300-620 Actual Questions - Instant Download Tests Free Updated Today!
Get instant access of 100% real Cisco 300-620 exam questions with verified answers
Cisco 300-620 exam is a 90-minute exam that consists of 60-70 questions. 300-620 exam tests the candidate's knowledge of the Cisco ACI architecture, the configuration and management of ACI fabric, and the deployment of ACI infrastructure. 300-620 exam also covers the integration of ACI with other data center technologies and the use of automation tools to manage ACI infrastructure.
NEW QUESTION # 57
A Cisco ACI environment consists of multiple silent hosts that are often relocated between leaf switches. When the host is relocated, the bridge domain takes more than a few seconds to relearn the host's new location. The requirement is to minimize the relocation impact and make the ACI fabric relearn the new location of the host faster. Which action must be taken to meet these requirements?
- A. Set Unicast Routing to Enabled.
- B. Configure ARP Flooding to Enabled.
- C. Set L2 Unknown Unicast to Hardware Proxy.
- D. Configure IP Data-Plane Learning to No.
Answer: B
NEW QUESTION # 58
Which two statements regarding ACI Multi-Site are true? (Choose two.)
- A. The Multi-Site orchestrator must be directly attached to one ACI leaf.
- B. Routers in the Inter-Site network must run OSPF, DHCP relay, and MP-BGP.
- C. ACI Multi-Site is a solution that supports a dedicated APIC cluster per site.
- D. The Inter-Site network routers should run OSPF to establish peering with the spines.
- E. ACI Multi-Site is a solution that allows one APIC cluster to manage multiple ACI sites.
Answer: C,D
NEW QUESTION # 59
An engineer deploys a two-pod Cisco ACI Multi-Pod environment. Why should no more than two Cisco APIC controllers be deployed in the same pod?
- A. to ensure that all nodes in all pods have local access to a controller
- B. to avoid hair-pinning traffic that is destined for the primary APIC controller between pods
- C. to avoid losing all replicas of a shard if a pod fails
- D. to enable equal capacity to scale in each pod
Answer: D
NEW QUESTION # 60
Refer to the exhibit.
An engineer is implementing Cisco ACI - VMware vCenter integration for a blade server that lacks support of bonding. Which port channel mode results in "route based on originating virtual port" on the VMware VDS?
- A. MAC Pinning+
- B. Static Channel - Mode On
- C. LACP Active
- D. LACP Passive
- E. MAC Pinning-Physical-NIC-load
Answer: A
NEW QUESTION # 61
Refer to the exhibit.
Which two configurations enable inter-VRF communication? (Choose two.)
- A. Change the subject scope to VRF.
- B. Change the contract scope to Tenant.
- C. Export the contract and import as a contract interface.
- D. Set the subnet scope to Shared Between VRFs.
- E. Enable Advertise Externally under the subnet scope.
Answer: C,E
NEW QUESTION # 62
Refer to the exhibit.
A systems engineer is implementing the Cisco ACI fabric. However, the Server2 information is missing from the Leaf 101 endpoint table and the COOP database of the spine. The requirement is for the bridge domain configuration to enforce the ACI fabric to forward the unicast packets generated by Server1 destined to Server2. Which action must be taken to meet these requirements?
- A. Enable Unicast Routing
- B. Set IP Data-Plane Learning to No
- C. Enable ARP Flooding
- D. Set L2 Unknown Unicast to Flood
Answer: D
Explanation:
Both servers are in the same subnet. ARP flooding is out if we read the article in the link. Also unicast routing is not needed.
https://www.cisco.com/c/en/us/solutions/collateral/data-center-virtualization/application-centric-infrastructure/white-paper-c11-739989.html
NEW QUESTION # 63
Drag and drop the Cisco ACI filter entry options from the left onto the correct categories on the right indicating what are required or optional parameters.
Answer:
Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/1-x/Operating_ACI/guide/ b_Cisco_Operating_ACI/b_Cisco_Operating_ACI_chapter_01000.html
NEW QUESTION # 64
What are two requirements for the IPN network when implementing a Multi-Pod ACI fabric? (Choose two.)
- A. EIGRP routing
- B. VLAN ID 4
- C. PIM ASM multicast routing
- D. OSPF routing
- E. BGP routing
Answer: A,D
NEW QUESTION # 65
What must be configured to redistribute externally learned OSPF routes within the ACI fabric?
- A. BGP Inter-leak Route Map
- B. Route Control Profile
- C. PIM Sparse Mode
- D. BGP Route Reflector
Answer: B
NEW QUESTION # 66
An engineer must configure RADIUS authentication with Cisco ACI for remote authentication with out-of-band management access. Drag and drop the RADIUS configuration steps from the left into the required implementation order on the right. Not all steps are used.
Answer:
Explanation:
NEW QUESTION # 67
Which endpoint learning operation is completed on the egress leaf switch when traffic is received from an L3Out?
- A. The source MAC and IP address of the traffic is learned as a local endpoint.
- B. No source MAC or IP address of the traffic is learned as a remote endpoint.
- C. The source IP address of the traffic is learned as a remote endpoint.
- D. The source MAC address of the traffic is learned as a remote endpoint.
Answer: D
NEW QUESTION # 68
Which attribute should be configured for each user to enable RADIUS for external authentication in Cisco ACI?
- A. cisco-aci-role
- B. cisco-security domain
- C. cisco-av-pair
- D. cisco-auth-features
Answer: C
Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/2-x/Security_config/ b_Cisco_APIC_Security_Configuration_Guide/b_Cisco_APIC_Security_Guide_chapter_01011.html
NEW QUESTION # 69
Which setting prevents the learning of Endpoint IP addresses whose subnet does not match the bridge domain subnet?
- A. "Limit IP learning to subnet" setting within the bridge domain.
- B. "Limit IP learning to subnet" setting within the EPG.
- C. "Limit IP learning to network" setting within the bridge domain.
- D. "Limit IP learning to network" setting within the EPG.
Answer: A
NEW QUESTION # 70
An engineer is implementing a Cisco ACI data center network that includes Cisco Nexus 2000 Series 10G fabric extenders. Which physical topology is supported?
- A.

- B.

- C.

- D.

Answer: A
Explanation:
Section: ACI Fabric Infrastructure
NEW QUESTION # 71
An ACI administrator notices a change in the behavior of the fabric. Which action must be taken to determine if a human intervention introduced the change?
- A. Inspect event records in the APIC UI to see all actions performed by users.
- B. Inspect /var/log/audit_messages on the APIC to see a record of all user actions.
- C. Inspect audit logs in the APIC UI to see all user events.
- D. Inspect the output of show command history in the APIC CLI.
Answer: A
NEW QUESTION # 72
An engineer must implement management policy and data plane separation in the Cisco ACI fabric. Which ACI object must be created in Cisco APIC to accomplish this goal?
- A. Tenant
- B. Bridge domain
- C. Contract
- D. Application profile
Answer: A
NEW QUESTION # 73
Which type of policy configures the suppression of faults that are generated from a port being down?
- A. fault lifecycle assignment
- B. fault severity assignment
- C. event lifecycle assignment
- D. event severity assignment
Answer: B
Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/all/faults/guide/ b_APIC_Faults_Errors/b_IFC_Faults_Errors_chapter_01.html
NEW QUESTION # 74
A network engineer must design a method to allow the Cisco ACI to redirect traffic to the firewalls. Only traffic that matches specific L4-L7 policy rules should be redirected. The load must be distributed across multiple firewalls to scale the performance horizontally. Which action must be taken to meet these requirements?
- A. Implement ACI Service Graph Two Nodes with GIPo.
- B. Configure ACI Service Graph with Symmetric PBR.
- C. Configure ACI Service Graph with Unidirectional PBR.
- D. Implement ACI Service Graph with GIPo.
Answer: B
NEW QUESTION # 75
A network administrator configures AAA inside the Cisco ACI fabric. The authentication goes through the local users if the TACACS+ server is not reachable. If the Cisco APIC is out of the cluster, the access must be granted through the fallback domain. Which configuration set meets these requirements?
- A. Ping Check: False
Default Authentication Realm: Local
Fallback Check: False - B. Ping Check: True
Default Authentication Realm: Local
Fallback Check: True - C. Ping Check: True
Default Authentication Realm: TACACS+
Fallback Check: False - D. Ping Check: False
Default Authentication Realm: TACACS+
Fallback Check: True
Answer: D
NEW QUESTION # 76 
Refer to the exhibit. An engineer is integrating a VMware vCenter with Cisco ACI VMM domain configuration.
ACI creates port-group names with the format of "Tenant | Application | EPG". Which configuration option is used to generate port groups with names formatted as "Tenant=Application=EPG"?
- A. security domains
- B. enable tag collection
- C. delimiter
- D. virtual switch name
Answer: D
Explanation:
Section: Integrations
NEW QUESTION # 77
Refer to the exhibit, An engineer is deploying a Cisco ACI environment but experiences a STP loop between switch1 and switch2. Which configuration step is needed to break the STP loop?
- A. Enable BPDU filter under the STP interface policy on the Interfaces lacing the MST switches.
- B. Enable the native VLAN on the interfaces facing the MST switches using static pons in a dedicated EPG.
- C. Configure the STP instance to VLAN mapping under the switch STP policy.
- D. Configure a Layer 2 external bridged network on the interfaces facing the MST switches.
Answer: B
NEW QUESTION # 78
Refer to the exhibit. VM1 and VM2 are in Cisco ACI POD1 and communication takes place. Which event is triggered when VM2 is live migrated from POD1 to POD2?
- A. Leaf 201 creates a tunnel with leaf 102 because of the bounced traffic that is destined to VM2.
- B. Spines from POD2 send an MP-BGP EVPN update to the leaves in POD1 about the new location of VM2.
- C. Leaf 102 installs a bounce entry for VM2 pointing to the PTEP address of leaf 201.
- D. An MP-BGP EVPN update is received by spines in POD1 announcing the reachability of VM2 via the proxy VTEP address of the spines in POD2.
Answer: A
NEW QUESTION # 79
Which action sets Layer 2 loop migration in an ACI Fabric with a Layer 2 Out configured?
- A. Enable MCP on the ACI fabric.
- B. Enable STP on the ACI fabric.
- C. Disable STP on the ACI fabric.
- D. Disable STP in the external network.
Answer: A
NEW QUESTION # 80
......
Download Latest & Valid Questions For Cisco 300-620 exam: https://torrentvce.exam4free.com/300-620-valid-dumps.html
