dumpstool logo
Which policy configures an application-aware routing policy under Configuration > Policies?
Refer to the exhibit.
The engineer must assign community tags to 3 of its 74 critical server networks as soon as that are advertised to BGP peers. These server networks must not be advertised outside AS. Which configuration fulfill this requirement?
A)
B)
C)
D)
An engineer is configuring the branch office with a 172.16.0.0/16 subnet to use DIA for Internet traffic. All other traffic must flow to the central site or branches using the MPLS circuit Which configuration meets the requirement?
A)
B)
C)
D)
Refer to the exhibit.
The SD-WAN network is configured with a default full-mesh topology. The SD-WAN engineer wants the Barcelona WAN Edge to use MPLS TLOC as the preferred TLOC when communicating with Rome site. Which configuration must the engineer use to create a list to select MPLS color toward the Rome TLOC?
A)
B)
C)
D)
What are the two impacts of losing vManage connectivity to fabric in the Cisco SD-WAN network? (Choose two)
Which two vRoute attributes should be matched or set in vSmart policies and modified by data policies? (Choose two.)
In which VPN is the NAT operation on an outgoing interface configured for direct Interne! access?
Refer to the exhibit. The network administrator has configured a centralized topology policy that results in the displayed routing table at a branch office. Which two configurations are verified by the output? [Choose two.)
What is an advantage of using auto mode versus static mode of power allocation when an access point is connected to a PoE switch port?
Drag and drop the steps from the left into the sequence on the right for a WAN Edge router after powering on for zero touch provisioning.
An enterprise needs DIA on some of its branches with a common location ID: A041:B70C: D78E::18 Which WAN Edge configuration meets the requirement?
A)
B)
C)
D)
In a Cisco SD-WAN network, which component is responsible for distributing route and policy information via the OMP?
A policy is created to influence routing path in the network using a group of prefixes. What policy application will achieve this goal when applied to a site List?
Refer to the exhibit Which configuration sets up direct Internet access for VPN 1?
An engineer configures policing with a rate of 125 Bps and a burst rate of 8000 bits, as shown here:
Which configuration completes this task?
Which type of policy must be applied on a WAN Edge application-aware firewall to control traffic between two or more VPNs?
Company E wants to deploy Cisco SD-WAN with controllers in AWS The company's existing WAN is on private MPLS without Internet access to controllers m AWS An Internet circuit is added to a site in addition to the existing MPLS circuit. Which interface template establishes BFD neighbors over both transports?
A)
B)
C)
Miss
D)
Which secure tunnel type should be used to connect one WAN Edge router to other WAN Edge routers?
In which device state does the WAN edge router create control connections, but data tunnels are not created?
Refer to the exhibit. A user in the branch is connecting to Office 365 for the first time. Over which path does the branch WAN Edge router traffic follow?
An engineer is configuring a data policy for IPv4 prefixes for a single WAN Edge device on a site with multiple WAN Edge devices How is this policy added using the policy configuration wizard?
How many vCPUs and how much RAM are recommended to run the vSmart controller on the KVM server for 251 to 1000 devices in software version 20.4.x?
Which SD-WAN component is configured to enforce a policy to redirect branch-to-branch traffic toward a network service such as a firewall or IPS?
Which value is verified in the certificates to confirm the identity of the physical WAN Edge device?
Which Cisco SD-WAN component the initial communication between WAN Edge devices to join the fabric?
Which encryption algorithm secures binding exchanges Between Cisco TrustSec SXP peers?
Drag and drop the definitions from the left to the configuration on the right.
Which two sets of identifiers does OMP carry when it advertises TLOC routes between WAN Edge routers? (Choose two.)
An engineer wants to change the configuration of the certificate authorization mode from manual to automated. Which GUI selection will accomplish this?
Refer to the exhibit. vManage logs are available for the past few months. A device name change deployed mistakenly at a critical site. How is the device name change tracked by operation and design teams?
A)
B)
C)
Refer to the exhibit.
A customer wants to implement primary and secondary Cisco SD-WAN overlay routing for prefixes that are advertised for both data centers. The east data center (TLOC 101.101.101.101) is primary for east sites, and the west data center (TLOC 100.100.100.100) is primary for west sites. Which configuration change achieves this objective?
Refer to the exhibit A vBond controller was added to the controller list with the same Enterprise Root CA certificate as vManage. The two controllers can reach each other via VPNO and share the same organization name, but the control connection is not initiated- Which action resolves the issue?
Which protocol is used to propagate multicast join requests over the Cisco SD-WAN fabric?
Which command on a WAN Edge device displays the information about the colors present in the fabric that are learned from vSmart via OMP?
Refer to the exhibit The engineering must assign tags to 3 Of its 74 server networks as soon as they are advertised to peers These server network must not be advertised AS which configuration fulfil the requirement?
A)
B)
C)
D)
Refer to the exhibit Which command allows traffic through the IPsec tunnel configured in VPN 0?
Which data policy configuration influences BGP routing traffic flow from LAN to WAN?
A)
B)
C)
D)
In an AWS cloud, which feature provision WAN Edge routers automatically in Cisco SD-WAN?
Which on-the-box security feature supported by the Cisco ISR 4451 SD-WAN device and not on vEdge?
Which two requirements must be met for DNS inspection when integrating with cisco umbrella? (Choose two)
Refer to the exhibit. An enterprise decides to use the Cisco SD-WAN Cloud onRamp for SaaS feature and utilize H.Q site Biz iNET to reach SaaS Cloud for branch C. currently reaching SaaS Cloud directly. Which role must be assigned to devices at both sites in vManage Cloud Express for this solution to work?
Refer to the exhibit. An engineer is troubleshooting a control connection issue on a WAN Edge device that shows socket errors. The packet capture shows some ICMP packets dropped between the two devices. Which action resolves the issue?
Which type of certificate is installed on vManage for a user to access vManage via a web browser?
Which configuration step is taken on vManage after WAN Edge list is uploaded?
A network administrator is creating an OMP feature template from the vManage GUI to be applied to WAN edge routers. Which configuration attribute will avoid the redistribution of the routes back into the OMP from the LAN side?
How do WAN Edge devices operate when vSmart is inaccessible or fails to be reached by the WAN Edge?
What is the result during a WAN Edge software upgrade process if the version of the WAN Edge software is higher than the one running on a controller device?
Refer to the exhibit.
An engineer is configuring service chaining. Which set of configurations is required for all traffic from Site ID 1 going toward Site ID 2 to get filtered through the firewall on the hub site?
A)
B)
C)
D)
A vEdge platform is sending VRRP advertisement messages every 10 seconds. Which value configures the router back to the default timer?
An enterprise is continuously adding new sites to its Cisco SD-WAN network. It must configure any cached routes flushed when OMP peers have lost adjacency Which configuration allows the cached OMP routes to be flushed after every 24 hours from its routing table?
An engineer must apply the configuration for certificate installation to vBond Orchestrator and vSmart Controller. Which configuration accomplishes this task?
What is the default value (in milliseconds) set tor the poll interval in the BFD basic configuration?
Which two products are used to deploy Cisco WAN Edge Router virtual platforms? (Choose two.)
Which two virtualized environments are available for a company to install the controllers using the on-premises model? (Choose two )
What is the maximum number of IPsec that are temporarily created and converged on a new set if IPsec Sas in the pairwise keys process during a simultaneous rekey?
At which layer does the application-aware firewall block applications on a WAN Edge?
Company ABC has decided to deploy the controllers using the On-Prem method. How does the administrator upload the WAN Edge list to the vManage?
A)
B)
C)
D)
Which two criteria ate supported to filter traffic on a Cisco Umbrella Cloud-delivered firewall? (Choose two )
Refer to the exhibit.
An engineer is troubleshooting a control connection Issue. What does "connect" mean in this how control connections output?
Which configuration allows VPN 10 traffic to have direct internet access locally from the WAN Edge device?
A)
B)
C)
D)
Refer to the exhibit An engineer is configuring a QoS policy to shape traffic for VLAN 100 on a subinterface Which policy configuration accomplishes the task?
A)
B)
C)
D)
Which set of elements are verified by the controller to confirm the identity of edge devices?
A network administrator is configuring an application-aware firewall between inside zones to an outside zone on a WAN edge router using vManage GUI. What kind of Inspection is performed when the ‘’inspect’’ action is used?
Refer to the exhibit.
Which command-line configuration on a WAN Edge device achieves these results?
A)
B)
C)
D)
Refer to the exhibit.
An enterprise has hub and spoke topology where it has several VPNs. An engineer must allow users in VPN91 to reach users in VPN92 and VPN10 to reach VPN91 and VPN92. Which configuration meets these requirements?
After deploying Cisco SD-WAN the company realized that by default, all sites built direct IPsec VPN tunnels to each other In their previous topology all spoke sites used the head office as their next hop for the LAN segment that belongs to network 40.0.0.0/16 The company wants to deploy its previous policy, which allows the 40.0.0.0/16 network that originates at the hub to advertise to the spokes. Which configuration meets the requirement'?
A)
B)
C)
D)
What must an engineer conewef when decoying an SD-WAN on-pfemlses architecture based on ESXi hypervisor?
An engineer configures Rome WAN Edge 10 use MPLS cloud as the preferred link to reach Paris WAN Edge and use biz-internet as a backup. Which policy configuration must be led in the outbound direction toward Rome to accomplish the task?
A)
B)
C)
D)
Which component of the Cisco SD-WAN architecture oversees the control plane of overlay network to establish, adjust, and maintain the connections between the WAN Edge devices that form the Cisco SD-WAN fabric?
An engineer is adding a tenant with location JD 306432373 in vManage. What is the maximum number of alphanumeric characters that are accepted in the tenant name field?
How is a TLOC uniquely identified from a WAN Edge router to the SD-WAN transport network?
Which two resource data types are used to collect information for monitoring using REST API in Cisco SD-WAN? (Choose two.)
A customer has MPLS and Internet as the TLOC colors An engineer must configure conlroJIers with the Internet and not with MPLS Which configuration achieves this requirement on vManage?
A)
B)
C)
D)
Where on vManage does an engineer find the details of control node failure?
An engineer creates a data policy to prevent communication from the 172.20.21.0/24 network to the 172.20.41.0/24 network. Which configuration accomplishes this task?
Which actions must be taken to allow certain departments to require firewall protection when interacting with data center network without including other departments? (Choose two.)
Refer to the exhibit The Cisco SD-WAN network is configured with a default full-mesh topology. Islamabad HQ and Islamabad WAN Edges must be used as the hub sites. Hub sites MPLS TLOC must be preferred when forwarding FTP traffic based on a configured SLA class list. Which policy configuration does the network engineer use to call the SLA class and set the preferred color to MPLS?
Which TCP Optimization feature is used by WAN Edge to prevent unnecessary retransmissions and large initial TCP window sizes to maximize throughput and achieve a better quality?
An engineering team must prepare a traffic engineering policy where an MPLS circuit is preferred for traffic coming from the Admin VLAN Internet should be used as a backup only. Which configuration fulfill this requirement?
A)
B)
C)
D)
What is the default value for the Multiplier field of the BFD basic configuration in vManage?
An engineer creates this data policy for DIA for VPN 10:
Which policy sequence enables DIA for external networks?
An engineer must use data prefixes to configure centralized data policies using the vManage policy configuration wizard. What is the first step to accomplish this task?
An organization wants to discover monitor and track the applications running on the WAN Edge device on the LAN Which configuration achieves this goal?
Refer to the exhibit.
An MPLS connection on R2 must extend to R1 Users behind R1 must have dual connectivity for data traffic Which configuration provides R1 control connectivity over the MPLS connection?
A)
B)
C)
D)
Which action is performed during the onboarding process when a WAN Edge router is connected to ZTP server ztp.viptela com?
An engineer must apply the configuration for certificate installation to vBond Orchestrator and vSmart Controller. Which configuration accomplishes this task?
An engineer is adding a tenant with location ID 399533345 in vManage. What is the maximum number of alphanumeric characters that is accepted in the tenant name filed?
WAN Edge routers are configured manually to use UDP port offset to use nondefault offset values when IPsec tunnels are created. What is the offse range?
Which protocol Is used by the REST API to communicate with network services in the Cisco SO-WAN network?
Refer to the exhibit.
Which shaping-rate does the engineer use to shape traffic at 9 Mbps?
What is the OMP graceful restart default value on vSmart controllers and WAN Edge routers?
Which service VPN must be reachable from all WAN Edge devices and the controllers?
How should the IP addresses be assigned for all members of a Cisco vManage cluster located in the same data center?
TESTED 23 Feb 2025
