Scribd Logo
Upload

Welcome to Scribd!

  • Dccor

    Uploaded by

    Sadiq Martin Mbiyu
    58 views549 pages

    Original Title

    dccor

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document

    Copyright:

    © All Rights Reserved
    Download as PDF or read online from Scribd
    Flag for inappropriate content
    58 views549 pages

    Dccor

    Uploaded by

    Sadiq Martin Mbiyu

    Copyright:

    © All Rights Reserved
    Download as PDF or read online from Scribd
    Flag for inappropriate content
    of 549
    =XaMToPics Expert Verified, Online, Free. Prepare for your 350-601 exam with additional products Study Guide 2018 POF Pages $19.99 Video Course 143 Lectures $19.99 Topic 1 - Single Topic DRAG DROP. ‘An engineer is implementing NetFlow ona Cisco Nexus 7000 Series Switch ‘rag and drop the NetFlow commands from the left into the correct order they must be entered on the ight. Select and Place: N7K-1(config)# interface step 1 ‘N7K-1(Config-if}* ip flow monitor NetflowMonitor input i N7K-1(onfig)# feature netflow Step2 NTK-1(contig}t flow exporter NetflowMonitor = \N7K-I(config)# flow record NetflowMonitor ee Step4 ‘NTK-1(config)# flow monitor NetflowMonitor ‘correct Answer: N7K-1 (config) interfuce N7K-1(config-i} ip flow monitor NetflowMonitor input ‘NTK-1(config)# feature netflow | N7K-1(config)# feature netflow NTK-1(config)# flow exporter NeflowMonitor N7K-I(config} flow record NeflowMonitor ‘N7K+1(configh# flow exporter NetflowMonitor 1N7K-I(config}# flow record NetflowMonitor ‘N7K-1(Gonfigh flow monitor NetflowMonitor N7K-1(config}# flow monitor NetflowMonitor NIK-1(configh imerfice NTK-1(configi}#ip flow monitor Netlow Monitor input Reference: hitps:twwcisco.com/cfen(us/supportdocs/switches/nexus-7000-seres-swtches/112213-netflow-nexus7000-nsox-configex hil 4 designated TITS) 1 yeas, 11 mons ogo ERM Feature > Exporter» Record > Monitor > Interface steps 3 > How to configure NetFlow - Sample < feature netlow flow exporter exporter! version flow record record match ipvd source address match iv destination address collect counter bytes flow monitor owt record record “exporter exporter! interface Ehi/1 PP flow monitor BP address O0O0Y no shutdown pvted 7 ines 2 & roby 1 yea, 10 months 290 ‘hiss relly helpful and right answer, find this cmd-descrintion from here htips//wwwecsco.comVe/enfus/t/cocs/switehes/datacenter/sw/42/rx ‘os/system ranagement/configuation/guide/sm,rx_05l/sm_1Snetflow htr¥wp 1075703 ‘ted 2ines © & kituahin TEE) year, 11 maths ago just sat for ths exam, although i have 4 yrs experience in TAC dc technolgis, only 30 questions were not included inthis dump, for anyone planning to sit for this, would recommend facusing an SPAN, mas, nexus. and the differences between diferent automation tools apart from this the exam was straight forward. Goad luck and thanks exam topics fr all the help} poted Sines © & Ante. siva GEEERIO) 1 ye? moms ago hitps//wnecsco.com/e/en/us/td/docs/switches/datacenter/sw/t2/n ‘osfsystem_management/configuation/guide/sm, 05. cli/sm_1Shetflow html6wp107S703 hips//www_cisco.comvefenfus/td/docs/switehes/datacenter/sw/2/r ‘os/5ystem_management/configuration/guide/sm,sxo5.cli/sm_1Snetflow htmlswp1075703 pte Times © & Andre, sitva 1 yer.2 months 290 NetFlow Example Configuration ‘This example shows how ta create a flow and apply it to an interface feature netlow flow exporter ec version flow tecord match pv source address maten pv destination address collect counter bytes ‘ollect counter packets flow monitor foo record it ‘exporter ee interface Ethemet2/A5 ip flow moniter feo output ip address 1020.1.1/24 mo shutdown ‘voted times © & GuyThatTakesDumps 1 year 2monts e90 2344 ‘poted times BB ieoor + yea? months ago 234.4 ‘poted 3 ines Which virtual MAG address isthe default fr HSRP version 2 group 10? ‘0000 500.0110 8. 0000,009FFo0A 6. 3784.08981C08 .oo00.0csFFota CCorret Answer: 8 In SRP version 1, group numbers are resticed tothe renge from 0 10255. HSRP version 2 expands the group number range from Oto 4095. HRP version 2 permits an expanded group number range, 0 to 4095, and consequently uses a new MAG adsress range 0000.009F F000 to 0000.0c9F-FFF. ‘The increased group number range doesnot imply that an interface can or should, support that many HSRPoroups. The expaned group ruber range was changed to allow the group number to match the VLAN number on subnteraces ‘Thelastcigits of the MAC address isthe HSRP group, in hex. 10 in hex is A Reference: ups:lwww.cisco.com/efen(us/td/docs/iosxmViosfipapp.xp/contguration/1S-ml/fhp1 St hook/thp-hstp-2 pat ‘Community vote estrtution © & designated (Tama) year, 1 months ago Bis correct HRP Information HsRPvi (0000.0C07-AC XX 0KK = Group Number = Maticast ‘Group number = 0-255 24002 seve (0000.0C9.F xx po. ‘Group Number = 0- 4095 roup Number) = Multicast 224 00.102 Highest Priority » Active Same Priorty = Highest IP Address Defauk priory = 100 uprted snes BB roky tyes, 10 months ago fight answer, ‘voted ines © & GuyThatTokesbumps (Hara) year 2 months ego (ieecetaeor8) Biscomect ced tes © vispe + year.2 months 90 Bis the anawer uprted Times 2 & Goekr 2 yen 8 hupsi/mnw cisco comyc/en/usit/docs/ios-ami/os/ipapp_frrp/configuration/xe-3/fhp-xe-3s-book/Mhp-hsip-vZhtml prted tines 4 months ago Refer tothe exhibit Hos B <——___ Eth 2/33) # Switch A ERSPAN Configuration: monitor session 48 type exspan-source source interface Ethernet?/11 both destination ip 10.11.11.2 exspan-id 903 vef default no shut monitor erepan origin sp-addreas 10.254,254.20 glabal interface loopback? ip address 10.254.254.20/32 interface Btherneti/1 ‘switchport switchport mode trunk no shutdown feature interface-vian interface Vian 12 ip address 10.11.11.1/29 no ip redirects no shutdown Switch B y ea Beh 1/2 confection Eth 1/1 Switch A J Which statement about the ERSPAN configuration inthis envionment is tue? 4 Switch 8 ERSPAN Configuration: monitor session 47 type erspan- destination source ip 10,11.11.2 destination interface Behernet2/33 erepan-id 903 vef default no shut interface Echernet?/33 switchport monitor feature interface-vian interface Vian 12 ip address 10.11.11.2/29 no ip redirects no shutdown interface Etherneti/2 switchport switchport mode trunk no shutdown Eth 2/11 [A The session number ofthe source of ERSPAN spanned traffic must have a session ID of 47 forthe trafic analyzer to receive the trafic B. Host 8 is the source of ERSPAN spanned trafic and host As the trafic analyzer. . The session number ofthe source of ERSPAN spanned traffic must have a session ID of 48 forthe trafic analyzer to receive the taf. . Host Ais the source of ERSPAN spanned trafic and host Bis the traffic analyzer Corret Answer: D ‘The Espanid needs to match between the switches. The monitor sessiona€ ID is only locally significant and does not need to match on each device Reference: bteps:rwwwletsconfig.conhow-to-confguteerspar-on-cisco-netus-swtches/ Community vote dstabution (© GuyThatTakesDumps 1 year 2monts 290 Dis correct pted 2 times © A Toa year 8 montis 290 The following factors are applicable while using ERSPAN as a local SPAN Both sessions have the same ERSPAN ID. Both sessions have the same IP acirss, The IP address i the router's own IP address tha i, the loopback IP address orthe IP adress configured ‘on any port. Iitps/7wnecisco comyefen/us/td/docs/os-xmilieslansuitch/configuration/xe-16lanswitch-xe-16-book/Insw-cont-erspan html prted 3 times 2B roky 1 year to months 290 ‘Assuming that session isthe same and then set asthe view's command, packets captured by host Aare sent to Eth 2/33, passing through L2 In other words, host A will be 2 “source” and host 8 willbe a port analyzer (in sco dec’ tem it named "Destnation’) However, we can see the following instructions in Switch A “moniter session 48 type erspan-source ‘And Switch 8 has the following instructions. “moniter session 47 type etspan-destination* ‘That i, because the session-id value is not coract, Most B cannot obtain the captured packet from Host A Switch A may be possible by changing session-id to 47 For ths reaton, think the answer is A, not pote times © & roby tye, tomorths ago refer site configure ERSPAN, hiaps//wmwletsconfg comvhow-to-configue-erspan-on- uniast only. © & designated [Tana] 2 yeas, 6 months ago B is correct because we need to setup a primary adjacency and a secondary adjacency. On primary, we need to setup ‘otv-adjacency-server unicast- ‘only’ and on secondary besides that, we need to configure ‘otv use-adjacency-server unicast only. My reference was CCNA Dats Center 200-185 page 178. pted 9 ines © & GuyThatTokesbumps (i=rm==)1 year, 2 months ago hips/m cisco comvefen/us/td/docs/switches/dstacenter/sm/nx-os/OTVyconfigguide/bCisco_Newus. 7000, Series, NX- 08.OTV_Confguration Guide-RVadv-otv html pected T ines Refer tothe exhibit NIK-1 spanning-tree vlan 1-10 priority 6192 vpe domain 100 role priority 100 peer-keepalive destination 10.1.1.2 source 10.1.1.1 vrf default delay restore 60 peer-switch auto-recovery ip arp synchronize NTK-2 spanning-tree vlan 1-10 priority 8192 vpe domain 100 role priority 200 peer-keepalive destination 10.1.1.1 source 10.1.1.2 vrf default delay restore 60 peer-switch auto-recovery ip arp synchronize ‘The STP priority of NPKt and N7K2 are the lowest Inthe network. Which statement describes STP onthe vPC? ANIC and N7K2 epper asa single STP root 8B. N7K-1 appears asthe STP root NIK: preempts N7K2 asthe STP 00 .N7K2 appears as the STP root ‘correct Answer: A Peer-switch Enables the PC switch pair to appear asa single STP rot inthe Layer 2 topology Use the no frm of the command to slcable the eer sitchvPC topology If both switches do not have per-switch enable, the question is nat informing the bridge 1D (mac-address + priory) to see which switch would be the oot anyway & GuyThatTakesDumps 1 year 2 months a90 The correct answer is A pte times & designated 1 yoo 11 months ag0 ‘The corect answer is A since the peer-switch i enables Peer-suitch - Enables the VPC sich paito appear as a single STP root inthe Layer 2 topology. Use the no form ofthe command to disable the peer switch vPC topology. If both awitcnes da nat have pesr-switch enable, the question isnot informing te bridge-ID(mac-address» priority) to ee which switch would Be the root anyway. pvted 3 ines The engineer must configure SPAN on a Cisco Nesus 5000 Series Switch to get capture of the trafic from these applications for an i-deoth packet analysis, ‘Which two SPAN characteristics must be considered (Choose two.) ‘A SPAN source pots canbe montoredin multiple SPAN sessions 8. The Ethernet FC, FC, port channel, SAN port channel canbe used as SPAN source pert. .ASPAN source port cannot bea destination SPAN pot 0. Only Ethernet, FC, ¥FC, pot channel or ypes ean be used as SPAN source ports The x/x option is avalable for VLAN or VSAN SPAN sessions. ‘Correct Answer: 8C ‘A source pot, also called a monitored por isa switched interface that you monitor for network afc analysis. The switch supports any number of ingress source ports (up tothe maximum numberof available ports on the switch) and any numberof source VLANS or VSANs. ‘A source pot has these characteristics ~ Canbe of any port type: Ethernet, Fre Channel, virtual Fibre Channel, port channel, SAN port channel, VLAN, and VSAN. Cannot be monitored in mutiple SPAN sessions, ~ Cannot be a destination pot Reference: itps:lwwwcisco.com/en/US/docs/switches /datacentenexus$000/sw/configuration/gude/clrel.4_1/ Cisco_Nexus_5000, Series. Switch_CLI Software Configuration. Guide_chaptrS0.html Community vote estrtution © A Thorn? 1 yar, 1 month ago hups//www cisco comyer/US/dlocs/suitches/datacenter/nexus5000/sw/confguration/ gude/cl_re4.1/Cisco_News.5000_Series. Switch CLL Softw are_Configuration Guide, chapter50 htmllcan_1177309-~text=of%620Source%20Ports- Characteristics %200F%2OSourceXZOPors- ‘Axe2OsoureeX2Opor pote ines Host! is in VLAN00 located in DataCenter! and Host2 is in VLAN200 located in DataCenter2 Which OTV VLAN mapping configuration allows Layer 2 connectivity between these two hosts? A Del interface Overlay! oty extend-vlan 100 oty vlan mapping 100 to 200 De2: interface Overlay1 otv extend-vlan 100 otv vlan mapping 100 to 200 8. DCI: interface Overlay oty extend-vlan 100 otv vlan mapping 100 to 200 DC2: interface Over! otv extend-vian 200 c DCI: interface Overlay? oty extend-vlan 200 ©. DCL interface Overlay! oty extend-vian 100 De2: Interface Overlay! otv extend-vian 200 Corret Answer: 8 ‘You can map a VLAN on the local site toa VLAN with a diffrent VLAN ID onthe remote ste. When you map two VLAN with diferent VLAN IDs across sites, they get mapped to @ common VLAN called the transport VLAN, For example, when you map VLAN T on Site Ato VLAN 2 on Site 8, both VLANs are mapped toa transport VLAN. All afc originating from VLAN 1 on Site A is translated as going from the transport VLAN. All trafic arving at Site B from the trensport VLAN is translated to VLAN 2. Reference: upsslwww.cisco.com/c/en/us/ support docs/switches/nexus-7000-series-swtches/20099-Nexus-7000-0TV-YLAN-Mapping-on Overlayhtm? did-ossede000283 & simthakur (TIT TETT) 3 years, months ago correct answers 8, no need to map at B site upoted 21 times & sivercous (Tsar Taara) 3 years, Smonths a90 Ips cco com/cfen/us/ suppor docsswitche/nexus-7000-series-snitches/200998-Nenus-T000-OTV-MLAN-Mapping-on-Ovelay html ted 7 ines © & GuyThatTakesdumps (TEATS) 1 year 2 months 50 correct answer 8 pote times © & elmoduce 1 ye cortect answer i 8 pete Times 5 months ago © & Samanmat2020 1 year, 6 months 290 correct answer 8 pte inas © & eeddyedwards287 2 yea1s 290 Bis correct thing pted 2 timas © & woorrea 2 years, 4 months ago B is correct, no need to map vlan at 8 site hitpsy/wmcsco.comve/en/us/support/docs/switcnes/nenus-T000-sries-suitches/200998-Newus-7000-OTV-VLAN-Mapping-on-Overlay hemi? stidosscd000283, ‘prted times © designated 2 yo, 6 moms 999 B is correct because DC2 does not nee for translation since the traffic is received/sent in Vlan 200 there poted tines 1B @ Tatese 2 years, 6 months 290 Bis the correct answers please refer the lnkhttns/www cisco.com/c/erVus/support/docs/switches/nexus-T000-seres-swtches/200998-Nexus-T000-OTV-VLAN- Mapping-on-Overly nem pte times © & Mahert23 yeas, 4 montis eo0 Tink also this is 82) pted times 2. & sllveretoud 3 years, 5 montis ag isnt it 8? - maps the extended VLAN tothe local VLAN. pete Times Refer tothe exhibit ‘switch (config)# interface Ethernet 2/2 switch (config)# ip address 172.23.231.240/23 switch (config)# ip verify unicast source reachable-via rx What is configured as a result of running these commands? A loose unicast RPF 8. strict unicast RPF LIP Source Guard D. reverse lookup for outbound packets Correct Answer: 8 ‘The 2€ip verify unicast source reechablevia nax€ command enables Unicast RPF in strict mode. To enable loose mode, administrators can use ‘the ay option to enforce the requirement that the source IP address fora packet must appear inthe routing table, Reference: ‘aps:fwww.examtopies.com/discussions/cisco/view/62014-exam-350-60'-opic‘-question-12-discussion/ & designated [TIES] 1 yar 17 mots ogo Bis correct UROF = Unicast Reverse Path Forwarding as two modes ~ Strict and Loose Sit Mode = Reachable-via RX = Check routing-table AND need to be the same interface to reach the source Loose Mode = Reschable-via ANY = Only check the routing-table ted times 4 cuyTatTakesDumps (T=) 909,20 Bis correct pote Times & mauehi yea"? montis ago ve these questions from tepies which are not covered inthe official guide ‘pte ines & MaxG 2 yea, 1 mont ego Bis cored huips//tolscisco.comvsecurty/eenter/resources/unicastreverse_path forwarding ‘The ip verify unicast source reachable-via rx command! enables Unicast RPF in strct mode. To enable loose mode, administrators can use the any the source P address fora packet must appear inthe outing table, ‘option to enforce the requirement t poted 3 times Which configuration implements static ingress replication? ‘ interface nve 1 member vni 3716135 ingress-replication protocol bgp 8. interface nve 1 ‘member vni 3716135 peer vtep 10.0.0.4 interface nve 1 ‘member yni 3716135 peer vtep 10.0.0.4 ingress-replication protocol static peer-ip 10.0.0.4 °. interface nve 1 member vni 3716135 ingress-replication protocol static ‘correct Answer: D The following enables static ingress replication for peers, Procedure Command or | Purpose Action Step 1 configuration. j:nters global configuration mode. terminal Step 2. j a rn ep? interface Creates a VXLAN overlay interface that terminates VXLAN tunnels. AYE Note 7 5 dl Only 1 NVE interface is allowed on the switch. Step 3 member Maps VXLAN VNIs to the NVE interface. vni [vni- id | vni-range] Step 4 ingress-repli- cation proto- Enables static ingress replication for the VNI col static Step 5 peer- Enables peer IP. ipnnnn Referee: apssfwww.cisco.com/cfen/us/td/docs/switches/datacentet/nexus9000/sw/7-x/alan/confgutation guide/bCisco_ Nexus, 000_Series,NX- (08_VXLAN. Configuration, Gude. 7x/b_Cisco_ Nexus, 9000_Seres.N¥-0S_ VLAN, Confguration_Guide.7xchapter011.himl © & GuyThatTakesDumps 1 year * month sg0 Dis correct! uprted times © & Thomn7 1 year, 1 month ago ‘The answers BF hupsi/mmwicsco.convefen/us/td/docs/switches/datacenter/news9000/su/7-x/xlan/configuation/guide/b Cisco. Nexus, 9000, Series. NX (0S VXLAN Configuration Guide_Tx/b_Cisco. Nexus, 9000 Series NX- apter_01 | himl#-stext= Canfiguring20Sttic20Ingress%20Replication Refer tothe exhib. OTV-Siteli# show otv OTV Overlay Information Site Identifier 0000.0000.0111 Overlay interface Overlay200 VPN name: Overlay200 VPN state: UP Extended vians: 178 2500-2563 (Total:65) Join interface(s): Eth /2 (20.1.1.1) Site vlan: 1999 (up) AED-Capable: Yes Capability: Unicast-Only Ts Adjacency Server: Yes Adjacency Server(s): 20111/20211 ‘Network engineers setting up a mutinored OTY network. The fst site hasbeen setup witha primary and secondary adjacency sever, \Which configuration must be added onthe remote OTV AEDS ste? A interface Overlay200 oty join-interface Ethernet1/2 otv extend-vlan 178, 2500-2563 oty use-adjacency-server 20.1.1.1 unicast-only 8. interface Overlay200 oty join-interface Ethernet1/2 oty extend-vian 178, 2500-2563 © interface Overlay200 oty join-interface Ethernet1/2 oty extend-vian 178, 2500-2563 oty use-adjacency-server 20.1.1.1 20.2.1.1 unicast-only ©. interface Overlay200 oty join-interface Ethernet1/2 oty extend-vlan 178, 2500-2563 oty adjacency-server unicast-only ‘correct Answer: © We need to ad both Ps fo the primary and secondary adjacency server when using a unicast only design, © & designated (TTT) 2 yeas, 6 months ago Cis correct because we need to setup primary and secondary adjacency server on unicast-only design pated 7 times © & GuyThatTokesdumps TIO) 1 year 2 months 260 pote times © & mauchi 1 year 6 months 200 shouldnt the OTV 1D be diferent fits a ifferent site? ‘pte T nes ‘Acustomer has a requirement to deploy a cloud service and needs to have fll conral ver the underlying 0S, data and applications. Which loud model meets this requirement? A Maas 8 Paes C.sa08 0. as Correct Answer: 0 ‘Traditional Ti responsible for Application, Data, Runtime, Middleware, 0S, Virtualization, Servers, Storage, Networking |aaS = Infrastucture as a Service a€" The customer is responsible for 0S, Virtualization, Servers, Storage, Networking, SaaS = Software as a Service The software is deployed by the cloud provider 2€° Customer is responsible for nothing atform 8 a Service - Software cen be deployed bythe customer building ther own application [is responsible for Dat end Application Peas © & GuyThatTakesDumps 1 year 2mont ogo discorrect pote Times © & designated 1 yea 11 mons ago ‘The carect answers D. ‘rational IT is responsible for Application, Data, Runtime, Middleware, OS, Vinualzation, Servers, Storage, Networking, infrastructure as a Service is responsible for 05, Vitualzation, Servers, Storage, Networking Software asa Service = Software deployed by the cloud provider Is responsible for nothing Platform a8 a Service - Software can be deployed by the custome balling their own application Lis responsible fr Data and Apolication, poted 3 times Refer tothe exhibit [Nexus show vpe peer-eepalive | Keepalive ‘Nexus ethanalyze local interface mgmt limlt-captared-rames 1000 Capturing on mgmt 2019-0615 12:01'51.242597 192.168.254.11 > 192.168.254.3 ICMP Echo (ping request 2019-06-13 12:01:31 242860 192.168.2543 ~ 192.168.254.11 CMP Echo (ping rept 2019-06-15 11:50:18 978474 192 168.2541 = 192.168 284.3 TCP 47540 > bootys [SYN] Seqn0 Win-1024 Len-0 MSS=1460 2019-06-15 11:50:15 975547 192.168.2543 > 192.168.254.1 TEP 29 > 47540 [RST, ACK] Seq-l Ack>l Win-O LenO 2019-06-15 11:50:15 975564 192.168 254.1 > 192 165.254.3 TCP 47540 > 44 [SVN] Seq-0 Win=1024 Len-0 MSS=1460 3019-06-15 11:50:15 975924 192 168 254.1 > 192 168.254 3 TCP 47540 > discard [SYN] Seq=0 Wins 1024 Len=0 MSS=1460 2019-06-15 11:50:15 976027 192.168.2541 > 192.168 254.3 TCP 47540 > 97 [SYN] Seqo0 Win-1024 Len=0 MS: 2019-06-15 11:50:15 975381 192.168 254.1 > 192 165.254.3 TCP 47540 > 35 [SYN] Seq-0 Win-1024 Len-0 Ms 2019-06-15 11'0:16.661845 192.168.2543 > 192.168.2544 UDP Source pot 3200 Destination pot: 3200, 2019-06-15 11:50:16 761147 0:8e78:a2:41:13 > 01:802:00-00:00 STP Conf. Root» $192/10/c:el:a9:d.6e:80 Cost ‘2019-06-15 11:50:16 853248 192.168.2544 > 192.168.258.3 UDP Source port: 3200 Destzation pot: 5200 2019-06-15 11'50:17 326283 192.168 254.1 > 192.165.2543 SSH Encrypted roques packet en=52 2019-06-15 11 50:17 327313 192.168.2543 > 192 168.2541 SSH Encrypted response packet Len=1348 ‘2019-06-15 11:50:17 377246 192.168.2544 > 239.285.70.83 UDP Source port: 7846 Destzation port: 7546, 2019-06-15 11:50:17.552215 192.168.2541 > 192.168 284,3 TCP 14139 > sth [ACK] Seqr36S Aske 11277 Win63546Leu-D 2019-06-15 11:30:17,661761 192.168.2543 => 192.168.288-4 UDP Source port: 3200 Destization por: 3200 2019-06-15 11:50:17 653242 192.168 2544 > 192.168 254.3 UDP Source pot: 3200 Destination port: 3200 2019-06-15 11:50:17.872637 Se:60-4f.ane2:e1 > 01:80'22:00:00-0e LLDP Chasis 1d= 80:60-4fae2e1 Port d= mgmt0 TTL.= 120 2019-06-15 11:30:08.173036 192.168.2543 > 192.168.284.2 NTP NTP client. 2019-06-15 11:30:08 173256 192.168.2542 > 192 168.288'3 NTP NTP server 'flapping lnk issue has been reported on the vPC keepalive link. A packet capture has been aciveted onthe Cisco Nexus switch What isthe destination IP address ofthe vPC Keepalive packets that are sent by the switch? 192.168.2544 8, 192.168.254.1 6.192.168.2542 ,739.255,70.88 ‘correct Answer: A 53200 isthe default UDP port for keepalive packets, Just look forthe fist line with port $200 and note the destination I, which Is 192.168.2544, Reference: htps:lwwwcisco.com/c/en/us/td/docs/switches/datacenter/nesus3000/sw/iterfaces/924/b- Immediate 2€” Specifies thatthe policy is programmed in the hardware policy CAM es soon asthe policy's downloaded inthe leaf software ~ On Demand 2€* Specifies thatthe policy is programmed inthe hardware policy CAM only when the ist packet is received through the data Path. This process helps to optimize the hardware space. Reference: epsi/communty.csco.com/t8/data-cenerand-cloud knowledge/aplc-policy-deployment-and.rsolution immediacy fr-avs-vmm/ta p/a134si2 Community vote cstribution & GuyThatTakesDumps 1 year 2mont ago As correct, pease check the answer from bellow, upvted 2 mes Question #24 Topic Router-id: 10.10.10.133 Etht/1 10.10.10.133/24 swt ‘sw2 Router-idt Router-id: 10.10.10.111 10.10.10.122 Eth 10.10.10.11 1/24 Ethi/1 10.10.10.122/24 Refer to the exhibit All switches are conigued with the default OSPF priory Which configuration shouldbe applied to ensure thatthe SW2 Cisco "Nexus switch controls the LS floods and advertises the network tothe remalning nodes inthe OSPFV2 area? {A SW2# configure terminal SW2 (config) interface ethernet 1/1 SW2 (con) ip ospf priory 255, 8B. SW2# configure terminal SW2(confg}# interface ethernet 1/1 SW2 (conigi}#ipospf priority 1 ©. SW2# configure terminal SW2 (conig}# outer osof 1 SW2 (configrouter}# routerid 10.10.10.22, 1. SW2# configure terminal SW2 (config) imertace etnemet 1/1 SW2 (cong ip ospf priory 0 Ccorret Answer: A Reference: hitps:lww.cisco.com/cimven.us/techdac/de/reference/cli/axos/eammands/osptip-ospt-prisity Atl Community vote dstnbution & designated [Tiny Toa) 1 yar, 1 months a90 The corect answer A 55 isthe highest router priority Iti the same (as we are doing nothing) Is not the highest router IO = Ineligible to become the DR/EDR pote times 4 GuyThatTakesbumps ITA) yer, non ago Aiscorrect poted2tmes & MaxG 2 yea, 1 month ago {Als correct. rio in OSPF is mainly use to influence/determine a designates router/backup designated router fora network By default, the Prortyist on all routers. A router witha high pricrty will always win the DRVBOR election process. re igi,» router withthe highest router ID wins the election. The router with the second highest OSPF priory or router ID will come & pte ines DRAG DROP. ; Router 1 configuration interface loopback1 ip address 10.10.32.121/30 ip ospf network point-to-point ip router ospf 1 area 0.0.0.0 ip pim sparse-mode ip pim rp-address 10.10.32.122 group-list 225.0.0.0/8 bi-dir Refer tothe exhib. mn @bidectonal PIM network using Phantom RP as an RP redundancy mechanism, two Clsco NX-OS routers have these requirements: > RI must be the active RP = R2 must be the backup RP that is used ony ifR1 is not reachable, ‘rag and drop the configuration steps to complete the configuration for Router 2. Not ll configuration steps ae used. Select and Place: ; Router 2 configuration Interface loopbackt ip address ip ospf network Ip router ospf 1 area 0.0.0.0 ip pim Ip pim rp-address group-list 225.0.0.0/8 bi-dir 10.10.32.121/32 point-to-point 10.10.32.121/29 sparse-mode 10.10.32.121 broadcast 10.10.32.122 dense-mode ; Router 2 configuration interface loopbackt ip address | 10.10.32.121/29 ip ospf network | point-to-point Ip router ospf 1 area 0.0.0.0 ip pim | _ sparse-mode Correct answer: | Ip plm rp-address | 10.10.32.122 _ group-list 225.0.0.0/8 bi-dir 10.10.32.121/32 point-to-point 10.10.32.121/29 sparse-mode 10.10.32.121 broadcast 10.10,32,122 dense-mode Reference: tps/eommunity.cisco.com/tS/networking-documents/pedundancy-nit-pim-bidit-phantomp/a-p/3117791 & Markarmold 3 months 290 ‘ISA, CISM, CRISC, CGEIT, Compl, PMP, PMI-RMP, PMILACP, PMI-PBA, PMI-CAPM, SCRUM, Azure, AWS, Salesforce, I, ISTQB, CLOUD, CEHV2, {CCIS0, GMAT, Sis-sigma, SAP, Oracle, ISO. Get Certified with 100% pass guarantee. Pay aftr passing {LAWS Certification 2. Sales force 2. Serum Master 4. Oracle Certification: OCA, OCP 5. cisco Certification: CCNA, CCNP 6 ITIL Foundstion & Interact 7. Prince 2 Foundation and Practitioner B. VMWARE Certification 9, check Point Certfiation 10. C-COUNCIL Certfation (CEH V-8, CNA, CCISO) 11. Cloud Certfestion 12.18 Certiiation 13. HP Centfation 14 Giri Cortifcation 15-lunipereerifcation 16 Acre 17 Skype 70-338/34 18. PMI ®MP/CAPMYACP/>BA) 19.18T08, 20.50? 21. ISACA (CISACISM,CAISC.CGEIT) 22 COMPTIA (al exams) 23.c1ssP 24 TOGA PAYMENT ONLY AFTER PASSING Contact: +1(940) 268-5570, pte tines © & GuyThatTokesDumps 1 year 2mons 290 Answer is conect. +I important the RP address is NOT the loopback address but one of the other address in the subnet defined on the loopback + By default, OSPF advertises all loopbacks as /32 so the need ofp ospf network point-to-point command to advertise the subnet mask + We hardcode the OSPF RID to avoid any duplicate RID problem incase address of Loopbackt isthe highest loopback “Theres a need to define a mapping agent for auto-rp to work (not shown here) + BSR doesn't support yet the possiailty to advertise 2s candidate RP an IP address which isnot defined on any interface. This implies that ASR ‘cannot be used wth phantom RP. We need to use either Auto-RP or static RP. poted 3 tines (© & Havoes280 1 year 5 months ago ‘The solution is correct. Take a look atthe reference and natice the mask change forthe L1 address on R2 poted times © & dan.pf year, 2 months 290 That's a thing I don’t want to understand. jst to accept \eted 3 nee © & pythonad 3 montis aso This confused me aswell until read the reference “This way, the ‘active’ RP isthe candidate RP advertising the route with the longest subnet mask (no mater the metric) Essential, we're configuring the "active RP* witha 30, soit gets advertised through the network. Once tals the /29 takes over. ‘poted2simes ‘An engineer must configure a Nexus 7000 series ewite fr HSRP on VLAN 100. When fully functional, the router must be the active master. Which set of commands must be used to implement the scenario? A feature hsp interface vlan 10 ip adress 10.1.1.2 255.255 2550 prioity 285 preemat sip version 2srp 1000 ip 10.1.1.1 8. featuesethsp interface vant 00 ip adress 10.1.1.2 25.255.255.0 pity 20 preempt hp version 2 hsp 1000p 10.1.1.1 C. featrest hsp interface van100 ip adress 10.1.1.2 255.255.2550 pity 60 preempt hrp version 2 hsp 1000p 10.1.1.1 ©. feature srp interface vla00ip adress 1.1.1.2 255.255.285.0priorty 240 preempt hsp version 2 hsrp 1000 ip 10.1.1 ‘correct Answer: A Reference: hitps:ww google comsearch? sp¢pioryoq-hstptprityBaq me691570120120:2691895)0129516.5307)1)4&sourceld-ehromeBie-UTF-8 Community vote estrbution © & éesignated (ToS) 1 yea, 11 months 90 “The correct answer is A since the highest priority will become the active device into HSRP cluster. The priory range is 1-285. pote 6 tmes © & GuythatTakesbumps (Tox) yar, 2 months ago Aiscorrect. ‘The defouk HSRP priority is 10. you want an HSRP router tobe elected asthe active router, you should set the priority toa value higher than the defauk of 100 poted 2 simes © & Samanmal2020 1 year, 6 months 990 feature hsp intertace vlan100 ip address 10.112 255.255.2550 Priority 255 preempt hsp version2 hsp 1000 ip 10.1.1 pted 3 times Which MAC address is an HSRP version 27 A. 3842.42500000 8. 0000,0¢07.ac1H . 0000 00s Foce 0100 s7E FFF Corret Answer: © Reference: bitps:twwcisco.com/c/en(us/td/docs/ios-xmVis/ipepp.hrp/confguration/xe-3s/thp-xe-3s-book/thp-srp-2. html ‘Community vote detnbution © & GuyThatTakesDumps 1 year, 2 months 290 (Getettawer6) Cis corre SRP 2 uses the viral MAC address of 0000.05 Fx pte Times © & designated + year.11 months ago The correct answer i HSRPV1 = 0000.0C07.ACKX (Xx = GROUP NUMBER related to vlan iin hexa) HSRPV2 = 0000. O0COF FX (XK = GROUP NUMBER related to vlan i in hexa) pvted nee switch? show vpe brief Legend: (*) = local vec is down, forwarding via vPC peer-tink PC domain Id 210 Peer status + peer adjacency formed ok peer Is alive VPC keep-alive status Configuration consistency status ‘Type-2 consistency status vPC rale = primary Number of vPCs configured 1 Peer Gateway Enabled Dual-active exluded VLANs VPC Peer-link status Id Port Status Active vians 1 Po20 up 100-105 vec status id Port Status Consistency Reason ‘Active vians 7 Po? up — success — success 100-104 8 Po8 up success success 4100-102, 9 Po up — success success 4100-103, Refer tothe exhibit. Which VLANs are capable tobe assigned on vPC interfaces? A. 100-102 8.100403 . 100-04 . 100-05 Corret Answer: D Reference: btps:twww cisco com/cfen/us/td/docs/switches/datacenter/nexusS000/sw/layer2/S03_02_1/503_n2Inw/ Cisco_nSk layer2conig.od re 803.N2_1_chapter. tm! Community vote astritution & Cobach (TTS) 1 yea, 9 months ago Dis correct upoted times 4 uyThatTokesDumps =i) 1 ye, Pons 90 Discorrect ‘The PortChannel connecting the vPC peers should carry ll the VLANs used by the vPC member port. Se the peerlnk should cary all the vlans used va the ather ports. upoted2simes © & motto 2 years, 1 month ago | think answer 1000-1004, Because vPC interfaces are Pa7,PoB, Po. Po20 is vPC peersink interface pvted nes © & mojaucha 2 years ago 100-105 is comect ‘ated Sines ‘An engineer need to implement a solution that prevents loops from occuring accidentally by connecting a switch to interface Ethernett/1. The ott is designated tobe used for host connectivity, Which configuration shouldbe implemented? {A switch configure terminal itch(conig interface Ethernett/1 switch(configi}¢ spanningtree boduguard enable 8. switch# configure terminal switch(conigh interface Ethernet1/1 switch(conigi}# spanring-tee guard loop ©. switeh# configure terminal switeh(config# interface EthernetI/1 switch(configif# spanningree loopquard default ©, switch# configure terminal switch(config)# interface Ethernet'/1 switch(conig}# spanning tee bpdufter enable Correct Answer: A Reference: epsswww.cisco.com/c/mien.us/techdoe/dc/teference/cl/nxos/commands/2/spanning-tee- bpduguard himid:~text=To%20enable2Obridge’ Oprotocot20deta no 2Oform’200f%20thiss20command Community vote astrbution © & mahmoudlol yea, 2 months ago LoopGuard is correct pote Times © & GuyThatTakesDumps 1 year 2months 299 (Getsedawern) Correct ansiter is Loopguara- The loop guatd feature checks if root port or an altemate root port receives BPDUS. If the ports {feature puts the port into an inconsistent state ntl start receiving BPDUs again ving BPDUs, the loop guard Rootgvard: tis enabled on the designated ports of root switch, so that ifthose ports listen tothe superior BPDU then put that port in inconsistent [POU Guard-BPDUGuard enables on access port which helps the switches to put port in shut down mode ance it receives the superior BPDU, [DU filtering - allows you to avoid transmiting BPDUs on PortFastenabled ports that ave connected to an end system By default, spanning tree Sends BPDUs from all ports regardless of whether PorFast is enabled. BDPU fitering ison a per-switch basis; after you enable BPDU fikerng, it applies to all PrtFast-enabled ports onthe switch poted times © & designated # e211 months ago ‘The corect answer i A 8) spanningetree bpduguard enable = cannot receive BPOU 8) spanning. tree guard loop = does not exist ‘Q spanning-treeloopguard default ~ ensure BPOU being receiving 1) spanning-tree bpduiter enable = da not receive nd sere BPDU (the easy way to disable STP into a interface) hitps//wncsco.come/en/us/t/docs/switches/datacentenexus9000/su/6-w/layer2/configuraton/uide/® Cisco. Newus,9000 Series NX- (05, ayer. Switening, Configuration. Guide/b, Cisco. Nexus, 9000, Series,NX-OS Layer 2 Switching, Configuration, Guide, chapter 01000 tml pected times ‘Ametwork engineer repeatedly saves configuration on Catalyst switches to NVRAM using the write memory command. Which action should be taken to implement the same action on Nexus switches? {A.Use the alias command to use the write memory command 8. Use the wri command to use the copy runing-configstartup-config command, 6. Use the est command to leave the configuration mode and save the configuration automatically, Use the write memory command to save the configuration, ‘correct Answer: A Reference: btpsi/eommunty.csco.comy't8/switching/wite-command-on-nexus-switchs/tdp/1988386 ‘Community vote astnbution © & GuyThatTakesDumps 1 year 2montns ago pote Times A designated + yex,11 months ago Correct answer is because there is no copy running config starup config on Nexus by default We need to create an alias related it pted 3 mes © & Havoes280 1 yer 5 months ago ‘Theres a Copy run start command, there is no defined wri command, Thus, we need to create the wi alias for copy run stare. isthe correct response pote Tes What occurs when running the command install deactivate while a software maintenance upgrade is performed ona G'sco Nexus 9000 Series switch? [A The curent set of packages is commited 8. The package features forthe line card are disabled ©. The package is removed from the switch . The current upgrade stops Correct Answer: 8 Reference: ups: cisco.com/cfen/us/td/docs/switches/datacentet/nexus9000/sw/6-x/system_management/coniguraton/guide/ » Cisco_Nexus_9000_Seres_NX-0S, system _Management_Configuration_Guide/sm_smu.htm#task_B8BOFSBABDBEATAEAGS 197FS60565648, Community vote estrituton © & matkovteh (Tao) 2 yeas, 3 ments 90 correct, install deactivate - Descivaes » package that was added tothe device and turns off the package features forthe line card poted 9 times © & GuyThatTokesoumps (TS) yea, 1 month ago Bis conect vnreted tines BW rossgeller 2 years, 6 months ago hiips//mwcsco.comc/en/us/td/docs/switches/datacenter/newus9000/su/92x/5ystem-management/o-cisco-nexus-9000-seres-ns-05-5Stem- rmanagement-confguration-guide-92x/o-cisco-nexus-S000-series-ne-os-sstem-management-configuration-ule- ‘0x_chapter O10T10,htmllconcept_SEOEA9SEB3EF4CSOSEBOF7F650861461 pte Times Question #32 ‘An engineer installed a new Nexus switch with the mgd interface in vf management. Connectivity to the rest ofthe network needs tobe tested from the quest shel ofthe NXS, Which command tests connectivity from the quest shell ofthe NX-OS? ‘A lovestshellaguestshel “IS dost ‘ping vf management 173.7.145 84" 8 gestshelleguestshell~} cr management ping 17337145 84 6. [gvestshel@questshell~$ ping 173.37.145.84 vf management D.[gvestshll@guestshel I$ ping wl management fp 173.97.145.84 Correct Answer: 8 Reference: ups: cisco.com/efen(us/td/docs/switches/datacentet/nexus9000/sw/7-x/programmabilty/guide/b, Cisco, Nexus 9000_Series NX- 0 Programmabily_Guide, Z/Guest_ShelL tml Community vote estrbution © & GuyThatTakesDumps 1 year 1 moxthao0 Bis correct pte Times © Samanmat2020 1 year, 7 months ago ‘Correct Answer i crf management ping 173.37.145 84 upvted Times © & makkovteh 2 years, montis ago Correct - From https:/wavcisco.comv/e/en/us/td/docs/switches/datacenter/newus8000/s4/7- a/programmabilisyquide/b Cisco, Nexus 9000 Series. NX- (05,Pregrammablliy_ Gude. 7e/Guest Shelhemlconcept 65CE¢S274CEBACEFASC 16FES7SSREDSF ‘guestshel@guestshell bootashJS chief management ping 1028.38.48 PING 10.28 38.48 (1028.38.48) Sed) bytes of cata, 64 bytes fom 10,2838.48: cmp, seq=1 t=48 time=765 ms upvted 3 tines Question #33 Topi [ADNS server with IP adress 192.168.1.1is deployed ina data center A network engineer must configure a Cisco UCS Fabric Interconnect to use this DNS, Which configuration shouldbe applied? A. ficlmgmt-A# scope fabricinterconnect a fielmgmt/fabricinterconnect# set name 192.168.1.1fclmgmtA /fabricsnterconnect# scope system fchmgmtA /system # commit-buffer B.ficlmgmt-A# scope system fclmgmt-A “system # create dns 192.168.1.1 fic: mgmt /system* # commit-buffer C.flckmgmi-A# scope fabricintercomnect a ficlmgmtA/fabricsnterconnect# set name 192.168.1.1 ficlmamt-A /fabricsinterconnect® # ccommitbutfer D.fickmgmt-A& scope system ficlmgmt-A/system # scope services fckmgmiA /system/services # ceate ds 192.168.1.1fickmgm-A Jsystemyserices* # commit buter Ccorret Answer: 0 Reference: hntps:twwcisco.com/c/en/us/td/docs/unifies_computing/ues/sw/eli/eonfg/guide/1-3-1/0 CLI Config Guide.1_3.1/ CLIConfig.Guide.1_3.1_chapter11 pa ‘Community vote astrbution © & GuyThatTakesDumps 1 year 1 month ago Dis correct upoted times © & mahmoudlol yer & mort ago D iecorrect pte Times © & mauehi yea, 7 montis ago hitps//wwwcsco.comcfen/us/td/decs/unified_computing/ues/sw/el/config/guide/2- 2/B_UCSM,CL! Configuration Guide 2 2/b, UCSMCLI Configuration Guide 2.2 chapter, 0101 1.html upted2simes © & designated 2 yeas ag0 Bis correct Ucs-A# scope system UCS-A system # scope services LUCS-A /systemy/services # create dns 192168 200.105 UCS-A /systemy/services* # commit- buffer UCS-A ssystemyservices # upted tines 2 & wz 2 years ago You mean D correct! ‘pveted 9 ines Question #34 nonitor fabric session mysession description “this is my fabric ERSYAN session” destination tenant ti application app! epg epgl destination-ip 292.0,20.123 source-ip-profix 10,0,20.1 ferepan-id 100 Sp deop «2 ap tel a6 tu 9216 exit source interface eth 1/1 ewitch 102 direction tx filter tenant ti bd bat filter tenant 1 vif vefl sno shut Refer to the exhibit. An engineer needs to implement a monitoring session that should meet the following requirements: “> Monit trafic fom lea to leaf switches on a Cisco ACI network * Support fitering trafic fom Bridge Domain or VRF Which configuration must be added to meet these requirements? A. interface eth 1/2 leaf 101 8. application epg pa? appt 6. interface eth 12 switch 101 . application appt epg epg} Correct Answer: D Reference: hitps:lwwwcisco.com/cfen/us/td/docs/switches/datacentet/ac/apic/sw/1-x/toubleshooting/ API APIC_Troubleshooting.chapter.0110.html Troubleshooting! Community vote estributon © & matkovteh (TST) 2 yeas, 3 months 90 It's correct (©) but the answer is incomplete ‘The full command is "fer tenant tT application app! epg epgt” andit needs to be added under “source interface eth 1/1 switch 107 upoted 1 times © & Valkyrien7 2 yoors,2 months ego ‘Thanks, it makes much more sense now ‘poted2times © & Guythattakesumps ===) ye 7 month ano D scorer pte Times © & eddyedwards257 2 years 290 fiter tenant tt applieation appt epg epat isthe complete command uprted ines ‘An engineer is implementing OTV on a transport that supports multicast The solution needs to meet the following requirements "Establish adjacency tothe remote peer by using multicast Enable OTV advertisements fr VLAN 100 tothe othe site \Which two commands should be configure to meet these requirements? (Choose two.) Atv extendstan 100 8. tv siteln 190 C. ov use-adjacency-srver172.27.255.94 0. tv date-group 232.2.2.028 E, otv contol group 232.1.1.1 ‘Correct Answer: DE Reference: aps:fwww.ciscopress.comarticles/artcle.asp?p=2999285&seqNur Community vote estrbution © & bluain Gara) 2 years, 7 months apo ‘Rand Eate correct Question clearly asked for VLAN 100 to be extended and adjacences tobe formed pated 0 mes © & bb 56 THIS) years, 8 mots ago ‘The corect answers would be A E ‘The ot data-group command is used to pass the data multicast traffic if there's any. While tv control-group is used to form an adcency with ‘other TEPs,otv extend command is used to enable OTV advertisements for ths van, poted 17 times © & ante (TT) months, 1 week go “ol extend vlan-range: Etends a range of VLANs over this overlay interface and enables OTV advertisements for these VLANs. The vanerange is from 1 to 3967 and fom 4048 t9 4098, “ov control-group meast-address CConfigutes the multicast group adress used by the OTY contol plane for this OTY overly network The mulicast group addres isan Put seddress in dotted decimal notation pte Times © & parma months, 2 weeks ago rm not sure about because the command is abput range no 1D lan ‘ty extend-van (lan-range) Extends a range of VLANs over this overly interface and enables OTV advertisements for these VLANs. The vanerange is fram 1 to 3967 and rem 4048 to 4098, pte times © & GuyThatTakesDumps 1 year 1 month ago RAE corect! pote times © & mahmoudlol year é months ago VIAN 1000 be extended ‘The correct ans is Aand E pte Times © emu 721 yea 4 mons ago Seems A and E are corect} upoted tines © & Samanmal2020 1 yesr.7 mons 990 ‘and are correct pte Times © & Smoothey 1 yea, 8 months 290 Nike conti wan 510 ame OTVSITE Man 100, name OTVEXTEND ‘tv site-vbn 510 interface Overlayt ‘ty jon-interface Ethernet2/1 ty contral-group 232.1.1.1 ftv data-group 2321.1.9/28, ‘tv extend-vn 100 no shutdown pte Times © & masal 2 years, 2 months ago hitps//wm cisco comve/dam/en/us/products/collateraVsuitches/nexus-7000-seres-swtches/guide,cO7-728815.pd ‘and & seem the correct answers. pte Times © & designated 2 yea, 6 moms 290 ‘The correct answer would be 8 and E A) l'eaform to extend vlan across the overlay = Wrong 8) The site adjacency is formed across the site VLAN (AED) = Correct > you can check using “show ot ss internalevent-history ih |incsite™ Correct {0 Used te form uniast-anly type = wrong ) Used to carry multicast data traffic using SSM = wrong 5) The control plane is encapsulated in P muicast packets. Allows for dynamic neighbor discovery by having each OTV ED join the multicast conti-group through the tansport (ASM) = Correct Reference by book “Troubleshooting Cisco Nexus Switches and NX-OS' pte Times © & ach 2 years, Smonths ago Wrong. The ste VLAN must not be extended into the OTV. This configuration is not supported and this helps to avoid unexpected resus Source (Cisco): htlps/#mw.cisc.com/cen/us/t/does/switches/datacontersw/nx-os/OTV/config_ quide/o Cisco, Nexus_ 7000 Series, NX- (05, OTV Configuration Guide/basicotv html poted mas © & Markeboy 2 years, 6 months 390 | would say Aan © are correct asthe control-group mulicast adress needs to be an ASM address, nota SSM address pte T nes © @ ach 2 years, S months ago Wrong. The Multicast Data Group is only used to transport Multicast Data lows which are encapsulated as SSM Mulicast, but n adjpcencies, ‘pated T ines form 1B & Tatese 2 years, 7 months 290 seem the cortect Answer are ABE pte Sines ‘An engineer needs to create anew user inthe local user database on Cisco UCS Fabri Interconnect. The user needs permissions to change the {allowing configuration inside UCS Manager version 3.1 ® VNIC and VHBA profiles "> Fan speed and power redundancy profile of UCS Manager ‘Which two roles must be assigned to a user to achieve this goal (Choose two.) A tactyemanager 8. server-equipment ©. operations 0. severprofle € servercompute ‘Correct Answer: BE Reference: eps:fwwwcisco.com/cfen(us/td/docs/uniied,computing/ues/ucs-manager/GUL User-Guides/ Admin Management/3-1/ Cisco. UCS. Admin, Mgmt_Suide.9.1/0_UCSM_Admin. Mgmt_Guide.chapter_01.html ‘Community vote asrbton © & Litem GTI) 2 years, 6 months a0 Should be A AD Facty Manager Read-and-wite access to power management operations through the poner management privilege Read access to the remaining system Server Compute Read and white access to most aspects of service profiles, However, the user cannot create, modify or delete VNICS ar HBAS. Server Profile Administrator Raad-and:- write access to logical server-rlated operations. Read access tothe remaining system, ‘rom: htps:/wanciscocom/c/en/us/t/docs/untiedcomputing/ucs/ucs-central/GUI-User-Guides/Authentication/t 5 fb CiscoUCSCentral AuthenticationGuide_1-5/b,CiscOUCSCentralAuthenticationGuide_1-5_ chapter, O10 pa pted 2 tines © & Baric GRD) 4 months, 1 week ago “Facility Manager: Read-and-write acess to power management operations through the power management privilege, Read access tothe remaining system Server Compute: Read and write access to most aspects of service profles, However, the user cannot ceate, modify or delete VNICS ot VHBAS “Server Profile Administrator: Read-and-write acess to logical server-related operations. Read access tothe remaining system, pote Times © a Reagents64 1 year ag0 Correct answer A & ‘Facility Manager (Read-and-write access to power management operations through the power management privilege, Read access a the remaining system) Server Profile Actinistrat pte Times (Read-and-urite access to logical server-related operations. Read access to the remaining system) © & GuyThatTakesDumps 1 year 1 month 300 AA Disthe carect one prted2imes © & mahmoudlol yer 4 months 290 and D pote Times © & elmotiude 1 yea: months 290 Definitely not E Server Compute Read and write access to most aspects of service profiles, However, the user cannot create, modify ar delete VNICS or VHBAS. pte ines © & gordon 1 yer 6 months ag0 Wes Aand D pote times © & Spahr 2 yeas, 1 month ago Wes Aand o pte T nes SWB ethanalyzer local interface mgnt brief Linit-captured-franes 50 Capturing on ngnt0 2.130599 192.168.254.1 -> 192.168.254.13 TCP 60 29652 > sah [ACK] Seq=i Ack=S3 Wins32449 Len=0 4.136261 00:80:73:a2:41:00 -> spanning-tree-(for-bridges)_00 STP 60 conf. Root = 8192/10/ecie3 6c:80 Cost = 22 Fort = 0x800e 4.373417 192,168,254,13 -> 192.168.254.1 SSH 106 Encrypted response packet lei 411570377 192.168.254.1 -> 192.168.254.13 TCP 60 29652 > sgh [ACK] Seqe1 Ack=105 Wine32786 Len=0 1.815558 192.168.254.13 -> 192.168.254.1 SSH 106 Encrypted response packet len=52 2.021640 192.168.254.1 -> 192.168.254.18 TCP 60 29652 > ash [ACK] Seqel Ack=157 wine32773. Len=0 2.525173 192.168.254.193 -> 192.168.254.1 SSH 106 Encrypted response packet len=52 2.731382 192.168.254.1 ~> 192.168.254.13 TCP 60 29652 > sch [ACK] Segel Ack=209, wine32760 Len=0 2.947365 192.168.254.193 -> 192.168.254.1 NEP $0 NTP Version 2, client 2.947623 192.168.254.1 -> 192.168.254.13 NTP 90 NTP Version 2, server 3.130157 00:6¢:73:a2:41:0e -> Spanning-tree-(for-bridges)_00 STP 60 conf. Root = 8192/10/ec:ei :a9:af:6¢:80 Cost = 22 Fort = 0x800e ‘3.139400 192.168.254.13 -> 192.168.254.1 SSH 106 Encrypted response packet len-52 3.270728 192.168.254.4 -> 239.255.70.83 UDP 166 Source port: cfs Destination port: cfs 3.341123 192.168.254.1 -> 192.168.254.13 TCP 60 29652 > ash [ACK] Segal Ack=261 wine32747 Len=0 3.835409 192.166.254.13 -> 192.169.254.1 SSH 106 Encrypted response packet len=52 41041412 192.168.254.1 -> 192.168.254.13 TCP 60 29652 > ash [ACK] Seqel Ack=313 wine32734 Len=0 4.835284 192.168.254.13 -> 192.168.254.1 SsH 106 Enctypted response packet leneS2 4.741072 192.168.254.1 -> 192.168.254.13 ECP 60 29652 > eah [ACK] Seqel Ack=365 wine32721 Len=0 4.947308 192.168.254.19 -> 192.169.254.1 NIP 90 NEP Version 2, client 41947519 192.168.254.1 -> 192.168.254.13 NIP 90 NEP Version 2, server 5.139627 00:8¢:73:a2:41:0e => Spanning-tree-(for-bridges)_00 STP 60 conf. Root = 8192/10/ec:e1 :a9:d#:6e:80 Cost = 22 Port = 0x800e 5.140867 192.168.254.13 -> 192.168.254.1 SSH 106 Encrypted response packet len=52 Refer to the exhibit Cisco Fabric Services is enabled inthe network. Which type of IP edéress is used by the Cisco Fabric Services protocol? A. Pes mubicas adress B. Ped unicast address C. ve gateway address . Pvt anyeast address Ccorret Answer: A Reference: tps:lwwcisco.com/c/en(us/td/docs/switches datacentet/nexus5000/sw/coniguation/guide/tm/FabricManager/ts. pal ‘Community vote astnbution © & Maxc (EETTETE) 2 yet, month go FS uses the defauts P mukicast adres of 2392557083, Athough tis s configurable So answer fs A. Uprted Sines ‘Guy TatTakesDumps (T=) ye, mon ago Aiscorrect ‘uprted 2 ines © & JFF102 yous, S months 90 Hi anybody can explain why is not option B, ip unicast? No multicast P seen in capture ‘pvted 2 ines © Vatkyriet7 2 years, smonths ago Packet #13, destination 239.255.7083 voted 1 tines Question #38 switchi show install all impact epld n9000-epld.9.2.1.img Compatibility check: Module ‘Type Upgradable impact Reason 1 su ves disruptive Module Upgradable Retrieving EPLD versions... Please wait. Images will be upgraded according to following table Module Type EPLD Running-Version New-Version Upg-Required Mx FPGA, 0x23 0x23 TO FPGA 0x06 0x06 1 SUP ME FPGAZ 0x23 0x23 Refer tothe exhibit A network engineer plans to upgrade the current software images ofa Cisco Nexus switch. What ste impact of stating the EPLD upgrade? [A The switch reboots one time for the new EPLD versions to take effec. 8. The switch reboots multiple times fr the new EPLD version to take effect. (. The switch skips the EPLD uporede foreach EPLD device ofthe swith ©. The switch skips the EPLD upgrade for MIFPGA and proceeds withthe other Correct Answer: © Determining Whether to Upgrade EPLD Images PLD image number, you can skp the upgrade. To determine the EPLD upgrades needed fora Cisco Nexus 3000 Seles switch, use the show install impact epld bootfash: command on that switch and indicate the n9000-epid,9.24 image. Inthe following example, the MIFPGA, and IOFPGA EPLD images do not need to be upgraded. switch show install all impact epld n9000-epld.9. Compatibility check Module Type ‘Upgradable Impact Reason 1 SUP Yes disruptive Module Upgradable Retrieving EPLD versions... Please wait. Images will be upgraded according to following table: Module Type EPLD Running-Version New-Version Upg-Required 1 SUP MIFPGA 0x23 0x23 «No 1 SUP IOFPGA 0x06 0x06. No 1 SUP MIFPGA2 0x23 0x23 «No Reference: hntps:twwwcisco.comferen/us/td/docs/switches/datacentet/nexus9000/sw/92x/epl-n/nxos.n9K_epldRN.924.html ‘Community vote estntution © & GuyThatTakesDumps 1 year 1 moxth ago cis correct pte Times Question #39 Topi Which behavior defines streaming telemetry a a push model in Cisco devices? A. Events and network changes generate telemetry data 8B. Monitoring cients are pulling data from the network to see reste statistics C. JSON encoded telemetry data is transported using the gRPC protocol The network devices send data in JSON or GPB format to conigue endpoints CCorret Answer: D Encoder Data tha is streamed from a router canbe encoded using one of these formats: 6 GPB encoding: Configuring fr GPB encoding requires metadata inthe form of compiled proto files. A.prot fle describes the GPB ‘message format which s used to stream data, The proto fles are available at Cisco Network Telemetry Proto in Github. Compact GPB encoding: Data's streamed in & compressed format and notin a self.-descrptve format. A proto file corresponding fo each sensor path must be used by the collector to decode the streamed data Sel-describing GPB encoding: Data streamed for exch sensor paths ina selfdescribing and ASCI text format. A single proto file, telemetry pote, is used by the collector to decode any sensor path data. Set describing GP8 encotting is easier to manage because it needs single proto eto d 2€¢ JSON encoding: Data's streamed in strings of keys and its values ina human-eadable format, fe any sensor path data, eventhough the message size i age. Transport Inthe telemetry push model the router streams telemetry data using @ transport protocol The generated datais encapsulated into the desired ‘format using encoders. Mode riven Telemetry (MDT) data is streamed through these supported transport protocols: 6 Google Protocol RPC (gRPC); used for beth dal and dial-out modes: 2€¢ Transmission Control Protocol (TCP) used for ony dia-out mode. 2€¢ User Datagram Protocol (UDP): used for only dial-out made, Because UDP is connecctonless, the UDP destination is shown as Active respective of the state of the colle‘tor. This is nat ideally suitable fora busy network, If message ls dropped by the network before it reaches the collector the protocol does ot resend the data, Reference: ups:lww.cisco.com/cfen/us/td/docs/iosxr/nes5500/telemetty/70x/btlemetry-cg-nesS500-7Ox/b-elemetry-eg-ncs5500 7ox.chapter_O1 html Community vote dstbution © & makoviteh (GSTs) 2 yeas 9 mons 99 ‘is come tps /developeric.com/docs/ow-e/ streaming -eemety-quick uveted tines © & croslos0 (Tam TTa) 2 years, 2 months ago think the answer should be: ag 337 CCNP and CCIE Data Center Core DCCOR 350-601 Official Cert Guide “Cisco NX-05 streaming telemety allows you to push data off the device to a defined endpoint as JavaSerpt Object Notation USON) or using Google Protocol Buffers (GPB) at mich higher frequency and more efficiently, as shown in Figure 6-13" voted mes art-gude/streaming-telemetry © & AlR91 yoo, 11 months ago ‘The question says “to configure endpoints’, not “to 8 defined endpoint ‘voted mes © & ose [ETEEA)1 week 1 day a90 ENCODING JSON encoding: Data streamed in stings of keys and ts vahes na human-readable format. TRANSPORT Google Protocol RPC (gRPC): se for both dn and dia-ou modes. pete tines Arduck 2 months, 3 weeks ago ‘switches do not configure endpoint devices pte tines © & Systeméngineer montis, 1 week ago Answer is D uprted Times © & Rocky Truth # months, 1 week 90 Streaming telemetry i a push model in which network devices generate and push telemetry data to a collector in real-time, without waiting for monitoring cients fo request This enables mentoring clents to receive real-time updater onthe state ofthe network and respond tissues uicky uprted Times © & waddar 8 months, 2 weeks 90 {Calso seems correct to me but not sure iit isthe best answer ‘pted 2 ines © Hubehubs7 1 year, * month ago Ais correc, shouldn't assume that Dis 2 typo with the mising letter in the question. pte tines © & GuyThatTakesDumps 1 year 1 month ago igo wth DF ‘upted times © & manirls yes, 6 months ago ‘Correct Answer D , section Encoder in below ink hipsi/unacsco cone/en/us/t/cocs/iosxt/ncs5500)telemetry/70x/b-telemetry-¢g-ncs$500-Tox/b-telemety-cg-ncs5500-T0x_ehapter Onl pete T ines © & Samanmat2020 1 yea, 7 months 990 {Events and network changes generate telemetry data pte Times © & mauehi yea 7 montis ago {agree that D has a {yp0 an upvted times 1y meant to “configured endpoints’, and even though As also right, Dis the most right and accurate © walid4800 1 yea, 8 months ago Alscorrect huips//developer ciso.com/docs/ies-xe/¥streaming-telemetry-quick-stat-guide/streamin pte tines 2 & Max6 2 yea, 1 mont ago ‘Asounds good, but the correct answer is O. Why? Because that sentence is taken directly from DCCOR 350-602 cert guide, like previously mentioned uprted2imes © & AON 5 yeas, 11 months ago The 350-601 cert guide says "toa defined endooin ‘voted tines 8 not ta onvigure endpoints” this is not typo in answer D, then the answer must be A ‘Switcher ea, 8 mons ag0 Ht you look at other sources for ths question they do say “Configured Endpoints" meaning this S potentially a typo inthe answer ls ‘vated nes © & weorrea 2 years, 2 months ago | think answer D is correct. hitps//developer cise. com/docs/nx-os/#ltelemetry/streaming: upvted times © & Shiktishna 2 years, 4 mont ago Answer is ‘pvted ines © & GeekT 2 years, S months ago | think tis option Das push model streams the data continuously and nat on event based prted tines © & Valkyien7 2 years, 2 months ago ‘And actually the whole text of option O says: The network devices send data in JSON or GPB format to configured endpoints ‘ted 3 nes © AlMO1 1 yea, 11 months ago ‘Option 0 says “to configure endpcints, not “configured endpoints”. That makes A the Best answer. voted mes After a Cisco Nexus 7000 Series Switch chassis replacement, the administrator discovers that all yPC-enabled LACP port channels are ‘eiitialized, The administrator wants to prevent this issue the next time the chassis i replaced, Which two actions must be taken to meet this. requirement before the isolated device is reloaded? (Choose two) [A Change the vPC system: priaty ofthe replacement chassis os higher value than the peer B. Sethe VPC MAC address toa higher value than the peer ©. Configure autoecovery tthe disable state on both pears . Setthe VPC MAC adress toa lower value than the peer . Change the vPC systempriotty ofthe replacement chassis to lower vale than the peer Correct Answer: 8¢ 1) The system wit the lower MAC address wins as master and this election isnot governed by the vPC rle pci 2) Before you introduce an altady isolated vPC device back into production check the LACP roles on both bores. If the same role, disable auto recovery with no auto-ecovery under the vPC domain on both pers and reload the isolated device, Afler reload, the isolated device comes up With the LACP role none established’ and can be introduced into the vPC withaut LACP role re-election. Reference: htpsuwwcisco.com/c/en(us/support/docs/ntrfaces-modules/nexus-700C-series-supervsor-|-nodule/119038-technote-nexus-00.html Community vote astrbution © & Max ([GETTIETS)2 years, 1 month ago Confirming 8 and C ‘When the paer-link comes up between two vPC peers, apart from the vPC ros, the LACP permanant rales are slo decided (one peer become the Master, while the other becomes the Slve), [An LACP role election occurs if both peers have same role (either master or slove), The system withthe lower MAC address wins as master and this ‘lection isnot governed by the vPC role priory configuration. ‘A relection causes VPC LACP port-channels to re-intalize, which leads toa possible trafic outage Before you introduce an already isolated VPC device back into production, check the LACP roles on both boxes. the same role, disable auto recovery with ne auto-recovery under the vPC domain on both peers and reload the isolated device. After reload, the isolated device comes up lth she LACP role none established and can be introduced into the vPC without LACP rale re-election, poted 7 mas © & Cobach 1 year 2 months ago hrtps/wncisco.comyc/en/us/support/docs/nterfaces-modules/newus-T000-series-superisor-1-module/119033-technot BC is correc ‘ated T nes © & paradigmes (Hat)? moms, 2 weeks 260 You cannot Set the vPC MAC address (mac is generated automatically from vpe domain ID to be an unique value) 'A-= (lower system priority number has higher potty onthe Primary election. That's why the replaced device should have higher system priority than the active one) C= is enough to disable auto-recavery on the newly introduced switch before the vpe restoration default timer expres and reload it ‘Also anether option would be to enable stcky-bit onthe active switch this would make sure the newly introduced switch will never take the active rele nexus-00 tml Correct Answer A and € prted 2 ines © & GuyThatTokesDumps 1 year 1 month 300 Band pte Times © & mahmoudlol year 4 months 290 Band pote tines © & elmotiude 1 yea: § months 290 {A the higher potty value ofthe replaced to keep it 5 the save D sable the recover timers such that it does not put the ports in a suspended state unl the timers expire pote Times 1B @ elmotude 1 yea Smortis ago Correction A 8 C (not D) ‘ated 2 net © & eypherd 1 yea 5 months ago ‘When you manually configure the system priority, ensure that you configure the same priority value on both VBC peer devices. these values ‘do not match, vPC will not come up. So mimo it ean be A, has to be 8 as per MaxG's comment ‘voted nes © & edscoshare2022 7 noms 990 ‘We recommend that you manually configure the vPC system priority when you are running LACP to ensure thatthe VPC peer switches are the primary switches on LACP. When you manually configure the system priority ensure that you configure the same priory value on both vPC peer switches, I these values do net match, vPC will not come up, higher value than te peer, it's about ‘voted ines <9 peer, not ypc peer 1B & NeoThedne 1 yx, 10 months ago I ehink tis simply 8 € You want to make sure thatthe replaced chassis doesnot flap the VPCs when the VPC peering i established Todaro, ‘Configure the replacement chasse with lower priory sot would become save once booted <= recammend ‘or Configure system mac adress ofthe new system to be higher (newer) asi the priority is set to be the same, the lower mac address (older system isthe tie breaker and gets tobe the master. pote Times 1B & Ni1000 1 year, 2 months 290 B and C are correct https//mm cisco comyfen/us/suppor docs/nterfaces-modiles/nesus-T000-series-supervsor-T-modile/118033-technote- nexus-O0 ht 1) The system withthe lower MAC address wins as master and ths election nat governed by the vPC rle priory 2) Before yeu introduce an already isolated vPC device back nto production, check the LACP roles on bath boxes. Ifthe same rle disable auto recovery with no auto-recavery under the vPC domain on both peers and reload the isolated device. After reload, the isolated device comes up With the LACPrale one estaba’ and can be introduces into the vPC without LACPrale re-election, pvoted 3 times © & masal 2 yrs, 1 month ago hitps//wmw cisco comve/en/us/t/docs/switches/datacenter/nexus5000/sw/layer2/503,n2_1/503.n2 law Cisco. 1Lchaptera himltconcept_SCFDEZEO9BCC#SC5AS76B5CADEFAODB2

    You might also like