300-415 Implementing Cisco SD-WAN Solutions (ENSDWI) Question and Answers

Refer to the exhibit.

What does the BFD value of 8 represent?

What prohibits deleting a VNF image from the software repository?

Which issue triggers the Cisco Umbrella resolver to toward DNS requests to the intelligent proxy?

Which issue triggers the Cisco Umbrella resolver to toward DNS requests to the intelligent proxy?

An administrator needs to configure SD-WAN to divert traffic from the company's private network to an ISP network. What action should be taken to accomplish this goal?

Which policy tracks path characteristics such as loss, latency, and jitter in vManage?

Which two algorithms authenticate a user when configuring SNMPv3 monitoring on a WAN Edge router? (Choose two.)

Refer to the exhibit The network team must configure El GRP peering at HQ with devices in the service VPN connected to WAN Edge CSRv. CSRv is currently configured with

A)

B)

C)

D)

Which two vRoute attributes should be matched or set in vSmart policies and modified by data policies? (Choose two.)

Which plane builds and maintains the network topology and makes decisions on traffic flows?

Which configuration step is taken on vManage after WAN Edge list is uploaded?

Which two algorithms authenticate a user when configuring SNMPv3 monitoring on a WAN Edge router? (Choose two.)

What happens if the intelligent proxy is unreachable in the Cisco SD-WAN network?

Which two products are used to deploy Cisco WAN Edge Router virtual platforms? (Choose two.)

An engineer must automate certificate signing through Cisco. Which vManage configuration achieves this task?

A)

B)

C)

D)

What are the default username and password for vSmart Controller when it is installed on a VMware ESXi hypervisor'?

Refer to the exhibit An engineer is configuring a QoS policy to shape traffic for VLAN 100 on a subinterface Which policy configuration accomplishes the task?

A)

B)

C)

D)

Which controller is used for provisioning and configuration in a Cisco SD-WAN solution?

An engineer must improve video quality by limiting HTTP traffic to the Internet without any failover. Which configuration in vManage achieves this goal?

Which TCP Optimization feature is used by WAN Edge to prevent unnecessary retransmissions and large initial TCP window sizes to maximize throughput and achieve a better quality?

Which device information is required on PNP/ZTP to support the zero-touch onboarding process?

How is the software managed in Cisco SD-WAN?

WAN Edge routers are configured manually to use UDP port offset to use nondefault offset values when IPsec tunnels are created. What is the offse range?

Refer to the exhibit Which NAT types must the engineer configure for the vEdge router to bring up the data plane tunnels?

Which SD-WAN component allows an administrator to manage and store software images for SD-WAN network elements?

Drag and drop the definitions from the left to the configuration on the right.

What is a requirement for a WAN Edge to reach vManage, vBond, and vSmart controllers in a data center?

Refer to the exhibit.

Customer XYZ cannot provison dual connectivity on both Its routers due to budget constratnts but wants to use tnth RI and R2 interface for users behind them for load toward the hub site Which configurauon achieves this objectives?

A)

B)

C)

D)

Which configuration allows users to reach YouTube from a local Internet breakout?

A)

B)

C)

D)

Refer to the exhibit A WAN Edge device was recently added to vManage but a control connection could not be established Which action resolves this issue?

What is the role of the Session Traversal Utilities for NAT server provided by the vBond orchestrator?

Which protocol detects path status (up/down), measures loss/latency/jitter, and measures the quality of the IPsec tunnel MTU?

Refer to exhibit.

An engineer is troubleshooting tear down of control connections even though a valid Certificate Serial Number is entered Which two actions resolve the Issue? (Choose two)

A WAN Edge device has several service VPNs with no routing protocol configured in the service VPNs The device must be configured so that all connected routes are visible in OMP for VPN 10 Which configuration meets the requirement?

A)

B)

C)

D)

Which vBond system configuration under VPN 0 allows for a routable public IP address even if the DNS name, hostname, or IP address of the vBond orchestrator are omitted?

An engineer must configure local redundancy on a site. Which configuration accomplish this task?

What are two attributes of vRoute? (Choose two)

Which command on a WAN Edge device displays the information about the colors present in the fabric that are learned from vSmart via OMP?

Which type of lists are used to group related items via an application-aware routing policy under the policy lists command hierarchy on vSmart controllers?

Refer to the exhibit.

vManage and vSmart have an issue establishing a connection to vBond. Which configuration resolves the issue?

Refer to the exhibit.

An engineer is troubleshooting a control connection Issue. What does "connect" mean in this how control connections output?

Refer to the exhibit A vBond controller was added to the controller list with the same Enterprise Root CA certificate as vManage. The two controllers can reach each other via VPNO and share the same organization name, but the control connection is not initiated- Which action resolves the issue?

Which set of platforms must he in separate VMS as of release 16.1?

A bank is looking for improved customer experience for applications and reduce overhead related to compliance and security. Which key feature or features of the Cisco SD-WAN solution will help the bank to achieve their goals?

Refer to the exhibit. An engineer must block FTP traffic coming in from a particular Service VPN on a WAN Edge device Which set of steps achieves this goal?

Drag and drop the BFD parameters from the left onto the BFD configurations on the right.

Refer to the exhibit.

The control connection is failing. Which action resolves the issue?

Refer to the exhibit vManage and vBond have an issue establishing a connection to vSmart Which two actions does the administrator take to fix the issue? (Choose two)

Install the certificate received from the certificate server.

What is the purpose of ‘’vpn 0’’ in the configuration template when onboarding a WAN edge node?

If Smart Account Sync is not used, which Cisco SD-WAN component is used to upload an authorized serial number file?

How is TLOC defined?

Which percentage for total memory or total CPU usage for a device is classified as normal in the WAN Edge Health pane?

Which platforms are managed by a single vManage dashboard?

Which platform cannot provide IPS and URL filtering capabilities?

Refer to the exhibit Which configuration must the engineer use to form underlay connectivity for the Cisco SD-WAN network?

A)

B)

C)

D)

Which logs verify when a device was upgraded?

What are the two impacts of losing vManage connectivity to fabric in the Cisco SD-WAN network? (Choose two)

Which Cisco SD-WAN WAN Edge platform supports LTE and Wi-Fi?

When software is upgraded on a vManage NMS, which two image-adding options store images in a local vManage software repository? (Choose two.)

An enterprise has these three WAN connections:

• public Internet
• business internet
• MPLS

An engineer must configure two available links to route traffic via both links. Which configuration achieves this objective?

What is a benefit of the application aware firewall feature in the Cisco SD-WAN solution?

An engineering team must prepare a traffic engineering policy where an MPLS circuit is preferred for traffic coming from the Admin VLAN Internet should be used as a backup only. Which configuration fulfill this requirement?

A)

B)

C)

D)

An engineer configured a data policy called ROME-POLICY. Which configuration allows traffic flow from the Rome internal network toward other sites?

Which platform cannot provide IPS and URL filtering capabilities?

Refer to the exhibit. Which configuration extends the INET interface on R1 to be used by R2 for control and data connections?

A)

B)

C)

Which component of the Cisco SD-WAN control plane architecture facilitates the storage of certificates and configurations for network components?

In which device state does the WAN edge router create control connections, but data tunnels are not created?

Refer to exhibit. An engineer is troubleshooting tear of control connection even though a valid CertificateSerialNumber is entered. Which two actions resolve Issue? (Choose two)

Refer to the exhibit.

An engineer configured OMP with an overlay-as of 10666. What is the AS-PATH for prefix 104.104.104.104/32 on R100?

In which VPN is the NAT operation on an outgoing interface configured for direct Interne! access?

A customer must upgrade the cisco SD-WAN devices and controllers from version 19.2 to version 20.3. The devices include WAN Edge cloud, vManage, vSmart, and vBond. Which types of image types of image files are needed for this upgrade?

Which protocol is used to propagate multicast join requests over the Cisco SD-WAN fabric?

How is the scalability of the vManage increased in Cisco SD-WAN Fabric?

How does the replicator role function in cisco SD-WAN?

Refer to the exhibit.

What binding is created using the tloc-extension command?

On which device is a service FW address configured to Insert firewall service at the hub?

What is the behaviour of vBond orchestrator?

Which Cisco SD-WAN component the initial communication between WAN Edge devices to join the fabric?

What is the default value (in milliseconds) set tor the poll interval in the BFD basic configuration?

What is the threshold to generate a warning alert about CPU or memory usage on a WAN Edge router?

A customer is receiving routes via OMP from vSmart controller for a specific VPN. The customer must provide access to the W2 loopback received via OMP to the OSPF neighbor on the service-side VPN, which configuration fulfils these requirements?

Which device in the SD- WAN solution receives and categorizes event reports, and generates alarms?

Which two actions are necessary to set the Controller Certificate Authorization mode to indicate a root certificate? (Choose two)

Drag and drop the devices from the left onto the correct functions on the right.

What is an attribute of TLOC’?

Drag and drop the steps from the left into the sequence on the right for a WAN Edge router after powering on for zero touch provisioning.

Which pathway under Monitor > Network > Select Device is used to verify service insertion configuration?

What are the default username and password for vSmart Controller when it is installed on a VMware ESXi hypervisor'?

How must the application-aware enterprise firewall policies be applied within the same WAN Edge router?

An engineer must apply the configuration for certificate installation to vBond Orchestrator and vSmart Controller. Which configuration accomplishes this task?

Which hardware component is involved in the Cisco SD-WAN authentication process for ISR platforms?

Refer to the exhibit vManage and vBond have an issue establishing a connection with each other Which action resolves the issue?

How are custom application ports monitored in Cisco SD-WAN controllers?

Which port is used for vBond under controller certificates if no alternate port is configured?

A customer has MPLS and Internet as the TLOC colors An engineer must configure conlroJIers with the Internet and not with MPLS Which configuration achieves this requirement on vManage?

A)

B)

C)

D)

What is an advantage of using auto mode versus static mode of power allocation when an access point is connected to a PoE switch port?

An engineer is configuring a data policy for packets that must be captured through the policy. Which command accomplishes this task?

An organization requires the use of integrated preventative engines, exploit protection, and the most updated and advanced signature-based antivirus with sandboxing and threat intelligence to stop malicious attachments before they reach users and get executed. Which Cisco SD-WAN solution meets the requirements?

Refer to the exhibit The engineering must assign tags to 3 Of its 74 server networks as soon as they are advertised to peers These server network must not be advertised AS which configuration fulfil the requirement?

A)

B)

C)

D)

An engineer must deploy a QoS policy with these requirements:

• policy name: App-police

• police rate: 1000000

• burst: 1000000

• exceed: drop

Which configuration meets the requirements?

Which configuration component is used in a firewall security policy?

Which secure tunnel type should be used to connect one WAN Edge router to other WAN Edge routers?

Which protocol is used for the vManage to connect to the vSmart Controller hosted in Cloud?

Refer to the exhibit Which command allows traffic through the IPsec tunnel configured in VPN 0?

What is a benefit of the application-aware firewall?