300-415 Implementing Cisco SD-WAN Solutions (300-415 ENSDWI) Questions and Answers

An engineer configures policing with a rate of 125 Bps and a burst rate of 8000 bits, as shown here:

Which configuration completes this task?

Refer to the exhibit. An engineer configures a hub-and-spoke SD-WAN topology with the requirement that traffic from router A branch to router B branch is guaranteed to flow through the network hub, router C. Which configuration meets the requirement for router A?

What do receivers request to join multicast streams in a Cisco SO-WAN network?

Refer to the exhibit An engineer is getting a CTORGNMMIS error on a controller connection Which action resolves this issue?

Refer to the exhibit vManage and vBond have an issue establishing a connection with each other Which action resolves the issue?

Which SD-WAN devices require multicast PIM and IGMP configurations when setting up SD-WAN multicast?

Refer to the exhibit.

vManage and vBond have an issue establishing a connection to each other. Which configuration resolves the issue?

Refer to the exhibit vManage and vBond have an issue establishing a connection to vSmart Which two actions does the administrator take to fix the issue? (Choose two)

What is the result during a WAN Edge software upgrade process if the version of the WAN Edge software is higher than the one running on a controller device?

Drag and drop the functions from the left onto the correct templates on the right.

A WAN Edge device has several service VPNs with no routing protocol configured in the service VPNs The device must be configured so that all connected routes are visible in OMP for VPN 10 Which configuration meets the requirement?

A)

B)

C)

D)

Which TLOC color is used for site-to-site communication in a Google Cloud integration with Cisco SD-WAN?

What is a benefit of the application aware firewall feature in the Cisco SD-WAN solution?

Which behavior describes a WAN Edge router running dual DIA when its DPI engine has identified a cloud SaaS application?

Refer to the exhibit. A network administrator is configuring OSPF advanced configuration parameters from a template using the vManager GUI for a branch WAN Edge router to calculate the cost of summary routes to an ASBR. Which action achieves this configuration?

When software is upgraded on a vManage NMS, which two image-adding options store images in a local vManage software repository? (Choose two.)

Refer to the exhibit.

Which QoS treatment results from this configuration after the access list acl-guest is applied inbound on the vpn1 interface?

Which statement describes the requirement of integrating a secure internet gateway (SIG) with a Cisco SD-WAN Edge device?

A policy is created to influence routing in the network using a group of prefixes. What policy application will achieve this goal when applied to a site list?

What are the two protocols redistributed into OMP? (Choose two.)

Refer to exhibit. An engineer is troubleshooting tear of control connection even though a valid CertificateSerialNumber is entered. Which two actions resolve Issue? (Choose two)

When redistribution is configured between OMP and BGP at two Data Center sites that have Direct Connection interlink, which step avoids learning the same routes on WAN Edge routers of the DCs from LAN?

Which device should be configured with the service chain IP address to route intersite traffic through a firewall?

Refer to the exhibit Which NAT types must the engineer configure for the vEdge router to bring up the data plane tunnels?

Which encryption algorithm secures binding exchanges Between Cisco TrustSec SXP peers?

An engineer must apply the configuration for certificate installation to vBond Orchestrator and vSmart Controller. Which configuration accomplishes this task?

Which data policy configuration influences BGP routing traffic flow from LAN to WAN?

A)

B)

C)

D)

An engineer must configure a centralized policy on a site in which all HTTP traffic should use the Public Internet circuit if the loss on this circuit is below 10%. otherwise MPLS should be used Which configuration wizard fulfils this requirement?

Which type of route advertisement of OMP can be verified?

Which type of connection is created between a host VNet and a transit VNet when configuring Cloud OnRamp for laaS?

In the Cisco SD_WAN solution, vSmart controller is responsible for which two actions? (Choose two.)

A customer wants to use AWS for Cisco SD-WAN laaS services by deploying virtual SD-WAN routers in a transit AWS VPC The transit VPC then connects via site-to-site IPsec tunnels to an AWS transit gateway Which transit VPC connects via site-to-site IPsec tunnels to an AWS transit gateway?

Refer to the exhibit Which configuration must the engineer use to form underlay connectivity for the Cisco SD-WAN network?

A)

B)

C)

D)

Drag and drop the components from the left onto the corresponding Cisco NFV infrastructure Building Blocks on the right. Not all options are used.

An engineer must configure the SD-WAN Edge router to identify DSCP 26 traffic coming from the router's local site and then change the DSCP value to DSCP 18 before sending it over to the SD-WAN fabric. What are the two ways to create the required configuration? (Choose two).

What is an attribute of TLOC’?

Which configuration step is taken on vManage after WAN Edge list is uploaded?

An engineer is creating a policy for VPN1 users. Their scavenger traffic at site 101 must pass through a firewall. Which two match conditions must be selected to enable this policy? (Choose two.)

An administrator needs to configure SD-WAN to divert traffic from the company's private network to an ISP network. What action should be taken to accomplish this goal?

Which platforms are managed by a single vManage dashboard?

Which pathway under Monitor > Network > Select Device is used to verify service insertion configuration?

Which configuration defines the groups of interest before creation of the access list or route map?

A)

B)

C)

D.

Exhibit.

The SD-WAN network Is configured with a default full-mesh topology. The network engineer wants the Rome WAN Edge to use the MPLS TLOC as the preferred TLOC when ….. Telnet traffic as long as me MPLS Ink has these, characteristics:

Loss: 5%

Latency: 100ms

Jitter: 100 ms

Which configuration must the network engineer use to create a list that that classifies the MPLS link characteristics?

A)

B)

C)

D)

An administrator wants to create a policy to add a traffic policer called "politer-ccnp" to police data traffic on the WAN Edge. Which configuration accomplishes this task in vSmart?

Refer to the exhibit. vManage logs are available for the past few months. A device name change deployed mistakenly at a critical site. How is the device name change tracked by operation and design teams?

A)

B)

C)

Which command disables the logging of syslog messages to the local disk?

What are the two impacts of losing vManage connectivity to fabric in the Cisco SD-WAN network? (Choose two)

An engineer provisions a WAN Edge router. Which command should be used from the WAN Edge router to activate it with vManage?

Drag and drop the security terminologies from the left onto the PCI-compliant network features and devices on the right.

Refer to the exhibit A vBond controller was added to the controller list with the same Enterprise Root CA certificate as vManage. The two controllers can reach each other via VPNO and share the same organization name, but the control connection is not initiated- Which action resolves the issue?

How many vCPUs and how much RAM are recommended to run the vSmart controller on the KVM server for 251 to 1000 devices in software version 20.4.x?

How should the IP addresses be assigned for all members of a Cisco vManage cluster located in the same data center?

Which type of lists are used to group related items via an application-aware routing policy under the policy lists command hierarchy on vSmart controllers?

An engineer is configuring a data policy for IPv4 prefixes for a single WAN Edge device on a site with multiple WAN Edge devices How is this policy added using the policy configuration wizard?

An application team is getting ready to deploy a new business-critical application to the network. To protect the traffic, the network team must add another queue to the QoS map and then deploy the map to fabric Which configuration slop must be completed prior to adding the queue to the QoS map and applying If

An engineer is troubleshooting a certificate issue on vEdge. Which command is used to verify the validity of the certificates?

Refer to the exhibit The network team must configure ElGRP peering at HQ with devices in the service VPN connected to WAN Edge CSRv. CSRv is currently configured with

Which configuration on the WAN Edge meets the requiremnet

A)

B)

C)

D)

Refer to the exhibit The network team must configure El GRP peering at HQ with devices in the service VPN connected to WAN Edge CSRv. CSRv is currently configured with

A)

B)

C)

D)

Which two metrics must a cloud Edge router use to pick the optimal path for a SaaS application reachable via a gateway site? (Choose two.)

Which scheduling method is configured by default for the eight queues in the cloud vEdge router1?

An engineer creates this data policy for DIA for VPN 10:

Which policy sequence enables DIA for external networks?

Refer to the exhibit.

An organization is testing a Cisco SD-WAN solution and decided to have the control plane established first and not the data plane at the time of migration. Which configuration achieves this goal?

Drag and drop the steps from the left Into the order on the right to delete a software image for a WAN Edge router starting with Maintenance > Software Upgrade > Device list on vManage.

What is the behaviour of vBond orchestrator?

A network engineer must configure all branches to communicate with each other through the Service Chain Firewall located at the headquarters site. Which configuration allows the engineer to accomplish this task?

A)

B)

C)

D)

Drag and drop the Cisco SD-WAN components from the left onto their functions on the right.

Refer to the exhibit Which configuration sets up direct Internet access for VPN 1?

Refer to the exhibit. Which configuration ensures that OSPP routes learned from Site2 are reachable at Stein and vice-versa?

The Cisco SD-WAN engineer is configuring service chaining for a next-generation firewall located at the headquarters. Which configuration creates the service?

A)

B)

C)

D)

Refer to the exhibit A user has selected the options while configuring a VPN Interface Ethernet feature template What is the required configuration parameter the user must set in this template for this feature to function?

An engineer creates a data policy to prevent communication from the 172.20.21.0/24 network to the 172.20.41.0/24 network. Which configuration accomplishes this task?

Which two hardware platforms support Cisco IOS XE SD-WAN images'' (Choose two)

Which policy configuration must be used to classify traffic as it enters the branch WAN Edge router to be put into the desired output queue?

A)

B)

C)

D)

Refer to the exhibit. The ge0/0 interface connects to a 30-MB link. A network administrator wants to always have 10 MB available for high priority traffic. When lower-priority traffic busts exceed 20 MB. Traffic should be redirected to the second WAN interface ge0/1. Which set of configurations accomplishes this task?

A)

B)

C)

D)

What is the maximum number of IPsec that are temporarily created and converged on a new set if IPsec Sas in the pairwise keys process during a simultaneous rekey?

An engineer is adding a tenant with location ID 399533345 in vManage. What is the maximum number of alphanumeric characters that is accepted in the tenant name filed?

An engineer is configuring a centralized policy to influence network route advertisement. Which controller delivers this policy to the fabric?

Which percentage for total memory or total CPU usage for a device is classified as normal in the WAN Edge Health pane?

What are the two advantages of configuration groups in a Cisco SD-WAN deployment? (Choose two.)

An organization wants to use the cisco SD-WAN regionalized service-chaining feature to optimize cost and user experience with application in the network, which allows branch routers to analyze and steer traffic toward the required network function. Which feature meets this requirement?

What is the purpose of ‘’vpn 0’’ in the configuration template when onboarding a WAN edge node?

Which two virtualized environments are available for a company to install the controllers using the on-premises model? (Choose two )

An administrator is configuring the severity level on the vManage NMS for events that indicate that an action must be taken immediately. Which severity level must be configured?

For data plane resiliency, what does the Cisco SD-WAN software implement?

What is the function of the AppNav Controller in the Cisco SD-WAN AppNav solution?

Which routes are similar to the IP route advertisements when the routing information of WAN Edge routers is learned from the local site and local routing protocols?

Which two vRoute attributes should be matched or set in vSmart policies and modified by data policies? (Choose two.)

Which plane builds and maintains the network topology and makes decisions on traffic flows?

An enterprise has these three WAN connections:

public Internet

business internet

MPLS

An engineer must configure two available links to route traffic via both links. Which configuration achieves this objective?

Refer to the exhibit. Which configuration extends the INET interface on R1 to be used by R2 for control and data connections?

A)

B)

C)

A network is configured with CoPP to protect the CORE router route processor for stability and DDoS protection. As a company policy, a class named class-default is preconfigured and must not be modified or deleted. Troubleshoot CoPP to resolve the issues introduced during the maintenance window to ensure that:

WAN

CORE

MGMT

An engineer must improve video quality by limiting HTTP traffic to the Internet without any failover. Which configuration in vManage achieves this goal?

Which two architectural components are part of an SD-WAN high availability vManage cluster? (Choose two.)

Which component of the Cisco SD-WAN network assures that only valid customer nodes are participating in the overlay network?

Which protocol is configured on tunnels by default to detect loss, latency, jitter, and path failures in Cisco SD-WAN?

How is an event monitored and reported for an individual device in the overlay network at site ID:S4300T6E43F36?

Which platform is a Cisco SD-WAN virtual platform?

Drag and drop the vManage policy configuration procedures from the left onto the correct definitions on the right.

Refer to the exhibit. An administrator is configuring a policy in addition to an existing hub-and-spoke policy for two sites that should directly communicate with each other. How is this policy configured?

What are the two components of an application-aware firewall? (Choose two.)

In which Cisco SD-WAN deployment scenario does Cisco Umbrella SIG deliver the most value?

Which two services are critical for zero touch provisioning on-boarding? (Choose two)

Drag and drop the policies from the left onto the correct policy types on the right.

Refer to the exhibit. A customer wants to deploy service insertion at site1. Which traffic from VPN 10 must route to this site through a firewall. A policy must be in place to route VPN 10 traffic from all sites toward this firewall. Which configuration must be on the vSmart controller to meet this requirement?

How many network interface cards are needed to add in virtual machine settings when installing vSmart controller on VMware vSphere ESXi Hypervisor software?

Which cloud based component in cisco SD-WAN is responsible for establishing a secure connection to each WAN edge router and distributes routers and policy information via omp?

What is the main purpose of using TLOC extensions in WAN Edge router configuration?

Which OSPF command makes the WAN Edge router a less preferred exit from a site with a dual WAN Edge design?

A)

B)

C)

D)

Which component is used to optimize the multicast distribution tree enabled through the multicast network?

Refer to exhibit.

An engineer is troubleshooting tear down of control connections even though a valid Certificate Serial Number is entered Which two actions resolve the Issue? (Choose two)

An engineer is tasked to improve throughput for connection-oriented traffic by decreasing round-trip latency. Which configuration will achieve this goal?

How many subnets are necessary in Azure VNet for a WAN Edge device to function in the cloud deployment?

An engineer must advertise OSPF-learned routes and modify the update interval for route filtering by TLOC color to 300 on an SD-WAN device. Which configuration accomplishes this

task?

A bank is looking for improved customer experience for applications and reduce overhead related to compliance and security. Which key feature or features of the Cisco SD-WAN solution will help the bank to achieve their goals?

Company ABC has decided to deploy the controllers using the On-Prem method. How does the administrator upload the WAN Edge list to the vManage?

A)

B)

C)

D)

Drag and drop the route verification output from show omp tlocs from the left onto the correct explanations on the right.

Refer to the exhibit.

The network team must configure branch B WAN Edge device 103 to establish dynamic full-mesh IPsec tunnels between all colors with branches over MPLS and Internet circuits. The branch ts configured with:

Which configuration meets the requirement?

A)

B)

C)

D)

Which component of the Cisco SD-WAN control plane architecture facilitates the storage of certificates and configurations for network components?

Refer to the exhibit. An enterprise decides to use the Cisco SD-WAN Cloud onRamp for SaaS feature and utilize H.Q site Biz iNET to reach SaaS Cloud for branch C. currently reaching SaaS Cloud directly. Which role must be assigned to devices at both sites in vManage Cloud Express for this solution to work?

What does forward error correction addresses in Cisco SO-WAN?

What are the two functions of vSmart? (Choose two)

An engineer must avoid routing loops on the SD-WAN fabric for routes advertised between data center sites Which BGP loop prevention attribute must be configured on the routers to meet this requirement?

Which component is responsible for creating and maintaining the secure DTLS/TLS connection on the vSmart controller?

Drag and drop the steps from the left into the order on the right to delete a software image for a WAN Edge router starting with Maintenance > Software Upgrade > Device list on vManage.

Which pathway under Monitor > Network > Select Device is used to verify service insertion configuration?

Which SD-WAN component allows an administrator to manage and store software images for SD-WAN network elements?

Refer to the exhibit.

The tunnel interface configuration on both WAN Edge routers is:

Which configuration for WAN Edge routers will connect to the Internet?

How does the replicator role function in cisco SD-WAN?

A company is using Catalyst SD-WAN Manager as its root certificate authority server and must generate a root certificate using the vShell (Linux) built into the CLI of Catalyst SD-WAN Manager. Which command must be issued to generate the root certificate?