Which policy blocks TLOCs from remotes and allows TLOCs from the data center to form hub-and-spoke peering?
Which two image formats are supported for controller codes? (Choose two.)
Which configuration component is used in a firewall security policy?
A customer has MPLS and Internet as the TLOC colors An engineer must configure conlroJIers with the Internet and not with MPLS Which configuration achieves this requirement on vManage?
A)
B)
C)
D)
Which pathway under Monitor > Network > Select Device is used to verify service insertion configuration?
Refer to the exhibit vManage and vBond have an issue establishing a connection to vSmart Which two actions does the administrator take to fix the issue? (Choose two)
Install the certificate received from the certificate server.
Customer has two branch silos with overlapping IPs How must the data policy be configured to establish communication between the sites and server to avoid overlapping?
A)
B)
C)
D)
Which API call retrieves a list of all devices in the network?
Which two architectural components are part of an SD-WAN high availability vManage cluster? (Choose two.)
Which two protocols are supported for software image delivery when images are hosted on a remote server? (Choose two.)
Which two features does the application firewall provide? (Choose two.)
Which routing protocol is used to exchange control plane information between vSmart controllers and WAN Edge routers in the Cisco SD-WAN secure extensible network?
Which two requirements must be met for DNS inspection when integrating with cisco umbrella? (Choose two)
Which third-party Enterprise CA server must be used (or a cloud-based vSmart controller?
Which data policy configuration influences BGP routing traffic flow from LAN to WAN?
A)
B)
C)
D)
What must an engineer conewef when decoying an SD-WAN on-pfemlses architecture based on ESXi hypervisor?
Which device information is requited on PNP/ZTP to support the zero-touch onboarding process?
Refer to the exhibit.
Customer XYZ cannot provision dual connectivity on both of its routers due to budget constraints but wants to use both R1 and R2 interlaces for users behind them for load balancing toward the hub site. Which configuration achieves this objective?
An engineer must deploy a QoS policy with these requirements:
• policy name: App-police
• police rate: 1000000
• burst: 1000000
• exceed: drop
Which configuration meets the requirements?
Refer to the exhibit. An engineer is troubleshooting a control connection issue on a WAN Edge device that shows socket errors. The packet capture shows some ICMP packets dropped between the two devices. Which action resolves the issue?
How many vCPUs and how much RAM are recommended to run the vSmart controller on the KVM server for 251 to 1000 devices in software version 20.4.x?
Refer to the exhibit A WAN Edge device was recently added to vManage but a control connection could not be established Which action resolves this issue?
Drag and drop the BFD parameters from the left onto the BFD configurations on the right.
An engineer is configuring a list that matches all IP prefixes with lengths from /1 to /16 in a centralized control policy. Which list accomplishes this task?
Which Cisco router provides a distributed multicore architecture optimized for SD-WAN branch support?
Which type of connection is created between a host VNet and a transit VNet when configuring Cloud OnRamp for laaS?
An enterprise is continuously adding new sites to its Cisco SD-WAN network. It must configure any cached routes flushed when OMP peers have lost adjacency Which configuration allows the cached OMP routes to be flushed after every 24 hours from its routing table?
How are custom application ports monitored in Cisco SD-WAN controllers?
What happens if the intelligent proxy is unreachable in the Cisco SD-WAN network?
What is the OMP graceful restart default value on vSmart controllers and WAN Edge routers?
A large retail organization decided to move some of the branch applications to the AWS cloud. How does the network architect extend the in-house Cisco SD-WAN branch to cloud network into AWS?
Which set of elements are verified by the controller to confirm the identity of edge devices?
Which protocol is used for the vManage to connect to the vSmart Controller hosted in Cloud?
What is the size of SGT data in the metadata header?
Refer to the exhibit. The network administrator has configured a centralized topology policy that results in the displayed routing table at a branch office. Which two configurations are verified by the output? [Choose two.)
Where on vManage does an engineer find the details of control node failure?
Refer to the exhibit. An administrator is configuring a policy in addition to an existing hub-and-spoke policy for two sites that should directly communicate with each other. How is this policy configured?
Which device should be configured with the service chain IP address to route intersite traffic through a firewall?
An engineer is adding a tenant with location JD 306432373 in vManage. What is the maximum number of alphanumeric characters that are accepted in the tenant name field?
Refer to the exhibit. A user in the branch is connecting to Office 365 for the first time. Over which path does the branch WAN Edge router traffic follow?
Drag and drop the actions from the left into the correct sequence on the right to create a data policy to direct traffic to the Internet exit.
Which command disables the logging of syslog messages to the local disk?
Which action is performed during the onboarding process when a WAN Edge router is connected to ZTP server ztp.viptela com?
How should the IP addresses be assigned for all members of a Cisco vManage cluster located in the same data center?
A network administrator is configuring a tunnel interface on a branch Cisco IOS XE router to run TLOC extensions. Which configuration will extend a TLOC over a GRE tunnel to another router in the branch?
A network is configured with CoPP to protect the CORE router route processor for stability and DDoS protection. As a company policy, a class named class-default is preconfigured and must not be modified or deleted. Troubleshoot CoPP to resolve the issues introduced during the maintenance window to ensure that:
WAN
CORE
MGMT
Which feature allows reachability to an organization’s internally hosted application for an active DNS security policy on a device?
A Cisco SD-WAN customer has a requirement to calculate the SHA value for files as they pass through the device to see the returned disposition and determine if the file is good, unknown or malicious. The customer also wants to perform real-time traffic analysis and generate alerts when threats are detected Which two Cisco SD-WAN solutions meet the requirements? (Choose two.)
What are the default username and password for vSmart Controller when it is installed on a VMware ESXi hypervisor'?
Which VPNs must be configured outside the workflow to complete the SD-WAN overlay setup when using the Quick Connect workflow?
Which hardware component is involved in the Cisco SD-WAN authentication process for ISR platforms?
Which two virtualized environments are available for a company to install the controllers using the on-premises model? (Choose two )
An engineer modifies a data policy for DIA in VPN 200 to meet the requirements for traffic destined to these locations:
* external networks; must be translated
* external networks; must use a public TLOC color
* syslog servers, must use a private TLOC color
Here is the existing data policy configuration:
Which policy configuration sequence set meets the requirements?
B. 
C. 
Refer to the exhibit.
A customer wants to implement primary and secondary Cisco SD-WAN overlay routing for prefixes that are advertised for both data centers. The east data center (TLOC 101.101.101.101) is primary for east sites, and the west data center (TLOC 100.100.100.100) is primary for west sites. Which configuration change achieves this objective?
A network administrator is configuring VRRP to avoid a traffic black hole when the transport side of the network is down on the master device. What must be configured to get the fastest failover to standby?
A customer must upgrade the cisco SD-WAN devices and controllers from version 19.2 to version 20.3. The devices include WAN Edge cloud, vManage, vSmart, and vBond. Which types of image types of image files are needed for this upgrade?
An administrator must deploy the controllers using the On-Prem method while vManage can access the PnP portal from inside How are the two WAN Edge authorized allowed lists to be made available to vManage? (Choose two)
Which encryption algorithm secures binding exchanges Between Cisco TrustSec SXP peers?
Which port is used for vBond under controller certificates if no alternate port is configured?
An engineering team must prepare a traffic engineering policy where an MPLS circuit is preferred for traffic coming from the Admin VLAN Internet should be used as a backup only. Which configuration fulfill this requirement?
A)
B)
C)
D)
How many subnets are necessary in Azure VNet for a WAN Edge device to function in the cloud deployment?
The SD-WAN network is configured with a default full-mesh topology. The SD-WAN engineer wants the Barcelona WAN Edge to use the MPLS TLOC when forwarding Telnet traffic based on a configured SLA class list. Which configured must the engineer use to create a policy to call the SLA class and set the preferred color to MPLS?
A)
B)
C)
D)
Drag and drop the attributes from the left that make each transport location unique onto the right. Not all options are used.
Refer to the exhibit The Cisco SD-WAN network is configured with a default full-mesh topology. Islamabad HQ and Islamabad WAN Edges must be used as the hub sites. Hub sites MPLS TLOC must be preferred when forwarding FTP traffic based on a configured SLA class list. Which policy configuration does the network engineer use to call the SLA class and set the preferred color to MPLS?
How do WAN Edge devices operate when vSmart is inaccessible or fails to be reached by the WAN Edge?
In a customer retail network with multiple data centers, what does the network administrator use to create a regional hub topology?
An engineer wants to change the configuration of the certificate authorization mode from manual to automated. Which GUI selection will accomplish this?
What do receivers request to join multicast streams in a Cisco SO-WAN network?
What is the result during a WAN Edge software upgrade process if the version of the WAN Edge software is higher than the one running on a controller device?
Refer to the exhibit. An engineer must configure the Overlay Management Protocol route preference so that when B2 tries to reach host routes advertised by B1 it always chooses the MPLS circuit. Which two match conditions must be configured to accomplish this task? (Choose two.)
Which attributes are configured to uniquely Identify and represent a TLOC route?
Refer to the exhibit.
The control connection is failing. Which action resolves the issue?
Which two products are used to deploy Cisco WAN Edge Router virtual platforms? (Choose two.)
Which storage format Is used when vManage Is deployed as a virtual machine on a KVM hypervisor?
What is a requirement for a WAN Edge to reach vManage, vBond, and vSmart controllers in a data center?
Which secure tunnel type should be used to connect one WAN Edge router to other WAN Edge routers?
Refer to the exhibit The network team must configure El GRP peering at HQ with devices in the service VPN connected to WAN Edge CSRv. CSRv is currently configured with
A)
B)
C)
D)
Which combination of platforms are managed by vManage?
Which logs verify when a device was upgraded?
Refer to the exhibit. A network administrator is setting the queueing value for voice traffic for one of the WAN Edge routers using vManager GUI. Which queue value must be set to accomplish this task?
Refer to the exhibit. The Cisco SD-VYAN is deployed using the default topology. The engineer v/ants to configure a service insertion policy such that all data traffic between Rome to Paris is forwarded through the NGFW located in London. Which configuration fulfills this requirement, assuming that the Sen/ice VPN ID is 1?
A)
B)
C)
D)
What is the advantage of instating the controller on-premises?
In a Cisco SD-WAN architecture, what is the role of the WAN Edge?
Refer to the exhibit.
Customer XYZ cannot provison dual connectivity on both Its routers due to budget constratnts but wants to use tnth RI and R2 interface for users behind them for load toward the hub site Which configurauon achieves this objectives?
A)
B)
C)
D)
A customer is receiving routes via OMP from vSmart controller for a specific VPN. The customer must provide access to the W2 loopback received via OMP to the OSPF neighbor on the service-side VPN, which configuration fulfils these requirements?
Refer to the exhibit.
What does the BFD value of 8 represent?
Which pathway under Monitor > Network > Select Device is used to verify service insertion configuration?
What is the purpose of ‘’vpn 0’’ in the configuration template when onboarding a WAN edge node?
Which timer specifies information in the cache after all OMP sessions are lost at location S0123T4E56F78?
Refer to the exhibit. A network administrator is configuring OSPF advanced configuration pararmeters from a template using the vManager GUI for a branch WAN Edge router to calculate the cost of summary routes to an ASBR. Which action achieves this configuration?
An engineer must automate certificate signing through Cisco. Which vManage configuration achieves this task?
A)
B)
C)
D)
An engineer is configuring the branch office with a 172.16.0.0/16 subnet to use DIA for Internet traffic. All other traffic must flow to the central site or branches using the MPLS circuit Which configuration meets the requirement?
A)
B)
C)
D)
Drag and drop the steps from the left into the order on the right to upload software on vManage repository that is accessible from maintenance > Software Repository.
Which two performance data details are provided by Cisco SO-WAN vAnalytics? (Choose two)
Drag and drop the security terminologies from the left onto the PCI-compliant network features and devices on the right.
What is the role of the Session Traversal Utilities for NAT server provided by the vBond orchestrator?
Which device in the SD- WAN solution receives and categorizes event reports, and generates alarms?
An engineer configures policing with a rate of 125 Bps and a burst rate of 8000 bits, as shown here:
Which configuration completes this task?
Which policy configures an application-aware routing policy under Configuration > Policies?
An engineer builds a three-node vManage cluster and then realizes that multiple nodes are unnecessary for the size of the company. How should the engineer revert the setup to a single vManage?
What is the ZTP workflow for Cisco IOS XE-based devices?
Which two services are critical for zero touch provisioning on-boarding? (Choose two)
Refer to the exhibit Which configuration must the engineer use to form underlay connectivity for the Cisco SD-WAN network?
A)
B)
C)
D)
Which two criteria ate supported to filter traffic on a Cisco Umbrella Cloud-delivered firewall? (Choose two )
At which layer does the application-aware firewall block applications on a WAN Edge?
Which protocol Is used by the REST API to communicate with network services in the Cisco SO-WAN network?
Company E wants to deploy Cisco SD-WAN with controllers in AWS The company's existing WAN is on private MPLS without Internet access to controllers m AWS An Internet circuit is added to a site in addition to the existing MPLS circuit. Which interface template establishes BFD neighbors over both transports?
A)
B)
C)
Miss
D)
A company must avoid downtime at the remote sites and data plane to continue forwarding traffic between WAN Edge devices if the branch router loses connectivity to its OMP peers Which configuration meets the requirement?
A)
B)
C)
D)
What is an advantage of using auto mode versus static mode of power allocation when an access point is connected to a PoE switch port?
Which two sets of identifiers does OMP carry when it advertises TLOC routes between WAN Edge routers? (Choose two.)
Refer to the exhibit. An enterprise decides to use the Cisco SD-WAN Cloud onRamp for SaaS feature and utilize H.Q site Biz iNET to reach SaaS Cloud for branch C. currently reaching SaaS Cloud directly. Which role must be assigned to devices at both sites in vManage Cloud Express for this solution to work?
Which two REST API functions are performed for Cisco devices in an overlay network? (Choose two)
Refer to the exhibit. An engineer must block FTP traffic coming in from a particular Service VPN on a WAN Edge device Which set of steps achieves this goal?
What is a benefit of the application-aware firewall?
Which IP address must be reachable by a WAN Edge device for the ZIP process to work?
What is the default value (in milliseconds) set tor the poll interval in the BFD basic configuration?
Which component of the Cisco SD-WAN control plane architecture facilitates the storage of certificates and configurations for network components?
An administrator is configuring the severity level on the vManage NMS for events that indicate that an action must be taken immediately. Which severity level must be configured?
Which two actions are necessary to set the Controller Certificate Authorization mode to indicate a root certificate? (Choose two)
Which protocol advertises WAN edge routes on the service side?
What is a description of vManage NMS?
A screen shot of a computer screen
AI-generated content may be incorrect.Text Description automatically generated with medium confidence
A screen shot of a computer
AI-generated content may be incorrect.Graphical user interface Description automatically generated with medium confidence
A screenshot of a computer
AI-generated content may be incorrect.Graphical user interface, text Description automatically generated
