Which two prerequisites must be met before the Cloud onRamp for laaS is initiated on vManage to expand to the AWS cloud? (Choose two)
Company ABC has decided to deploy the controllers using the On-Prem method. How does the administrator upload the WAN Edge list to the vManage?
A)
B)
C)
D)
What are the two protocols redistributed into OMP? (Choose two.)
What is the default value (in milliseconds) set tor the poll interval in the BFD basic configuration?
Refer to the exhibit.
An engineer is configuring service chaining. Which set of configurations is required for all traffic from Site ID 1 going toward Site ID 2 to get filtered through the firewall on the hub site?
A)
B)
C)
D)
Which percentage for total memory or total CPU usage for a device is classified as normal in the WAN Edge Health pane?
What is the role of the Session Traversal Utilities for NAT server provided by the vBond orchestrator?
An engineer wants to automate the onboarding process for a WAN Edge router with vManage. Which command will accomplish this?
Which protocol advertises WAN edge routes on the service side?
When VPNs are grouped to create destination zone in Zone-Based Firewall, how many zones can a single VPN be part of?
Refer to the exhibit.
The network team must configure branch B WAN Edge device 103 to establish dynamic full-mesh IPsec tunnels between all colors with branches over MPLS and Internet circuits. The branch ts configured with:
Which configuration meets the requirement?
A)
B)
C)
D)
What is the behaviour of vBond orchestrator?
A network administrator is configuring an application-aware firewall between inside zones to an outside zone on a WAN edge router using vManage GUI. What kind of Inspection is performed when the ‘’inspect’’ action is used?
Refer to the exhibit Cisco SD-WAN is deployed with controllers hosted in a data center All branches have WAN Edge devices with dual connections to the data center one via Internet and the other using MPLS Three branches out of 20 have issues with their control connections on MPLS circuit The local error refers to Control Connection Failure Which action resolves the issue*?
An engineer builds a three-node vManage cluster and then realizes that multiple nodes are unnecessary for the size of the company. How should the engineer revert the setup to a single vManage?
An engineer is adding a tenant with location ID 399533345 in vManage. What is the maximum number of alphanumeric characters that is accepted in the tenant name filed?
What is the OMP graceful restart default value on vSmart controllers and WAN Edge routers?
How is multicast routing enabled on devices in the Cisco SD-WAN overlay network?
WAN Edge routers are configured manually to use UDP port offset to use nondefault offset values when IPsec tunnels are created. What is the offse range?
Refer to the exhibit. A user in the branch is connecting to Office 365 for the first time. Over which path does the branch WAN Edge router traffic follow?
Which two resource data types are used to collect information for monitoring using REST API in Cisco SD-WAN? (Choose two.)
A company must avoid downtime at the remote sites and data plane to continue forwarding traffic between WAN Edge devices if the branch router loses connectivity to its OMP peers Which configuration meets the requirement?
A)
B)
C)
D)
An engineer creates a data policy to prevent communication from the 172.20.21.0/24 network to the 172.20.41.0/24 network. Which configuration accomplishes this task?
An engineer must automate certificate signing through Cisco. Which vManage configuration achieves this task?
A)
B)
C)
D)
Which protocol detects path status (up/down), measures loss/latency/jitter, and measures the quality of the IPsec tunnel MTU?
Which website allows access to visualize the geography screen from vManager using the internet?
An engineer is configuring the branch office with a 172.16.0.0/16 subnet to use DIA for Internet traffic. All other traffic must flow to the central site or branches using the MPLS circuit Which configuration meets the requirement?
A)
B)
C)
D)
Refer to the exhibit Which command allows traffic through the IPsec tunnel configured in VPN 0?
What are the two components of an application-aware firewall? (Choose two.)
An enterprise has several sites with multiple VPNs that are isolated from each other A new requirement came where users in VPN 73 must be able to talk to users in VPN 50 Which configuration meets this requirement?
Refer to the exhibit The network team must configure application-aware routing for the Service VPN 50.0.0.0/16 The SLA must prefer MPLS for video traffic but the remaining traffic must use a public network What must be defined other than applications before the application-aware policy is create?
What are the two impacts of losing vManage connectivity to fabric in the Cisco SD-WAN network? (Choose two)
Which API call retrieves a list of all devices in the network?
Refer to the exhibit. A network administrator is configuring OSPF advanced configuration pararmeters from a template using the vManager GUI for a branch WAN Edge router to calculate the cost of summary routes to an ASBR. Which action achieves this configuration?
What is a requirement for a WAN Edge to reach vManage, vBond, and vSmart controllers in a data center?
Which destination UDP port is used by WAN Edge router to make a DTLS connection with vBond Orchestrator?
Which queue must an engineer configure for control and BFD traffic for convergence on a WAN Edge router?
In a Cisco SD-WAN architecture, what is the role of the WAN Edge?
An engineer must create a QoS policy by creating a class map and assigning it to the LLQ queue on a WAN Edge router Which configuration accomplishes the task?
A)
B)
C)
D)
Which set of platforms must he in separate VMS as of release 16.1?
Which alarm setting is configured to monitor serious events that affect but do not shut down, the operation of a network function?
Drag and drop the steps from the left Into the order on the right to delete a software image for a WAN Edge router starting with Maintenance > Software Upgrade > Device list on vManage.
What is a benefit of the application-aware firewall?
Which feature builds transport redundancy by using the cross link between two redundant WAN Edge routers?
An administrator wants to create a policy to add a traffic policer called "politer-ccnp" to police data traffic on the WAN Edge. Which configuration accomplishes this task in vSmart?
Refer to exhibit.
An engineer is troubleshooting tear down of control connections even though a valid Certificate Serial Number is entered Which two actions resolve the Issue? (Choose two)
Refer to the exhibit The network team must configure ElGRP peering at HQ with devices in the service VPN connected to WAN Edge CSRv. CSRv is currently configured with
Which configuration on the WAN Edge meets the requiremnet
A)
B)
C)
D)
Which two vRoute attributes should be matched or set in vSmart policies and modified by data policies? (Choose two.)
Refer to the exhibit.
Customer XYZ cannot provision dual connectivity on both of its routers due to budget constraints but wants to use both R1 and R2 interlaces for users behind them for load balancing toward the hub site. Which configuration achieves this objective?
A network administrator is configuring Qos on a vEdge 5000 router and needs to enable it on the transport side interface. Which policy setting must be selected to accomplish this goal?
Which SD-WAN component allows an administrator to manage and store software images for SD-WAN network elements?
When the VPN membership policy is being controlled at the vSmart controller, which policy disallows VPN 1 at sites 20 and 30?
A)
B)
C)
D)
An engineer is configuring a centralized policy to influence network route advertisement. Which controller delivers this policy to the fabric?
Refer to the exhibit An engineer must configure a QoS policy between me hub and site A (spoke) over a standard internet circuit where traffic shaping is adjusted automatically based on evaiiabk» bandwidth Which configuration meets the requirement?
Which two features does the application firewall provide? (Choose two.)
Which protocol is used to propagate multicast join requests over the Cisco SD-WAN fabric?
Drag and drop the security terminologies from the left onto the PCI-compliant network features and devices on the right.
Refer to the exhibit, which configuration configures IPsec tunnels in active and standby?
Which scheduling method is configured by default for the eight queues in the cloud vEdge router1?
Which combination of platforms are managed by vManage?
Refer to the exhibit.
An engineer is troubleshooting a control connection Issue. What does "connect" mean in this how control connections output?
Which VPNs must be configured outside the workflow to complete the SD-WAN overlay setup when using the Quick Connect workflow?
Which protocol is used between redundant vSmart controllers to establish a permanent communication channel?
Refer to the exhibit. A customer wants to deploy service insertion at site1. Which traffic from VPN 10 must route to this site through a firewall. A policy must be in place to route VPN 10 traffic from all sites toward this firewall. Which configuration must be on the vSmart controller to meet this requirement?
B. 
C. 
D. 
Which two different states of a WAN Edge certificate are shown on vManage? (Choose two.)
When redistribution is configured between OMP and BGP at two Data Center sites that have Direct Connection interlink, which step avoids learning the same routes on WAN Edge routers of the DCs from LAN?
Which table is used by the vSmart controller to maintain service routes of the WAN Edge routers in the hub and local branches?
In the Cisco SD_WAN solution, vSmart controller is responsible for which two actions? (Choose two.)
Refer to the exhibit.
An engineer configured OMP with an overlay-as of 10666. What is the AS-PATH for prefix 104.104.104.104/32 on R100?
An engineer provisions a WAN Edge router. Which command should be used from the WAN Edge router to activate it with vManage?
A customer has 1 to 100 service VPNs and wants to restrict outbound updates for VPN1 Which control policy configuration restricts these updates?
A)
B)
C)
D)
I
In which file format is a critical severity report downloaded from the MONITOR I ALARM tab in the vManage GUI?
Drag and drop the devices from the left onto the correct functions on the right.
Which protocol runs between the vSmart controllers and WAN Edge routers when the vSmart controller acts like a route reflector?
Which value is verified in the certificates to confirm the identity of the physical WAN Edge device?
Which configuration defines the groups of interest before creation of the access list or route map?
A)
B)
C)
D.
A customer wants to use AWS for Cisco SD-WAN laaS services by deploying virtual SD-WAN routers in a transit AWS VPC The transit VPC then connects via site-to-site IPsec tunnels to an AWS transit gateway Which transit VPC connects via site-to-site IPsec tunnels to an AWS transit gateway?
Which component of the Cisco SD-WAN control plane architecture should be located in a public Internet address space and facilitates NAT-traversal?
An engineer wants to change the configuration of the certificate authorization mode from manual to automated. Which GUI selection will accomplish this?
Which logs verify when a device was upgraded?
After deploying Cisco SD-WAN the company realized that by default, all sites built direct IPsec VPN tunnels to each other In their previous topology all spoke sites used the head office as their next hop for the LAN segment that belongs to network 40.0.0.0/16 The company wants to deploy its previous policy, which allows the 40.0.0.0/16 network that originates at the hub to advertise to the spokes. Which configuration meets the requirement'?
A)
B)
C)
D)
An engineer configures an application-aware routing policy for a group of sites The locations depend on public and private transports The policy does not work as expected when one of the transports does not perform properly This policy is configured:
which configuration completes the policy so that it works for all locations?
A)
B)
C)
D)
An engineer wants to track tunnel characteristics within an SLA-based policy for convergence. Which policy configuration will achieve this goal?
Which data policy configuration influences BGP routing traffic flow from LAN to WAN?
A)
B)
C)
D)
Which feature template configures OMP?
A)
B)
C)
D)
An engineer modifies a data policy for DIA in VPN 67. The location has two Internet-bound circuits. Only the web browsing traffic must be admitted for DIA. without further discrimination about which transport to use.
Here is the existing data policy configuration:
Which policy configuration sequence meets the requirements?
A network administrator is tasked to make sure that an OMP peer session is closed after missing three consecutive keepalive messages in 3 minutes. Additionally, route updates must be sent every minute. If a WAN Edge router becomes unavailable, the peer must use last known information to forward packets for 12 hours. Which set of configuration commands accomplishes this task?
How should the IP addresses be assigned for all members of a Cisco vManage cluster located in the same data center?
Which two advanced security features are available on the Cisco SD-WAN WAN Edge (vEdge) device? (Choose two.)
Which two metrics must a cloud Edge router use to pick the optimal path for a SaaS application reachable via a gateway site? (Choose two.)
The Cisco SD-WAN engineer is configuring service chaining for a next-generation firewall located at the headquarters. Which configuration creates the service?
A)
B)
C)
D)
Refer to the exhibit.
An engineer is troubleshooting an issue where vManage and vSmart have a problem establishing a connection to vBond. Which action fixes the issue?
Which policy tracks path characteristics such as loss, latency, and jitter in vManage?
An engineer is tasked to improve throughput for connection-oriented traffic by decreasing round-trip latency. Which configuration will achieve this goal?
An enterprise has these three WAN connections:
public Internet
business internet
MPLS
An engineer must configure two available links to route traffic via both links. Which configuration achieves this objective?
Which component of the Cisco SD-WAN control plane architecture facilitates the storage of certificates and configurations for network components?
How many subnets are necessary in Azure VNet for a WAN Edge device to function in the cloud deployment?
Which two platforms for the Cisco SD-WAN architecture are deployable in a hypervisor on-premises or in IAAS Cloud? (Choose two.)
Two sites have one WAN Edge each WAN Edge has two public TLOCs with no restriction configured. There is full reachability between the TLOCs. How many data tunnels are formed on each Edge router?
An engineer must configure the SD-WAN Edge router to identify DSCP 26 traffic coming from the router's local site and then change the DSCP value to DSCP 18 before sending it over to the SD-WAN fabric. What are the two ways to create the required configuration? (Choose two).
An engineer creates this data policy for DIA for VPN 10:
Which policy sequence enables DIA for external networks?
An engineer is applying QoS policy for the transport-side tunnel interfaces to enable scheduling and shaping for a WAN Edge cloud router Which command accomplishes the task?
An engineer configures Rome WAN Edge 10 use MPLS cloud as the preferred link to reach Paris WAN Edge and use biz-internet as a backup. Which policy configuration must be led in the outbound direction toward Rome to accomplish the task?
A)
B)
C)
D)
Which protocol is used to measure loss latency, Jitter, and liveliness of the tunnel between WAN Edge router peers?
Refer to the exhibit.
The tunnel interface configuration on both WAN Edge routers is:
Which configuration for WAN Edge routers will connect to the Internet?
An engineer modifies a data policy for DIA in VPN 200 to meet the requirements for traffic destined to these locations:
* external networks; must be translated
* external networks; must use a public TLOC color
* syslog servers, must use a private TLOC color
Here is the existing data policy configuration:
Which policy configuration sequence set meets the requirements?
B. 
C. 
Which encryption algorithm is used for encrypting SD-WAN data plane traffic?
An engineering team must prepare a traffic engineering policy where an MPLS circuit is preferred for traffic coming from the Admin VLAN Internet should be used as a backup only. Which configuration fulfill this requirement?
A)
B)
C)
D)
Which hardware component is involved in the Cisco SD-WAN authentication process for ISR platforms?
Which device information is requited on PNP/ZTP to support the zero-touch onboarding process?
An engineer must configure a centralized policy on a site in which all HTTP traffic should use the Public Internet circuit if the loss on this circuit is below 10%. otherwise MPLS should be used Which configuration wizard fulfils this requirement?
Refer to the exhibit. An enterprise network is connected with an ISP network on an 80 Mbps bandwidth link. The network operation team observes 100 Mbps traffic on the 1Gig-ISP link during peak hours Which configuration provides bandwidth control to avoid traffic congestion during peak hours?
A)
B)
C)
D)
An engineer is configuring a list that matches all IP prefixes with lengths from /1 to /16 in a centralized control policy. Which list accomplishes this task?
Exhibit.
The SD-WAN network is configured with a default full-mash topology. An engineer wants Barcelona and Paris to communicate to each other through the London site using a control Which control policy configuration accomplishes the task?
A)
B)
C)
D)
Refer to the exhibit. Which configuration value is used to change the administrative distance of iBGP routes to 20?
What is a restriction when configuring a tunnel interface?
An engineer is configuring a data policy for IPv4 prefixes for a single WAN Edge device on a site with multiple WAN Edge devices How is this policy added using the policy configuration wizard?
A network engineer must configure all branches to communicate with each other through the Service Chain Firewall located at the headquarters site. Which configuration allows the engineer to accomplish this task?
A)
B)
C)
D)
What is the default value for the number of paths advertised per prefix in the OMP feature template?
Which type of connection is created between a host VNet and a transit VNet when configuring Cloud OnRamp for laaS?
An administrator must configure an ACL for traffic coming in from the service-side VPN on a specific WAN device with circuit ID 391897770. Which policy must be used to configure this ACL?
Copyright © 2021-2025 CertsTopics. All Rights Reserved
