clapgeek logo
Refer to the exhibit Which command allows traffic through the IPsec tunnel configured in VPN 0?
Which two virtualized environments are available for a company to install the controllers using the on-premises model? (Choose two )
Which routes are similar to the IP route advertisements when the routing information of WAN Edge routers is learned from the local site and local routing protocols?
After deploying Cisco SD-WAN the company realized that by default, all sites built direct IPsec VPN tunnels to each other In their previous topology all spoke sites used the head office as their next hop for the LAN segment that belongs to network 40.0.0.0/16 The company wants to deploy its previous policy, which allows the 40.0.0.0/16 network that originates at the hub to advertise to the spokes. Which configuration meets the requirement'?
A)
B)
C)
D)
An engineer is troubleshooting a certificate issue on vEdge. Which command is used to verify the validity of the certificates?
Refer to the exhibit A WAN Edge device was recently added to vManage but a control connection could not be established Which action resolves this issue?
Refer to the exhibit.
An engineer is troubleshooting a control connection Issue. What does "connect" mean in this how control connections output?
Refer to the exhibit The network team must configure ElGRP peering at HQ with devices in the service VPN connected to WAN Edge CSRv. CSRv is currently configured with
Which configuration on the WAN Edge meets the requiremnet
A)
B)
C)
D)
Which policy blocks TLOCs from remotes and allows TLOCs from the data center to form hub-and-spoke peering?
Refer to the exhibit. An engineer must configure the Overlay Management Protocol route preference so that when B2 tries to reach host routes advertised by B1 it always chooses the MPLS circuit. Which two match conditions must be configured to accomplish this task? (Choose two.)
Drag and drop the alarm slates from the left onto the corresponding alarm descriptions on the right.
When the VPN membership policy is being controlled at the vSmart controller, which policy disallows VPN 1 at sites 20 and 30?
A)
B)
C)
D)
An engineer is configuring a centralized policy to influence network route advertisement. Which controller delivers this policy to the fabric?
An engineer must deploy a QoS policy with these requirements:
• policy name: App-police
• police rate: 1000000
• burst: 1000000
• exceed: drop
Which configuration meets the requirements?
How should the IP addresses be assigned for all members of a Cisco vManage cluster located in the same data center?
Which table is used by the vSmart controller to maintain service routes of the WAN Edge routers in the hub and local branches?
Refer to the exhibit.
vManage and vSmart have an issue establishing a connection to vBond. Which configuration resolves the issue?
Refer to the exhibit. An ongineer configured OMP with an ovorlay-as of 10666. What is tho AS-PATH for prefix 104.104.104.104/32 on R1007?
Which Cisco router provides a distributed multicore architecture optimized for SD-WAN branch support?
What is a requirement for deployment of on-premises vBond controllers through the Cisco Plug and Play Connect process?
A network engineer must configure all branches to communicate with each other through the Service Chain Firewall located at the headquarters site. Which configuration allows the engineer to accomplish this task?
A)
B)
C)
D)
Refer to the exhibit.
An enterprise has hub and spoke topology where it has several VPNs. An engineer must allow users in VPN91 to reach users in VPN92 and VPN10 to reach VPN91 and VPN92. Which configuration meets these requirements?
Which configuration change allows direct internet access at the branch site for YouTube traffic?
Which device information is requited on PNP/ZTP to support the zero-touch onboarding process?
An administrator is configuring the severity level on the vManage NMS for events that indicate that an action must be taken immediately. Which severity level must be configured?
Drag and drop the vManage policy configuration procedures from the left onto the correct definitions on the right.
Refer to the exhibit, Which configuration routes Site 2 through the firewall in Site 1?
An engineer must create a QoS policy by creating a class map and assigning it to the LLQ queue on a WAN Edge router Which configuration accomplishes the task?
A)
B)
C)
D)
A company must avoid downtime at the remote sites and data plane to continue forwarding traffic between WAN Edge devices if the branch router loses connectivity to its OMP peers Which configuration meets the requirement?
A)
B)
C)
D)
Refer to the exhibit. An engineer must block FTP traffic coming in from a particular Service VPN on a WAN Edge device Which set of steps achieves this goal?
Refer to the exhibit. The network administrator has configured a centralized topology policy that results in the displayed routing table at a branch office. Which two configurations are verified by the output? [Choose two.)
An organization wants to discover monitor and track the applications running on the WAN Edge device on the LAN Which configuration achieves this goal?
Refer to the exhibit. Which configuration value is used to change the administrative distance of iBGP routes to 20?
At which layer does the application-aware firewall block applications on a WAN Edge?
Refer to the exhibit.
The tunnel interface configuration on both WAN Edge routers is:
Which configuration for WAN Edge routers will connect to the Internet?
An engineer is configuring a data policy for packets that must be captured through the policy. Which command accomplishes this task?
Refer to the exhibit. An engineer is enabling command line access via MPLS for in-band management. Which command completes the partial SD-WAN interface configuration with the highest degree of security?
An enterprise needs DIA on some of its branches with a common location ID: A041:B70C: D78E::18 Which WAN Edge configuration meets the requirement?
A)
B)
C)
D)
Which two REST API functions are performed for Cisco devices in an overlay network? (Choose two)
An engineer is configuring a data policy IPv4 prefixes for a site WAN edge device on a site with edge devices. How is this policy added using the policy configuration wizard?
What is the default value (in milliseconds) set tor the poll interval in the BFD basic configuration?
Which device should be configured with the service chain IP address to route intersite traffic through a firewall?
Refer to the exhibit A vBond controller was added to the controller list with the same Enterprise Root CA certificate as vManage. The two controllers can reach each other via VPNO and share the same organization name, but the control connection is not initiated- Which action resolves the issue?
Drag and drop the steps from the left into the order on the right to upload software on vManage repository that is accessible from maintenance > Software Repository.
Which destination UDP port is used by WAN Edge router to make a DTLS connection with vBond Orchestrator?
A bank is looking for improved customer experience for applications and reduce overhead related to compliance and security. Which key feature or features of the Cisco SD-WAN solution will help the bank to achieve their goals?
Which VPNs must be configured outside the workflow to complete the SD-WAN overlay setup when using the Quick Connect workflow?
An application team is getting ready to deploy a new business-critical application to the network. To protect the traffic, the network team must add another queue to the QoS map and then deploy the map to fabric Which configuration slop must be completed prior to adding the queue to the QoS map and applying If
A customer is receiving routes via OMP from vSmart controller for a specific VPN. The customer must provide access to the W2 loopback received via OMP to the OSPF neighbor on the service-side VPN, which configuration fulfils these requirements?
Which control policy assigned to Drenches in the out direction establishes a strict hub-and-spoke topology tor VPN2?
A)
B)
C)
D)
Refer to the exhibit. vManage logs are available for the past few months. A device name change deployed mistakenly at a critical site. How is the device name change tracked by operation and design teams?
A)
B)
C)
Refer to the exhibit. The Cisco SD-VYAN is deployed using the default topology. The engineer v/ants to configure a service insertion policy such that all data traffic between Rome to Paris is forwarded through the NGFW located in London. Which configuration fulfills this requirement, assuming that the Sen/ice VPN ID is 1?
A)
B)
C)
D)
Refer to the exhibit.
Customer XYZ cannot provison dual connectivity on both Its routers due to budget constratnts but wants to use tnth RI and R2 interface for users behind them for load toward the hub site Which configurauon achieves this objectives?
A)
B)
C)
D)
Which pathway under Monitor > Network > Select Device is used to verify service insertion configuration?
An engineer is configuring a shaping rate of 1 Mbps on the WAN link of a WAN Edge router Which configuration accomplishes this task’?
Which plane assists in the automatic onboarding of the SD-WAN routers into the SD-WAN overlay?
Refer to the exhibit.
Which command-line configuration on a WAN Edge device achieves these results?
A)
B)
C)
D)
The Cisco SD-WAN engineer is configuring service chaining for a next-generation firewall located at the headquarters. Which configuration creates the service?
A)
B)
C)
D)
Which two architectural components are part of an SD-WAN high availability vManage cluster? (Choose two.)
Which pathway under Monitor > Network > Select Device is used to verify service insertion configuration?
Which protocol is used for the vManage to connect to the vSmart Controller hosted in Cloud?
An engineer must improve video quality by limiting HTTP traffic to the Internet without any failover. Which configuration in vManage achieves this goal?
An enterprise has these three WAN connections:
public Internet
business internet
MPLS
An engineer must configure two available links to route traffic via both links. Which configuration achieves this objective?
An engineer configured a data policy called ROME-POLICY. Which configuration allows traffic flow from the Rome internal network toward other sites?
Drag and drop the BFD parameters from the left onto the BFD configurations on the right.
Refer to the exhibit. An administrator is configuring a policy in addition to an existing hub-and-spoke policy for two sites that should directly communicate with each other. How is this policy configured?
Company ABC has decided to deploy the controllers using the On-Prem method. How does the administrator upload the WAN Edge list to the vManage?
A)
B)
C)
D)
How do WAN Edge devices operate when vSmart is inaccessible or fails to be reached by the WAN Edge?
What is a benefit of the application aware firewall feature in the Cisco SD-WAN solution?
A network administrator configures SNMFV3 on a Cisco WAN Edge router from CL I for monitoring purposes How many characters are supported by the snmp user username command?
An engineer must configure VRRP for redundancy on WAN Edge router1 running an earlier version than 20.6, considering WAN Edge router2 is configured correctly. Which configuration meets the requirement?
B. 
C. 
D. 
Which configuration allows users to reach YouTube from a local Internet breakout?
A)
B)
C)
D)
An engineer is adding a tenant with location ID 399533345 in vManage. What is the maximum number of alphanumeric characters that is accepted in the tenant name filed?
Which two actions are necessary to set the Controller Certificate Authorization mode to indicate a root certificate? (Choose two)
Refer to the exhibit Cisco SD-WAN is deployed with controllers hosted in a data center All branches have WAN Edge devices with dual connections to the data center one via Internet and the other using MPLS Three branches out of 20 have issues with their control connections on MPLS circuit The local error refers to Control Connection Failure Which action resolves the issue*?
Refer to the exhibit.
A network administrator is configuring OMP in vManage to advertise all the paths for the same prefix from a site that has two WAN Edge devices Each WAN Edge device is connected to three ISPs and two private MPLS transports. What is the minimum value for 'Number of Paths advertised per Prefix" that should be configured?
Which TLOC color is used for site-to-site communication in a Google Cloud integration with Cisco SD-WAN?
Which two mechanisms are used by vManage to ensure that the certificate serial number of the WAN Edge router that is needed to authenticate is listed in the WAN Edge Authorized Señal Number Hst’ (Choose two)
Which configuration changes the packet loss priority from low to highly?
A)
B)
C)
D)
Which Cisco SD-WAN component facilitates the initial communication between WAN Edge devices to join the fabric?
What is the default value for the Multiplier field of the BFD basic configuration in vManage?
How is an event monitored and reported for an individual device in the overlay network at site ID:S4300T6E43F36?
What are the two advantages of deploying cloud-based Cisco SD-WAN controllers? (Choose two.)
Which SD-WAN component is configured to enforce a policy to redirect branch-to-branch traffic toward a network service such as a firewall or IPS?
A network administrator is bringing up one WAN Edge for branch connectivity. Which types of tunnels form when the WAN edge router connects to the SD-WAN fabric?
Refer to the exhibit Which configuration ensures that OSPF routes learned from Site2 are reachable at Sitel and vice-versa?
A company deploys a Cisco SD-WAN solution but has an unstable Internet connection. When the link to vSmart comes back up, the WAN Edge router routing table is not refreshed, and some traffic to the destination network is dropped. The headquarters is the hub site, and it continuously adds new sites to the SD-WAN network. An engineer must configure route refresh between WAN Edge and vSmart within 2 minutes. Which configuration meets this requirement?
Which policy tracks path characteristics such as loss, latency, and jitter in vManage?
Which alarm setting is configured to monitor serious events that affect but do not shut down, the operation of a network function?
Which command displays BFD session summary information per TLOC on vEdge routers?
Which two services are critical for zero touch provisioning on-boarding? (Choose two)
Refer to exhibit. An engineer is troubleshooting tear of control connection even though a valid CertificateSerialNumber is entered. Which two actions resolve Issue? (Choose two)
Refer to the exhibit The Cisco SD-WAN network is configured with a default full-mesh topology. Islamabad HQ and Islamabad WAN Edges must be used as the hub sites. Hub sites MPLS TLOC must be preferred when forwarding FTP traffic based on a configured SLA class list. Which policy configuration does the network engineer use to call the SLA class and set the preferred color to MPLS?
An engineer configures policing with a rate of 125 Bps and a burst rate of 8000 bits, as shown here:
Which configuration completes this task?
Which on-the-box security feature supported by the Cisco ISR 4451 SD-WAN device and not on vEdge?
Which two vRoute attributes should be matched or set in vSmart policies and modified by data policies? (Choose two.)
Which device information is required on PNP/ZTP to support the zero-touch onboarding process?
Drag and drop the devices from the left onto the correct functions on the right.
Which policy configures an application-aware routing policy under Configuration > Policies?
Refer to the exhibit.
What binding is created using the tloc-extension command?
Refer to the exhibit.
An MPLS connection on R2 must extend to R1 Users behind R1 must have dual connectivity for data traffic Which configuration provides R1 control connectivity over the MPLS connection?
A)
B)
C)
D)
Refer to exhibit.
An engineer is troubleshooting tear down of control connections even though a valid Certificate Serial Number is entered Which two actions resolve the Issue? (Choose two)
A policy is created to influence routing path in the network using a group of prefixes. What policy application will achieve this goal when applied to a site List?
An engineer must use data prefixes to configure centralized data policies using the vManage policy configuration wizard. What is the first step to accomplish this task?
TESTED 16 Jun 2025
