notification.
  C. Create a Syslog Monitoring Destination Group with a remote destination of the SIEM device. Create a Fabric-level Syslog Source under the Monitoring section of the Fabric Tab. Select Audit Logs and a severity level of Notification.
  D. Create a Syslog Monitoring Destination Group with Console Destination. Create a System-level Syslog Source under the Monitoring section of the System Tab. Select Session Logs and a severity level of Warning.
  C. Create a Syslog Monitoring Destination Group with a remote destination of the SIEM device. Create a Fabric-level Syslog Source under the Monitoring section of the Fabric Tab. Select Audit Logs and a severity level of Notification.

  ---

  Explanation/Reference:

  Fabric > Fabric > Policies > Monitoring > default > Callhome/Smart Callhome/SNMP/Syslog/TACACs

  uni/fabric/monfab-default

  Create Syslog Source

  Provide a name for this source (i.e., FabricDefaultSyslog)

  Select the Minimum Syslog Severity Level (default is warning; we have changed this to information)

  Select the categories of messages to source (default is faults; we have selected all categories)

  Select the Destination Syslog Server (this is the server we previously defined)

  https://unofficialaciguide.com/2018/08/11/configuring-syslog-for-aci/

• Question 219:

  What is the maximum number of sites connected using spine back-to-back with a direct link in a Cisco ACI Multi-Site fabric?

  B. 3
  C. 4
  D. 5
  A

  ---

  Explanation/Reference:

• Question 220:

  Which statement describes the initial APIC cluster discovery process?

  A. The APIC uses an internal IP address from a pool to communicate with the nodes.
  B. Every switch is assigned a unique AV by the APIC.
  C. The APIC discovers the IP address of the other APIC controllers by using Cisco Discovery Protocol.
  D. The ACI fabric is discovered starting with the spine switches.
  A. The APIC uses an internal IP address from a pool to communicate with the nodes.

  ---

  Explanation/Reference:

  The following describes the APIC cluster discovery process:

  Each APIC in the Cisco ACI uses an internal private IP address to communicate with the ACI nodes and other APICs in the cluster. The APIC discovers the IP address of other APIC controllers in the cluster through the LLDP-based discovery process. Link: https://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/1-x/aci-fundamentals/b_ACI-Fundamentals/m_provisioning.html#concept_8E5AD8328B9348D5B8F0FF1FF7D2EC96