Beruflich Dokumente
Kultur Dokumente
QUESTION NO: 1
Which three capabilities make the Cisco Nexus 7010 switch an effective solution for the data
center core? (Choose three.)
A. virtualization
B. unified I/O
C. support for 48-port Gb/s line card
D. support for Data Center Service Modules
E. high performance
F. high availability
Answer: B,E,F
Explanation:
The Cisco Nexus 7000 F2-Series Module also delivers integrated FCoE, greatly simplifying the
network infrastructure and reducing costs by enabling the deployment of unified data center
fabrics to consolidate data center traffic onto a single, general-purpose, high-performance, highly
available network. With the Cisco Nexus 7000 F2-Series Module, FCoE can be deployed in
director-class modular platforms for the access and core of converged networks. In addition to
FCoE host and target support, the module provides virtual expansion port (VE-port) support,
allowing creation of FCoE Inter-Switch Links (ISLs) and enabling scalable, multi-hop FCoE
topologies.
QUESTION NO: 2
Refer to the exhibit.
www.braindumps.com
QUESTION NO: 3
FabricPath brings the benefits of routing protocols to layer 2 network Ethernet environments. What
are the advantages of using FabricPath technology? (Choose three.)
A. FabricPath provides MAC address scalability with conversational learning
B. Loop mitigation with TTL in the frame field
C. STP independence
D. 10 Gbps bandwidth
www.braindumps.com
QUESTION NO: 4
Which three concepts influenced the evolution of data centers? (Choose three.)
A. Consolidation
B. Expansion
C. Automation
D. Virtualization
E. Commoditization
F. Economics
Answer: A,C,D
Explanation:
Data center transformation takes a step-by-step approach through integrated projects carried out
www.braindumps.com
QUESTION NO: 6
Which two statements about SAN port channels configured on Cisco Nexus 5000 Series switches
are true? (Choose two.)
A. The bring up protocol automatically detects and overrides any misconfiguration.
B. You can manually configure channel groups, or they can be automatically created.
C. Changes in configuration to the SAN port channel interface must also be made to all members
of the channel group.
D. The port channel protocol uses the exchange fabric parameters command to communicate
across peer ports in an ISL.
E. The port channel protocol ensures that a set of ports is eligible to be part of the same SAN port
www.braindumps.com
QUESTION NO: 7
Which statement about SAN port channels configured on Cisco Nexus 5000 Series Switches is
true?
A. A single SAN port channel can have both Fibre Channel and virtual Fibre Channel interfaces.
B. SAN port channels can include up to 16 interfaces.
C. SAN port channels distribute traffic across all links in the port channel when source ID and
destination ID load balancing are used.
D. The links in SAN port channels can be connected to different sets of switches.
E. The On mode of operation means ports only operate as part of a SAN port channel or remain
inactive.
Answer: E
Explanation:
You can configure each SAN port channel with a channel group mode parameter to determine the
port channel protocol behavior for all member ports in this channel group. The possible values for
a channel group mode are as follows:
www.braindumps.com
QUESTION NO: 8
Which capabilities are not supported in DCNM device manager?
A. manage SNMPv3 security access to switches
B. save and copy configuration files and software images
C. configure VLANs and Ethernet port channels
D. manage 2148T FEX, 2232PP FEX, and 2248TP FEX
E. configure FCoE
Answer: C
Explanation:
Device Manager provides two views: Device View and Summary View. Use Summary View to
monitor interfaces on the switch. Use Device View to perform switch-level configurations including
the following:
Reference:
http://www.cisco.com/c/en/us/td/docs/switches/datacenter/mds9000/sw/5_2/configuration/guides/f
und/DCNM-SAN-LAN_5_2/DCNM_Fundamentals/dm.html
QUESTION NO: 9
If the default VDC is configured to limit resources to a specific module type, what happens when a
module that does not match the resource type is installed?
A. The module is powered up, and interfaces are in an admin down state.
B. The module is denied power, and a syslog message is generated.
C. The module is powered up, and interfaces are allocated to VDC0.
D. The module is powered up, and interfaces are allocated to VDC100.
Answer: C
Explanation:
www.braindumps.com
QUESTION NO: 10
Which three flow-control port states lead to enabled link flow control? (Choose three.)
A. Receive port: Enabled, Transmit port: Enabled
B. Receive port: Enabled, Transmit port: Desired
C. Receive port: Enabled, Transmit port: Disabled
D. Receive port: Disabled, Transmit port: Desired
E. Receive port: Desired, Transmit port: Desired
Answer: A,B,E
Explanation:
Port Flow-Control Influences on Link Flow Control
Port Flow Control States
Link Flow Control State
Port Receiving Data
(Sends Pause Frames)
Port Transmitting Data (Receives Pause Frames)
Enabled
Enabled
Enabled
Enabled
Desired
Enabled
Enabled
Disabled
Disabled
Desired
Enabled
www.braindumps.com
QUESTION NO: 11
In a configuration with redundant supervisors, how many IP addresses are required to configure
full remote access via management 0?
A. Two IP addresses, one for each supervisor
B. Three IP addresses, one virtual IP and one physical IP for each supervisor
C. One IP address that is shared among supervisors
D. Nonemanagement 0 will use the IP address from the first SVI that is created
Answer: C
Explanation:
Fully redundant switch contains two supervisor modules. If these modules are Supervisor 1
modules, they each have a CMP. Although only one supervisor module is active at any one time,
the CMP software in each supervisor module is always active. For a high-availability configuration,
you should connect four Ethernet cables to these supervisor modulesone for each 9ther 0
interface and one for each cmp-mgmt interface. You should also configure three IP
addressesone for each cmp-mgmt interface and one that is shared between the active and
www.braindumps.com
QUESTION NO: 12
VLAN configuration using DCNM can be completed by which two supported methods? (Choose
two.)
A. Copy and paste the VLAN, along with its VLAN ID, name, type, admin state, and admin status,
from one device to another.
B. Create a single VLAN or a range of VLANs.
C. A VLAN is created only after choosing File > Deploy to apply changes.
D. After a VLAN is created, it requires the state to be enabled.
E. Modify the existing VLAN by choosing Interface > VLAN > VLAN Settings.
Answer: A,B
Explanation:
You can copy and paste the VLAN, along with its VLAN ID, name, type, admin stat, and admin
status, from one device to another.
Procedure
Step 1 From the Feature Selector pane, choose Switching > VLAN to open the VLAN pane.
Step 2 In the Summary pane, click the Device View tab.
Step 3 Click the device from which you want to copy the VLAN.
Step 4 Expand the view for the device. The system lists the VLANs configured on that device.
Step 5 Highlight the VLAN that you want to copy.
Step 6 From the menu bar, choose Actions > Copy.
Step 7 In the Summary pane, click the device to which you want to paste the VLAN.
Step 8 From the menu bar, choose Actions > Paste.
Step 9 (Optional) From the menu bar, choose File > Deploy to apply your changes to the device.
Reference:
http://www.cisco.com/c/en/us/td/docs/switches/datacenter/sw/6_x/dcnm/layer2/configuration/guide
/b_Cisco_DCNM_Layer_2_Switching_Configuration_Guide_Release_6x/b_Cisco_DCNM_Layer_2_Switching_Configuration_Guide_Release_6x_chapter_011.html#task_1268189
www.braindumps.com
10
QUESTION NO: 14
Which two statements about authentication settings for DCNM-LAN are true? (Choose two.)
A. If none of the authentication servers that are configured for the current authentication mode
responds to an authentication request, the DCNM-LAN server falls back to local authentication.
B. DCNM-LAN only supports TACACS+.
C. Each DCNM-LAN server will have the same device credentials.
D. Administering DCNM-LAN authentication settings require an authentication license.
E. DCNM-LAN server users are local to the DCNM-LAN server.
Answer: A,E
Explanation:
Local authentication always is the fallback method for RADIUS and TACACS+ authentication
modes. If none of the servers configured for the current authentication mode is available, the
DCNM-LAN server uses the local database to authenticate login requests. This behavior is
designed to help you prevent accidental lockout from DCNM-LAN.
For users who need fallback support, the usernames of their local user accounts must be identical
www.braindumps.com
11
QUESTION NO: 15
What is required for proper implementation of jumbo frame support on a Cisco Nexus 2000 Series
Fabric Extender?
A. The interface configured as FEX fabric requires the MTU to be set to jumbo.
B. The service policy must be applied to the system QoS.
C. The device defaults to jumbo frame support; no changes are required.
D. The switchport in the FEX interface must be set to MTU 9216.
Answer: B
Explanation:
The system qos is a type of MQC target. You use a service-policy to associate a policy map with
the system qos target. A system qos policy applies to all interfaces on the switch unless a specific
interface has an overriding service-policy configuration. The system qos policies are used to
define system classes, the classes of traffic across the entire switch, and their attributes. To
ensure QoS consistency (and for ease of configuration), the switch distributes the system class
parameter values to all its attached network adapters using the Data Center Bridging Exchange
(DCBX) protocol.
If service policies are configured at the interface level, the interface-level policy always takes
precedence over system class configuration or defaults
Reference:
http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus2000/sw/configuration/guide/rel_5
21/b_Configuring_the_Cisco_Nexus_2000_Series_Fabric_Extender_rel_5_2/b_Configuring_the_
Cisco_Nexus_2000_Series_Fabric_Extender_rel_5_2_chapter_01.html
www.braindumps.com
12
QUESTION NO: 17
You can install Cisco DCNM-LAN on a supported version of which two operating systems?
(Choose two.)
A. Microsoft Windows Server
B. Novell SUSE Linux Enterprise Server
C. Oracle Enterprise Linux
D. Red Hat Enterprise Linux
E. Vmware ESX
Answer: A,D
Explanation:
You can install Cisco DCNM-LAN on a supported version of one of the following operating
www.braindumps.com
13
QUESTION NO: 18
Cisco DCNM-LAN supports the configuration and monitoring of many Cisco NX-OS features,
including which two of these Ethernet protocols? (Choose two.)
A. GLBP
B. HSRP
C. IRDP
D. VRRP
Answer: A,B
Explanation:
Ethernet routing
Reference:
http://www.cisco.com/c/en/us/td/docs/switches/datacenter/sw/6_x/dcnm/fundamentals/guide/dcnm
/DCNM-SAN-LAN_published/DCNM_Fundamentals/fund_overview.html
QUESTION NO: 19
The vPC peer-gateway capability allows a vPC switch to act as the active gateway for packets that
are addressed to the router MAC address of the vPC peer. This feature enables local forwarding
of such packets without the need to cross the vPC peer link.
Which statements are true about the vPC peer-gateway? (Choose two.)
A. The vPC peer-gateway feature is enabled by default.
B. The vPC peer-gateway feature can be configured globally under the vPC domain submode.
C. Enabling the peer-gateway feature automatically disables IP redirects on all interface VLANs
mapped over a vPC VLAN to avoid generation of IP redirect messages for packets switched
www.braindumps.com
14
QUESTION NO: 20
A virtual port channel (vPC) allows links that are physically connected to two different Cisco Nexus
devices to appear as a single port channel to a third device.
Which are the mandatory steps for configuring vPC? (Choose six.)
A. Enable feature vPC
B. Define domains
C. Establish peer keepalive connectivity
D. Create a peer link
E. Configure the peer link as a trunk port
F. Create port channels and vPCs
G. Define port channel load-balancing method
H. Make sure configurations are consistent
Answer: A,B,C,D,F,H
Explanation:
To enable the vPC functionality, you must create a peer-keepalive link and a peer-link under the
vPC domain for the two vPC peer switches to provide the vPC functionality.
To create a vPC peer link you configure an EtherChannel on one Cisco Nexus device by using two
or more Ethernet ports. On the other switch, you configure another EtherChannel again using two
or more Ethernet ports. Connecting these two EtherChannels together creates a vPC peer link.
Peer-Keepalive Link and Messages
The Cisco NX-OS software uses a peer-keepalive link between the vPC peers to transmit periodic,
configurable keepalive messages. You must have Layer 3 connectivity between the peer switches
to transmit these messages; the system cannot bring up the vPC peer link unless a peer-keepalive
link is already up and running.
If one of the vPC peer switches fails, the vPC peer switch on the other side of the vPC peer link
senses the failure when it does not receive any peer-keepalive messages. The default interval
www.braindumps.com
15
www.braindumps.com
16
QUESTION NO: 21
When creating a role in a Cisco Nexus 7000 Series Switch, rules are used to define the type of
operations that a role will allow the user to perform. Which two of these parameters cannot be
applied as a rule? (Choose two.)
A. port-profile
B. command
C. access-list
D. feature-group
E. OID
Answer: A,C
Explanation:
User roles contain rules that define the operations allowed for the user who is assigned the role.
Each user role can contain multiple rules and each user can have multiple roles. For example, if
role1 allows access only to configuration operations, and role2 allows access only to debug
operations, then users who belong to both role1 and role2 can access configuration and debug
operations. You can also limit access to specific VLANs, virtual routing and forwarding instances
(VRFs), and interfaces.
The Cisco NX-OS software provides four default user roles:
Reference: http://www.cisco.com/c/en/us/td/docs/switches/datacenter/sw/4_1/nxos/security/configuration/guide/sec_nx-os-cfg/sec_rbac.html
QUESTION NO: 22
Overlay Transport Virtualization (OTV) overlay interface is a logical multi access and multicastcapable interface that must be explicitly defined by the user and where the entire OTV
configuration is applied.
Which statements are true about OTV overlay interface? (Choose two.)
A. When an OTV edge device receives a Layer 2 frame destined for a remote data center site, the
frame is logically forwarded to the overlay interface.
B. The OTV edge device performs the dynamic OTV encapsulation on the Layer 2 packet and
sends it to the join interface toward the routed domain.
www.braindumps.com
17
Reference:
http://www.cisco.com/c/en/us/td/docs/solutions/Enterprise/Data_Center/DCI/whitepaper/DCI3_OT
V_Intro/DCI_1.html (overlay interface)
QUESTION NO: 23
Refer to the exhibit.
www.braindumps.com
18
The network administrator is seeing N7K-1 having issues with VLAN 11, and interface VLAN 11 is
resetting, causing frequent HSRP state changes. Which two actions would reduce HSRP state
changes? (Choose two.)
A. On N7K-1, configure the HSRP extended hold timer to 180, extending the HSRP hello message
hold time.
B. On N7K-2, configure the HSRP extended hold timer to 180, extending the HSRP hello message
hold time.
C. On N7K-1, configure the pre-empt delay minimum to 180 in order to delay N7K-1 from taking
over as the HSRP active router.
D. On N7K-2, configure the pre-empt delay minimum to 180 in order to delay N7K-2 from taking
over as the HSRP active router.
E. On N7K-2, increase the HSRP priority to 150.
F. On N7K-2, decrease the HSRP priority to 50.
Answer: C,E
Explanation:
The odd number VLANs are active on N7K1-AGG1 while even number VLANs are active on
N7K2-AGG2. This is done by configuring a higher HSRP priority on the Active HSRP interface.
The
Active HSRP router will respond to the ARP requests so alternating the priority configuration helps
to share the control plane load.
Default HSRP hello and hold timers are used in this configuration. Since HSRP is vPC aware, the
aggressive hello and hold timers do not offer any benefit on the Nexus 7000. In addition, the dualactive exclude interface-VLAN configuration with vPC+ also removes the dependency on fast
hellos to learn HSRP MAC address in the access-edge layer.
Reference: http://www.cisco.com/c/en/us/td/docs/solutions/Enterprise/Data_Center/VMDC/30/IG/VMDC_3-0_IG.pdf (page 41, FHRP with HSRP)
www.braindumps.com
19
QUESTION NO: 24
Overlay Transport Virtualization (OTV) join interface is used to source the OTV encapsulated
traffic and send it to the Layer 3 domain of the data center network.
Which statements are true about OTV join interface? (Choose three.)
A. Join interface is a Layer 3 entity, and with the Cisco NX-OS release 6.0, it can only be defined
as a physical interface, physical subinterface, Layer 3 port channel, or Layer 3 port channel
subinterface.
B. A single join interface can be defined and associated with a given OTV overlay.
C. Multiple overlays can also share the same join interface.
D. Join interface can be a loopback interface.
E. The join interface is a Layer 3 entity that can be defined as a physical interface but not as a
logical one.
Answer: A,B,C
Explanation:
The Join interface is a Layer 3 entity and with the current NX-OS release can only be defined as a
physical interface (or subinterface) or as a logical one (i.e. Layer 3 port channel or Layer 3 port
channel subinterface). A single Join interface can be defined and associated with a given OTV
overlay. Multiple overlays can also share the same Join interface.
Reference:
http://www.cisco.com/c/en/us/td/docs/solutions/Enterprise/Data_Center/DCI/whitepaper/DCI3_OT
V_Intro/DCI_1.html (join interface)
www.braindumps.com
20
QUESTION NO: 26
The hardware and software configurations for vPC+ are similar to that of traditional vPC. What are
the differences in the configuration of vPC+? (Choose three.)
A. FabricPath switch ID must be configured under the vPC domain.
B. Virtual switch ID of vPC+ must be configured under FabricPath domain.
C. On Cisco Nexus 7000 Series Switch, F1 interfaces must be used as the vPC+ peer links.
D. The vPC+ peer link must be configured as a Cisco FabricPath core port (switchport mode
fabricpath).
E. FabricPath subswitch ID must be configured under the vPC domain.
Answer: A,C,D
www.braindumps.com
21
The FabricPath switch ID for the virtual switch becomes the outer source MAC address (OSA) in
the FabricPath encapsulation header. Each vPC+ domain must have its own virtual switch ID.
Layer 2 multipathing is achieved by emulating a single virtual switch. Packets forwarded from host
A to host B are sent to the MAC address of the virtual switch as the transit source, and traffic from
host B to host A is now load balanced.
The vPC+ downstream links are FabricPath edge interfaces that connect to the CE hosts.
The First Hop Routing Protocols (FHRPs), which include the Hot Standby Routing Protocol
(HSRP) and the Virtual Router Redundancy Protocol (VRRP), interoperate with a vPC+. You
should dual-attach all Layer 3 switches to both vPC+ peer switches.
Reference:
http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus5000/sw/fabricpath/513_n1_1/N5
K_FabricPath_Configuration_Guide/fp_n5k_interfaces.html (Figure 3-2)
QUESTION NO: 27
Smart Call Home provides an email-based notification for critical system policies. A range of
message formats are available for compatibility with pager services, standard email, or XMLwww.braindumps.com
22
QUESTION NO: 28
Which description is correct for a private VLAN community port with respect to Layer 2
communications?
A. It communicates with all other community ports in the private VLAN domain.
B. It communicates with only isolated ports in the private VLAN domain.
C. It communicates only with other community ports in the same community and associated
promiscuous ports.
D. It communicates only with associated promiscuous and isolated ports.
Answer: C
Explanation:
A community port is a host port that belongs to a community secondary VLAN. Community ports
communicate with other ports in the same community VLAN and with associated promiscuous
ports. These interfaces are isolated at Layer 2 from all other interfaces in other communities and
from all isolated ports within the private VLAN domain.
Because trunks can support the VLANs that carry traffic between promiscuous, isolated, and
community ports, the isolated and community port traffic might enter or leave the device through a
trunk interface.
Reference: http://www.cisco.com/c/en/us/td/docs/switches/datacenter/sw/nxwww.braindumps.com
23
QUESTION NO: 29
Which two are benefits of using remote AAA services for Cisco Nexus products? (Choose two.)
A. They make it easier to manage user logins and passwords across devices.
B. They enable automated configuration backup for devices.
C. They centrally manage user attributes and permissions.
D. Local console access is never included in AAA and can be used for access when the AAA
servers are down.
Answer: A,C
Explanation:
Remote AAA services provided through RADIUS and TACACS+ protocols have the following
advantages over local AAA services:
Reference: http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus9000/sw/7x/security/configuration/guide/b_Cisco_Nexus_9000_Series_NXOS_Security_Configuration_Guide_7x/b_Cisco_Nexus_9000_Series_NXOS_Security_Configuration_Guide_7x_chapter_011.html#con_1234977
QUESTION NO: 30
What tasks can only be performed in the default or admin VDC?
A. EPLD upgrade, IOS ISSU, FcoE feature enablement, CoPP configuration, and rolling back a
checkpoint
B. EPLD upgrade, Cisco IOS ISSU, FCoE feature enablement, CoPP configuration, and ACL
capture enablement
C. EPLD upgrade, Cisco IOS ISSU, FCoE feature enablement, CoPP configuration and SNMP
configuration
D. EPLD upgrade, Cisco IOS ISSU, FCoE feature enablement, CoPP configuration, and write
erase
Answer: B
www.braindumps.com
24
QUESTION NO: 31
What does the mac packet-classify command do when applied to an interface configuration?
A. It enables MAC ACLs to be applied to only IP packets that enter the interface.
B. It enables MAC ACLs to be applied to only non-IP packets that enter the interface.
C. It enables MAC ACLs to be applied to all packets that enter the interface.
D. It enables MAC ACLs to be used for QoS settings.
Answer: C
Explanation:
To enable VLAN-based quality of service (QoS) filtering in the MAC access control lists (ACLs),
use the mac packet-classify use vlan command in global configuration mode. To return to the
default settings, use the no form of this command.
Reference:
http://www.cisco.com/c/en/us/td/docs/ios/qos/command/reference/qos_book/qos_m1.pdf (page 3)
QUESTION NO: 32
In a virtual port channel (vPC) configuration, VRRP exhibits which characteristic?
A. VRRP does not work with vPC due to industry standard requirements
B. VRRP works with vPC in traditional active/standby modes
C. VRRP works with vPC in an active/active mode
D. VRRP work with vPC as long as vPC peer-gateway is configured to address non-standard
replies to the physical MAC address
www.braindumps.com
25
QUESTION NO: 33
On Cisco Nexus 5000 Series Switches, where are the virtual output queues implemented, and
what is the main purpose of virtual output queues?
A. on all ingress interfaces; to ensure maximum throughput on a per-egress, per-CoS basis
B. on all ingress interfaces; to provide independent congestion management and 16 queues
C. on all egress interfaces; so that a congested egress port does not affect traffic directed to other
egress ports
D. on all egress interfaces; to prevent head-of-line blocking by utilizing multiple virtual output
queues
E. on all egress interfaces; to be able to use EEE 802.1p CoS
Answer: A
Explanation:
www.braindumps.com
26
QUESTION NO: 34
On Cisco Nexus 7000 Series Switch Cisco FabricPath domain, one switch becomes the root for
the multidestination tree. Cisco FabricPath IS-IS will automatically select root switches for each
multidestination tree. One of the parameters used to select the root is system ID.
Which statements are true about system ID? (Choose two.)
www.braindumps.com
27
QUESTION NO: 35
After configuring FabricPath, the following appears in the syslog:
%STP-2-L2GW_BACKBONE_BLOCK: L2 Gateway Backbone port inconsistency blocking port
port-channel100 on VLAN0010.
What is the cause of this message?
A. STP must be disabled; message indicates that STP is enabled.
B. STP is misconfigured; root guard must be disabled.
C. An inferior BPDU is received on a Cisco FabricPath edge port.
D. A superior BPDU is received on a Cisco FabricPath edge port.
Answer: D
Explanation: The devices that are in both the FabricPath domain and CE domain are considered
to be edge devices or gateway devices. Edge ports have a FabricPath root guard-like function
enabled implicitly. If a superior BPDU is received on an edge port, the port is placed in the Layer 2
Gateway inconsistent state until the condition is cleared.
%STP-2-L2GW_BACKBONE_BLOCK: L2 Gateway Backbone port inconsistency blocking port
port-channel100 on VLAN0010.
As a best practice, you should configure all edge devices with the lowest STP priority of all devices
in the STP domain to which they are attached. By setting all of the edge devices to be the root
bridge, the entire FabricPath domain looks like one virtual bridge to the CE domain. The same
recommendation applies to a virtual port channel+ (vPC+) domain; you must configure each
device (primary and secondary) as the root.
You configure all FabricPath edge devices by manually setting the bridge priority lower than any
STP bridge or by entering these commands.
Sw7-vpc(config)# spanning-tree vlan <x> root primary
sw7-vpc(config)# spanning-tree vlan 1-50 root primary
To have a loop-free topology for the CE/FabricPath hybrid network, the FabricPath network
automatically displays as a single bridge to all connected CE devices. The STP domains do not
cross into the FabricPath network. If multiple STP domains are defined, BPDUs and topology
change notifications (TCNs) are localized to the domain. If a connected STP domain is
multihomed to the FabricPath domain, a TCN must be able to reach to all devices in the STP
domain through the FabricPath domain. As a result, the TCN is sent to the FabricPath domain
through the IS-IS protocol data unit (PDU) by default.
Reference:
www.braindumps.com
28
QUESTION NO: 36
On the Cisco Nexus 7000 Series Switch, Control Plane Policing is enforced on which component?
A. The supervisor module enforces CoPP before out-of-policy traffic reaches the CPU
B. The fabric modules enforce CoPP in the fabric before out-of-policy traffic reaches the CPU
C. The linecards enforce CoPP locally before out-of-policy traffic reaches the CPU
D. The egress virtual output queue enforces CoPP locally before out-of-policy traffic reaches the
CPU
Answer: C
Explanation:
Only the traffic sent through the Inband interface is subject to CoPP, because this is the only traffic
that reaches the Supervisor module through the forwarding engines (Fes) on the line cards. The
Nexus 7000 Series Switch implementation of CoPP is hardware-based only, which means that
CoPP is not performed in software by the Supervisor module. CoPP functionality (policing) is
implemented on each FE independently. When the various rates are configured for CoPP policymap, consideration must be taken in regard to the number of line cards in the system.
The total traffic received by the Supervisor is N times X, where N is the number of Fes on the
Nexus 7000 system, and X is the rate allowed for the particular class. The configured policer
values apply on a per FE basis, and the aggregate traffic prone to hit the CPU is the sum of the
conformed and transmitted traffic on all of the Fes. In other words, traffic that hits the CPU equals
the configured conform rate multiplied by the number of Fes.
CoPP configuration is only implemented in the default virtual device context (VDC); however, the
CoPP policies are applicable for all VDCs. The same global policy is applied for all line cards.
CoPP applies resource sharing between VDCs if ports of the same Fes belong to different VDCs
(M1 Series or M2 Series LC). For example, ports of one FE, even in different VDCs, count against
the same threshold for CoPP.
If the same FE is shared between different VDCs and a given class of control plane traffic exceeds
the threshold, this affects all VDCs on the same FE. It is recommended to dedicate one FE per
VDC in order to isolate CoPP enforcement, if possible.
Reference: http://www.cisco.com/c/en/us/support/docs/switches/nexus-7000-seriesswitches/116043-copp-nexus7000-tshoot-00.html
www.braindumps.com
29
30
QUESTION NO: 38
What is the benefit of using Anycast RP via RFC 4610 for IP multicast RP redundancy?
A. Improves convergence of the multicast network due to enhanced RPF checks
B. Simplifies the number of control plane protocols over other RP redundancy methods
C. Eliminates the use of Protocol Independent Multicast (PIM) in the topology
D. Increases the administrative distances in Multicast Source Discovery Protocol (MSDP)
configuration
Answer: B
Explanation:
Anycast-RP has two implementations: one uses Multicast Source Discovery Protocol (MSDP) and
the other is based on RFC 4610, Anycast-RP Using Protocol Independent Multicast (PIM). This
section describes how to configure PIM Anycast-RP.
www.braindumps.com
31
QUESTION NO: 39
Which statement best describes ACL configuration using configuration session mode on Cisco
Nexus switches?
A. The verify command will validate commands entered for syntax errors.
B. The save command will save the commands entered to the startup configuration.
C. The network administrator can perform a dry-run ACL configuration by verifying the
configuration against the hardware and software resources available before applying it.
D. Configuration sessions can be saved and resumed at any time, even after upgrading NX-OS
Software on the switch with ISSU.
E. Configuration sessions are global for all VDCs on the Nexus 7000.
Answer: C
Explanation:
To configure the Dry Run support, perform this task:
Command
Purpose
Step 1
Router(config)# configure session session_name
Creates a configuration session and enters the dry run mode
Step 2
Router(dry-run-config)# {default | exit | ip | no | validate}
Choose the option to configure the dry run session
www.braindumps.com
32
QUESTION NO: 40
Overlay Transport Virtualization (OTV) uses the Authoritative Edge Device (AED) to perform which
tasks?
A. The AED is responsible for sending all unicast traffic in a site, while either node in a site can
transmit multicast and broadcast.
B. The AED is responsible for load balancing all traffic for all VLANs across the transport network.
C. The AED is responsible for handling all unicast, broadcast, and multicast traffic for a given
VLAN within a site.
D. The AED is responsible for MAC address dispute contention for a given VLAN.
Answer: C
Explanation:
The OTV control plane uses IS-IS Link State Packets (LSPs) to propagate MAC address to IP
address mappings to all edge devices in the overly network. These address mappings contain the
MAC address, VLAN ID, and associated IP address of the edge device that the MAC address is
reachable from.
The authoritative edge device uses IGMP snooping to learn all multicast MAC addresses in the
local site. OTV includes these MAC addresses in a special group-membership LSP (GM-LSP) that
is sent to remote edge devices on the overlay network.
Reference: http://www.cisco.com/c/en/us/td/docs/switches/datacenter/sw/nxos/OTV/config_guide/b_Cisco_Nexus_7000_Series_NXOS_OTV_Configuration_Guide/b_Cisco_Nexus_7000_Series_NXOS_OTV_Configuration_Guide_chapter_0100.html
QUESTION NO: 41
Which three statements describe user authentication in Cisco DCNM-LAN? (Choose three.)
www.braindumps.com
33
Reference:
http://www.cisco.com/c/en/us/td/docs/switches/datacenter/mds9000/sw/5_2/configuration/guides/f
und/DCNM-SAN-LAN_5_2/DCNM_Fundamentals/fund_svr_aaa.pdf (page 2, see the note)
www.braindumps.com
34
35
QUESTION NO: 43
Which three statements describe the configuration change management feature in DCNM LAN?
(Choose three.)
A. Switch profiles allow configurations to be synchronized between switches and are supported
with any Cisco NX-OS Software managed device.
B. DCNM LAN can archive configurations from devices even if they are not managed by the
DCNM server, and the administrator can supply the device management IP address and
credentials.
C. You can archive a maximum of 50 configuration versions per managed device.
D. Managed devices must be licensed in DCNM LAN before they can be used with configuration
change management.
E. Device-running configuration will be archived only if it differs from the last archived version.
Answer: C,D,E
Explanation:
Configuration Change Management has the following configuration guidelines and limitations:
Configure archival jobs and archival settings based upon the needs of your organization.
We recommend enabling the Default archival job and configuring the job to run at the lowest
frequency that your backup policy tolerates.
Reference:
http://www.cisco.com/c/en/us/td/docs/switches/datacenter/sw/4_1/dcnm/fundamentals/configuratio
n/guide/dcnm_fundamentals_configuration/fund_cfg_mgmt.html
QUESTION NO: 44
Which three statements best describe HSRP configuration on Cisco Nexus switches? (Choose
three.)
A. In a vPC topology, the primary HSRP router will respond to ARP requests, but both HSRP
routers will forward data traffic. No additional configuration is required.
B. In a vPC topology, the primary HSRP router will respond to ARP requests, but both HSRP
routers will forward data traffic if the peer-gateway
feature is enabled.
www.braindumps.com
36
C. You can configure two overlapping HSRP groups to load share traffic from the connected hosts
HSRP has been enhanced for vPC environments, so both the active and standby router can
forward data traffic. The primary router (higher priority) responds to ARP requests.
Reference: http://docwiki.cisco.com/wiki/Cisco_NX-OS/IOS_HSRP_Comparison
www.braindumps.com
37
QUESTION NO: 46
Which statement describes the graceful restart capability in Cisco NX-OS Software?
A. In NX-OS Software, the OSPFv2 graceful restart extension is Cisco proprietary and is only
compatible with other Cisco routers.
B. A graceful restart allows OSPFv2 to remain in the data forwarding path through a process
restart. When OSPFv2 needs to restart, it first sends a type 8 LSA, which includes a grace period
that tells NSF helpers to keep all LSAs that originated from the restarting interface.
C. Graceful restart helps keep an NX-OS system forwarding traffic transparently even if it
experiences a cold reboot.
D. If the restarting OSPFv2 interface does not come back up before the end of the grace period, or
if the network experiences a topology change, the OSPFv2 neighbors tear down adjacency with
the restarting OSPFv2 interface and treat it as a normal OSPFv2 restart.
E. OSPFv3 graceful restart must be disabled before doing an ISSU.
www.braindumps.com
38
QUESTION NO: 47
Which statement describes the XML management interface in Cisco NX-OS Software?
A. The following XML-based NETCONF operations are supported in NX-OS SoftwarE. Closesession, copy-config, delete-config, and edit-config.
B. The following XML-based NETCONF operations are supported in NX-OS SoftwarE. Closesession, copy-config, edit-config, and kill-session.
C. NX-OS Software supports up to a maximum of 16 concurrent XML sessions.
D. Only show commands are supported via the XML management interface in NX-OS Software.
E. The NX-OS implementation of the XML-based NETCONF requires SSH to be used for
communication with the device.
Answer: E
Explanation:
Reference: https://www.cisco.com/c/en/us/td/docs/switches/datacenter/sw/nxos/xml/user/guide/nxos_xml_interface.pdf (page 11)
QUESTION NO: 48
Cisco FabricPath uses what as a common bridge ID to connected Spanning Tree Protocol
bridges?
A. C84C.75FA.6000
B. 0100.5E11.02FD
C. C84C.76FA.6000
D. 4000.0000.0001
www.braindumps.com
39
QUESTION NO: 49
Which statement describes OTV configuration on the Cisco Nexus 7000 Series Switches?
A. The OTV control-plane protocol uses the IS-IS protocol to establish adjacencies and exchange
MAC reachability across the overlay network. You must enable IS-IS with the feature isis
command before OTV adjacencies can be established.
B. OTV uses an SSM group range for neighbor discovery and to exchange MAC reachability with
other OTV edge peers.
C. The OTV join interface is a routed uplink interface on the edge device used to physically join
the overlay network.
D. The OTV internal interface encapsulates the site Layer 2 frames in IP unicast or multicast
packets that are then sent to the other sites.
Answer: C
Explanation:
One of the uplink interfaces of the edge device. The join interface is a point-to-point routed
interface. The edge device joins an overlay network through this interface. The IPaddress of this
interface is used to advertise reachability of a MAC address present in this site.
Reference: http://www.cisco.com/c/en/us/td/docs/switches/datacenter/sw/nxos/OTV/config_guide/b_Cisco_Nexus_7000_Series_NXOS_OTV_Configuration_Guide/b_Cisco_Nexus_7000_Series_NXOS_OTV_Configuration_Guide_chapter_010.pdf (page 2)
www.braindumps.com
40
QUESTION NO: 50
How are IP multicast IGMP entries synchronized between vPC peers?
A. IGMP is not synchronized between vPC peers
B. Cisco Fabric Service carries IGMP entries across the vPC peer link
C. IP ARP synchronization under the vPC domain configuration also synchronizes IGMP
D. IGMP is flooded to the L2 domain, and there is no need to synchronize it between vPC peers
Answer: B
Explanation:
The IGMP vPC Incremental Sync feature sends incremental updates to the peer link using Cisco
Fabric Service (CFS), instead of sending all Join and Leave messages. The routes between peers
are synced while the peer link is being set up.
QUESTION NO: 51
What does the command IP ARP synchronize do in a vPC configuration?
A. Synchronizes ARP entries between vPC peers every five minutes
B. Triggers a manual update of ARP entries from the primary peer to the secondary
www.braindumps.com
41
QUESTION NO: 52
What is the default Time to Live (TTL) value in Cisco FabricPath?
A. 128
B. 32
C. 64
D. Dependent on the number of switch IDs in the topology
Answer: B
Explanation:
switch(config)# [no] fabricpath ttl unicast numhops configures the TTL value for the unicast traffic
in the VDC. The range is from 1 to 64 and the default value is 32.
Reference: http://www.cisco.com/c/en/us/td/docs/switches/datacenter/sw/6_x/nxos/fabricpath/configuration/guide/b-Cisco-Nexus-7000-Series-NX-OS-FP-Configuration-Guide6x/b-Cisco-Nexus-7000-Series-NX-OS-FP-Configuration-Guide6x_chapter_011.html#task_47542D4FEFCA42B28CE09EABE255BE9A
QUESTION NO: 53
Nexus# 38ther igmp snooping vlan 120
IGMP Snooping information for vlan 120
IGMP snooping disabled
www.braindumps.com
42
www.braindumps.com
43
44
QUESTION NO: 55
When using Overlay Transport Virtualization (OTV), how do L2 multicast frames traverse the
overlay?
A. The L2 multicast frames are encapsulated in an OTV packet using the configured control-group
multicast address for transport
B. The L2 multicast frames are dropped because multicast cannot be carried across the overlay
C. The L2 multicast frames are encapsulated in an OTV packet using the configured data-group
multicast address for transport
D. The L2 multicast frames are forwarded natively across the overlay based on their multicast IDs
www.braindumps.com
45
QUESTION NO: 56
Which three statements best describe multicast operation on Cisco Nexus switches in a data
center? (Choose three.)
A. Cisco NX-OS Software does not support PIM dense mode.
B. The command ip multicast-routing must be enabled in Cisco NX-OS Software before any
multicast configuration is possible on the switch.
C. PIM CLI configuration and verification commands are not available until you enable the PIM
feature with the feature pim command.
D. Cisco NX-OS Software supports multicast routing per Layer 3 VRF instance.
E. The default PIM operational mode on the Cisco Nexus 7000 switch is SSM.
Answer: A,C,D
Explanation:
PIM version 2 Sparse Mode is supported. Cisco NX-OS does not support PIM version 1 Sparse
www.braindumps.com
46
QUESTION NO: 57
On a Cisco Nexus 7000 Series Switch, what is the purpose of this command?
Switch# config terminal
switch(config)# mac address-table learning-mode conversational vlan 1-10
switch(config)#
A. Enable conversational learning on FabricPath vlans 1-10 for F-Series module
B. Enable FabricPath protocol on VLANs 110
C. No need for this command as conversational learning is enabled by default for all VLANs.
D. Enable conversational learning on Classical Ethernet VLAN for F-Series module
Answer: A
Explanation:
switch(config)# mac address-table learning-mode conversational vlan vlan-id configures the
specified CE VLAN(s) on F Series modules for conversational MAC learning. Enter the no form of
the command to return to traditional (or nonconversational learning) MAC learning mode. The
default MAC learning mode for CE VLANs is traditional.
Reference: http://www.cisco.com/c/en/us/td/docs/switches/datacenter/sw/6_x/nxos/fabricpath/configuration/guide/b-Cisco-Nexus-7000-Series-NX-OS-FP-Configuration-Guide6x/b-Cisco-Nexus-7000-Series-NX-OS-FP-Configuration-Guide-6x_chapter_011.html (Configuring
the MAC Learning Mode for CE VLANs)
QUESTION NO: 58
Where is a typical request in the Cisco UCS XML API placed in the data management engine,
and, after the request is confirmed, what is updated?
A. The request is placed in the transactor queue in FIFO order and the management information
tree is updated.
www.braindumps.com
47
QUESTION NO: 59
In the Cisco FabricPath domain, one switch becomes the root for the multidestination tree. Cisco
FabricPath switches compares which three parameters to select the root? (Choose three.)
A. Root priority
B. System ID
C. Bridge ID
D. Switch ID
E. Port ID
F. Subswitch ID
Answer: A,B,D
Explanation:
Within the FabricPath domain, one switch becomes the root for the first multidestination tree in the
topology (Tree 1). FabricPath switches compare three parameters in order to elect the root for
Tree 1 in each topology, with higher values being better in all cases. The parameters, in order of
preference, are:
Reference: http://www.cisco.com/c/en/us/products/collateral/switches/nexus-7000-seriesswitches/white_paper_c11-687554.html
QUESTION NO: 60
By default, what type of SSH server key is generated by Cisco NX-OS Software?
www.braindumps.com
48
Command
Purpose
Step 1
switch# configure terminal
Enters configuration mode.
Step 2
switch(config)# ssh key {dsa[force] | rsa [bits [force]]}
Generates the SSH server key.
The bits argument is the number of bits used to generate the key. The range is 768 to 2048 and
the default value is 1024.
Use the force keyword to replace an existing key.
Step 3
switch(config)# exit
Exits global configuration mode.
Step 4
switch# show ssh key
(Optional) Displays the SSH server keys.
Step 5
switch# copy running-config startup-config
(Optional) Copies the running configuration to the startup configuration.
Reference:
http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus5000/sw/configuration/guide/cli_re
l_4_0_1a/CLIConfigurationGuide/sec_ssh.html (Generating SSH server keys)
QUESTION NO: 61
www.braindumps.com
49
Which statements are true about the subswitch ID that is filled in the header? (Choose three.)
A. FabricPath switches running vPC use this field to identify the specific virtual switch.
B. FabricPath switches running vPC+ use this field to identify the specific vPC+ PortChannel on
which traffic is to be forwarded.
C. The subswitch ID field is locally significant to each vPC+ switch pair.
D. The subswitch ID field must be unique within the FabricPath domain.
E. In the absence of vPC+, this field is set to 0.
Answer: B,C,E
Explanation:
In releases prior to NX-OS 6.1(2), the sub-switch ID (sSID) field identifies the source or destination
VPC+ port-channel interface associated with a particular VPC+ switch pair. FabricPath switches
running VPC+ use this field to identify the specific VPC+ port-channel on which traffic is to be
forwarded. The sSID value is locally significant to each VPC+ switch pair. Note that, because this
field is 8 bits, using the sSID to identify VPC+ port-channels imposes a limit of roughly 250 VPC+
port-channels per VPC+ switch pair (244 to be precise).
Reference: http://www.cisco.com/c/en/us/products/collateral/switches/nexus-7000-seriesswitches/white_paper_c11-687554.html
QUESTION NO: 62
In a Cisco Nexus 7000 platform configured with GLBP, which GLBP timer can be tuned to prevent
unnecessary GLBP state changes during a switchover or ISSU?
A. GLBP redirect timer
B. GLBP forwarder pre-empt delay minimum timer
C. GLBP hold timer
D. GLBP pre-empt delay minimum timer
E. GLBP extended hold timer
F. GLBP nonstop forwarding timer
www.braindumps.com
50
QUESTION NO: 63
Refer to the exhibit.
www.braindumps.com
51
QUESTION NO: 64
SNMPv3 authorizes management operations only by configured users and encrypts SNMP
messages. Which authentication protocols does Cisco NX-OS Software use for SNMPv3?
(Choose two.)
A. NMAC-SHA-96 authentication protocol
B. HMAC-MD5-96 authentication protocol
C. Community String Match protocol
D. NMAC-MD5-96 authentication protocol
E. HMAC-SHA-96 authentication protocol
www.braindumps.com
52
QUESTION NO: 65
Overlay Transport Virtualization (OTV) provides an overlay that enables Layer 2 connectivity
between separate Layer 2 domains, while keeping these domains independent and preserving the
fault isolation, resiliency, and load-balancing benefits of an IP-based interconnection.
Which statements are true about OTV Adjacency Server? (Choose two.)
A. Adjacency Server is required when OTV is deployed with unicast-only transport.
B. Adjacency Server is required when OTV is deployed with multicast-enabled transport.
C. Each OTV device wishing to join a specific OTV logical overlay needs to first register with the
Adjacency Server.
D. Each OTV device trying to join a specific OTV logical overlay needs to be configured as an
Adjacency Server.
Answer: A,C
Explanation:
Starting with NX-OS 5.2(1) release, OTV can be deployed with unicast-only transport. As
previously described, a multicast enabled transport infrastructure lets a single OTV update or Hello
packet reach all other OTV devices by virtue of leveraging a specific multicast control group
address.
The OTV control plane over a unicast-only transport works exactly the same way as OTV with
multicast mode. The only difference is that each OTV devices would need to create multiple
copies of each control plane packet and unicast them to each remote OTV device part of the same
logical overlay. Because of this head-end replication behavior, leveraging a multicast enabled
transport remains the recommended way of deploying OTV in cases where several DC sites are
involved. At the same time, the operational simplification brought by the unicast-only model
(removing the need for multicast deployment) can make this deployment option very appealing in
scenarios where LAN extension connectivity is required only between few (2-3) DC sites.
www.braindumps.com
53
QUESTION NO: 66
Which two statements about VACLs on Cisco Nexus 7000 Series Switches are true? (Choose
two.)
A. A single VACL can be shared across two or more VDCs.
B. Use of VACLs requires no special license to be installed.
C. VACLs make use of IP or MAC ACLs.
D. Only options drop and forward are permitted.
Answer: B,C
Explanation:
VACLs use access maps to link an IP ACL or a MAC ACL to an action. The device takes the
configured action on packets permitted by the VACL.
Reference: http://www.cisco.com/c/en/us/td/docs/switches/datacenter/sw/4_0/nxos/security/configuration/guide/sec_nx-os_config/sec_vlanacls.html
QUESTION NO: 67
Which two statements about a Virtual PortChannel graceful consistent check are true?
A. Graceful consistency check is enabled by default.
B. When graceful consistency check is enabled, only the links on the secondary peer device are
www.braindumps.com
54
QUESTION NO: 68
Which attribute is used to pass the user role back to the Nexus when remote AAA is enabled?
A. Cisco AV-pair
B. TACACS+ or RADIUS ack frame role attribute
C. DH-CHAP challenge attribute
D. privilege level attribute
Answer: A
Explanation:
www.braindumps.com
55
QUESTION NO: 69
Each port that is configured to use LACP has an LACP port priority. Which statements are true
about LACP port priority? (Choose three.)
A. Port priority value can be configured between 1 and 65535.
B. A higher port priority value means a higher priority of LACP.
C. Port priority can be configured so that specific links can be chosen as active links rather than
the hot standby links within the port channel.
D. LACP uses the port priority with the port number to form the port identifier.
E. LACP Port priority default value should always be changed
Answer: A,C,D
Explanation:
LACP uses the following parameters:
Reference:
http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus5000/sw/configuration/guide/cli/C
LIConfigurationGuide/EtherChannel.html (LACP ID Parameters)
QUESTION NO: 70
Nexus7000# config t
Nexus700(config)# interface 51thernet 2/11
Nexus700(config-if)# switchport mode private-vlan host
Nexus700(config-if)# switchport private-vlan host-association 14 50
Nexus700(config-if)# exit
www.braindumps.com
56
QUESTION NO: 71
With Cisco NX-OS on a Cisco Nexus platform, which command shows memory usage, total
processes, and CPU state?
A. show memory detailed
B. show process cpu sorted
C. show system resources
D. show hardware capacity
Answer: C
Explanation:
You can use this command to display system-related CPU and memory statistics.
Switch#show system resourcesLoad average: 1 minute: 0.36 5 minutes: 0.39 15 minutes:
0.44Processes : 1068 total, 1 runningCPU states : 0.5% user, 5.5% kernel, 94.0% idleMemory
usage: 8245436K total, 3289920K used, 4955516K freeCurrent memory status: OK
Field
www.braindumps.com
57
QUESTION NO: 72
Refer to the exhibit.
www.braindumps.com
58
59
QUESTION NO: 73
What is the difference between the Ethanalyzer and the SPAN feature in Cisco NX-OS?
A. The Ethanalyzer captures control-plane traffic, while SPAN captures all traffic.
B. The Ethanalyzer captures all traffic including control-plane traffic, while SPAN captures only the
control-plane traffic.
C. The Ethanalyzer captures only data traffic, while SPAN captures all traffic.
D. The Ethanalyzer captures only control traffic, while SPAN captures data traffic.
Answer: A
Explanation:
Ethanalyzer is a tool that collects frames that are destined to, or originate from, the Nexus 5000
control plane. Node to switch or switch to switch traffic can be seen with this tool.
SPAN is a feature whereby frames that are transient to the switch are copied to a second port for
analysis. Node to switch or node to node traffic can be seen via this method.
The main difference between the Ethanalyzer and SPAN feature is that the Ethanalyzer captures
control-plane traffic, while SPAN captures all traffic.Of course for remote span (across layer3), we
use ERSPAN.
Reference: http://pankajccie.blogspot.com/
QUESTION NO: 74
Virtual PortChannels (vPCs) allow links that are physically connected to two different Cisco
switches to appear to a third downstream device as coming from a single device and as part of a
www.braindumps.com
60
Reference: http://www.cisco.com/c/en/us/products/collateral/switches/nexus-5000-seriesswitches/design_guide_c07-625857.html#_Toc271759437
www.braindumps.com
61
QUESTION NO: 75
Which statement about the Adapter FEX feature on the Cisco Nexus 5000 Series Switches is
true?
A. Adapter FEX is a software feature that can be configured on any CNA as long as the Nexus
5000 is running a version of code that supports Adapter FEX.
B. Adapter FEX can be thought of as a way to divide a single physical link into multiple virtual links
or channels.
C. Packets on each channel are tagged with an 801.Q header that has a specific source VIF.
D. When using a dual-homed NIC on the server, active/standby is not supported. Only
active/active is supported.
Answer: B
Explanation:
Adapter-FEX can be thought of as a way to divide a single physical link into multiple virtual links or
channels. Each channel is identified by a unique channel number and its scope is limited to the
physical link.
The physical link connects a port on a server network adapter with an Ethernet port on the switch.
This allows the channel to connect a vNIC on the server with a Vethernet interface on the switch.
Packets on each channel are tagged with a VNTag that has a specific source virtual interface
identifier (VIF). The VIF allows the receiver to identify the channel that the source used to transmit
the packet.
Reference: http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus5500/sw/adapterfex/6x/b_5500_Adapter_FEX_Config_6x/b_5500_Adapter_FEX_Config_602N11_chapter_01.html
#concept_C9C92B1136EB40529664852E2605840B
QUESTION NO: 76
Which statement describes the below output from an MDS switch?
Flow ID. 44
Initiator VSAN: 200
Initiator WWN: 50:06:04:8a: cc: 19:12: db
www.braindumps.com
62
QUESTION NO: 77
Which mechanism do the CNA and the Cisco Nexus 5000 Series Switches use to provide a
lossless class of Ethernet traffic?
A. LLDP
B. LACP
C. PFC
D. FIP
www.braindumps.com
63
QUESTION NO: 78
On a Nexus 5000 Series Switch, when a VFC is not online, what are the causes? (Choose three.)
A. LLDP transmit and receive are disabled
B. The initiator server has no connectivity to the target storage
C. FIP negotiation timing
D. Peer does not support LLDP
E. VSAN trunk protocol has been enabled
Answer: A,B,D
Explanation:
switch# show lldp interface ethernet 1/4
Interface Information:
Enable (tx/rx57thernetY/Y/Y Port Mac address: 00:0d:ec:d5:a3:8b
Peer's LLDP TLVs:
Type Length Value
---- ------ ----01 007 0400c0dd 145486
002 007 0300c0dd 145486
003 002 0078
128 061 001b2102 020a0000 00000002 00000001 04110000 c0000001 00003232
00000000 00000206 060000c0 00080108 100000c0 00890600 1b210889
14001b21 08
000 000
If LLDP is disabled, the VFC will not come online.
You can enable LLDP transmit and receive with the interface ethernet 1/4 command:
switch(config)# interface eth58thernet4
www.braindumps.com
64
QUESTION NO: 79
When configuring unified ports on a 5548 switch, which port ordering must be respected? (Choose
two.)
A. Fibre Channel ports must be configured from the first port in the module.
B. Ethernet ports must be configured from the last port in the module.
C. Fibre Channel ports must be configured from the last port in the module.
D. Ethernet ports must be configured from the first port in the module.
Answer: C,D
Explanation:
You must configure Ethernet ports and FC ports in a specified order:
If the order is not followed, the following errors are displayed:
ERROR: Ethernet range starts from first port of the module
www.braindumps.com
65
QUESTION NO: 80
When configuring vPC-HM CDP with multiple links to the same switch, are port-channels
required?
A. Each link between the upstream switch and the VEM is an individual subgroup.
B. Connections that go to the same upstream switch must be configured with the command
channel-group <number> mode active.
C. Connections that go to the same upstream switch must be configured with the command
channel-group <number> mode passive.
D. With vPC-HM CDP, the user can pin traffic from a specific VM to a specific uplink.
E. Connections that go to the same upstream switch must be configured with the command
channel-group <number> mode on.
Answer: E
Explanation:
channel-groupchannel-number[mode {on |active |passive}] Configures the port in a channel
group and sets the mode. The channel-number range is from 1 to 4096. The port channel
associated with this channel group is automatically created if the port channel does not already
exist. All static port channel interfaces are set to mode on.
Reference:
www.braindumps.com
66
QUESTION NO: 81
Cisco IOS NetFlow gathers data that can be used in which three of these? (Choose three.)
A. accounting
B. authentication
C. authorization
D. network monitoring
E. network planning
Answer: A,D,E
Explanation:
NetFlow captures a rich set of traffic statistics. These traffic statistics include user, protocol, port,
and type of service (ToS) information that can be used for a wide variety of purposes such as
network application and user monitoring, network analysis and planning, security analysis,
accounting and billing, traffic engineering, and NetFlow data warehousing and data mining.
Network Application and User Monitoring
NetFlow data enables you to view detailed, time- and application-based usage of a network. This
information allows you to plan and allocate network and application resources, and provides for
extensive near real-time network monitoring capabilities. It can be used to display traffic patterns
and application-based views. NetFlow provides proactive problem detection and efficient
troubleshooting, and it facilitates rapid problem resolution. You can use NetFlow information to
efficiently allocate network resources and to detect and resolve potential security and policy
violations.
Network Planning
NetFlow can capture data over a long period of time, which enables you to track and anticipate
network growth and plan upgrades. NetFlow service data can be used to optimize network
planning, which includes peering, backbone upgrade planning, and routing policy planning. It also
enables you to minimize the total cost of network operations while maximizing network
performance, capacity, and reliability. NetFlow detects unwanted WAN traffic, validates bandwidth
and quality of service (QoS) usage, and enables the analysis of new network applications.
NetFlow offers valuable information that you can use to reduce the cost of operating the network.
Denial of Service and Security Analysis
www.braindumps.com
67
QUESTION NO: 82
A customer would like to monitor traffic that is being sent to a specific virtual machine named
VM001 using SPAN. The customer has another virtual machine configured as a sniffer host called
VM002. What configuration is required, and what other changes will need to be made? (Choose
two.)
VSM-PRI-188# 61thern vethernet 5
Vethernet5 is up
Port description is VM001, Network Adapter 2
HardwarE. Virtual, address: 0050.56b0.001e (bia 0050.56b0.001e)
Owner is VM VM001, adapter is Network Adapter 2
Active on module 5
Vmware DVS port 484
Port-Profile is VM-vlan-10
Port mode is access
VSM-PRI-188# 61thern vethernet 6
Vethernet6 is up
www.braindumps.com
68
QUESTION NO: 83
Which statements are valid for a local SPAN configuration? (Choose two.)
A. Source and destination interface must be on the same host
B. Source and destination interfaces can be on different hosts
C. Destination vEthernet interface can be on a different VLAN than the source
D. Destination interface can be a physical port
E. Destination interface cannot be a physical port
Answer: A,D
Explanation:
www.braindumps.com
69
Reference:
http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus1000/sw/4_0/system_manageme
nt/configuration/guide/n1000v_sys_manage/system_7span.pdf (page 2)
QUESTION NO: 84
Refer to the exhibit.
Fabric Interconnect A, operating in end-host mode, receives an ingress frame with source MAC
address 0025.b500.0035 on uplink Eth1/19.
Which statements are true? (Choose two.)
A. The frame will be accepted. Fabric Interconnect A will update its MAC address table to show
that 0025.b500.0035 is dynamically learned on Eth1/19 and no longer dynamically learned on
Eth5/1/6.
B. Fabric Interconnect A will transmit a Gratuitous ARP for 0025.b500.0035 since it has moved
ports, and the upstream network needs to be notified of the new location.
C. Fabric Interconnect A will drop the frame.
D. The MAC address table will not be updated as a result of receiving this frame on an uplink.
www.braindumps.com
70
QUESTION NO: 85
Refer to the exhibit.
www.braindumps.com
71
QUESTION NO: 86
What are two benefits of a FabricPath network? (Choose two.)
A. Simplicity of configuration
B. Automatic OSPF routing
C. Scalability
D. Dynamic link selection
E. Spanning tree loop prioritization.
Answer: A,C
Explanation:
www.braindumps.com
72
QUESTION NO: 87
Refer to the exhibit.
The interface remains in a down state after entering the command that is shown in the exhibit.
What is the cause of the problem?
A. The feature interface-vlan command must be configured.
B. The VDC contains only F1 interfaces.
C. There are IP address conflicts.
D. The VDC is type OTV.
E. The command copy run start was not entered.
Answer: B
Explanation:
www.braindumps.com
73
QUESTION NO: 88
Consistency checks and compatibility checks are performed before a vPC is created. During a
compatibility check, one vPC peer conveys configuration information to the other vPC peer to
verify that vPC member ports can actually form a port channel. Which two statements about virtual
port channel graceful consistency checks are true? (Choose two.)
A. Graceful consistency check is enabled by default.
B. When graceful consistency check is enabled, only the links on the secondary peer device are
suspended.
C. Graceful consistency check is disabled by default. To enable this feature, use the graceful
consistency-check command under the vPC domain configuration mode.
D. When graceful consistency check is enabled, only the inconsistent VLANs on the secondary
peer device are suspended.
E. Graceful consistency check is disabled by default.
Answer: A,B
Explanation:
Beginning with Cisco NX-OS Release 5.0(2)N2(1) and later releases, when a Type 1 mismatch
occurs, by default, the primary vPC links are not suspended. Instead, the vPC remains up on the
primary switch and the Cisco Nexus 5000 Series switch performs Type 1 configurations without
completely disrupting the traffic flow. The secondary switch brings down its vPC until the
inconsistency is cleared.
However, in Cisco NX-OS Release 5.0(2)N2(1) and earlier releases, this feature is not enabled for
dual-homed FEX ports. When Type-1 mismatches occur in this topology, the VLANs are
suspended on both switches. The traffic is disrupted on these ports for the duration of the
inconsistency.
Reference:
http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus5000/sw/operations/n5k_vpc_ops.
html (graceful consistency check)
www.braindumps.com
74
QUESTION NO: 89
Consistency checks and compatibility checks are performed before a vPC is created. During a
compatibility check, one vPC peer conveys configuration information to the other vPC peer to
verify that vPC member ports can actually form a port channel. Which option is considered as a
Type-2 misconfiguration?
A. port MTU mismatch
B. native VLAN mismatch
C. STP interface settings
D. VLAN mismatch
Answer: D
Explanation:
If the PortChannel ports are suspended, a mismatch occurred in the PortChannel ports between
the switches that are supposed to bring up the PortChannel. For example, a vPC on the Cisco
Nexus 7000 Series is configured with ports that individually connect to two different PortChannels
on the Cisco Nexus 5000 Series.
Alternatively, if the access-layer ports are not configured for a channel, the Cisco Nexus 7000 and
5000 Series will operate normally with spanning tree. If the ports on the Cisco Nexus 5000 Series
are configured in passive channel-group mode and the Cisco Nexus 7000 Series ports are not
configured for PortChannels, the Cisco Nexus 7000 and 5000 Series run spanning tree again on
those ports.
Reference: http://www.cisco.com/c/en/us/products/collateral/switches/nexus-5000-seriesswitches/design_guide_c07-625857.html (vPC consistency check)
QUESTION NO: 90
Which three statements about Cisco FabricPath are correct? (Choose three.)
A. Only F1 or F2 ports can be used as FabricPath core ports.
B. Only F1 or F2 ports can be used as edge ports to connect a legacy spanning tree domain (to
switch traffic over the FabricPath domain).
C. A FabricPath VLAN can exist on F1 or F2 ports only.
D. Only M1 or M2 ports can be used as FabricPath core ports.
E. Only F2 ports can be used as edge ports to connect a legacy spanning tree domain (to switch
traffic over the FabricPath domain).
F. A FabricPath VLAN can exist on F1 ports only.
www.braindumps.com
75
QUESTION NO: 91
Which PIM mode is supported in Cisco NX-OS?
A. sparse mode
B. dense mode
C. sparse-dense mode
D. dense-sparse mode
Answer: A
Explanation:
Cisco NX-OS supports multicasting with Protocol Independent Multicast (PIM) sparse mode. PIM
is IP routing protocol independent and can leverage whichever unicast routing protocols are used
to populate the unicast routing table. In PIM sparse mode, multicast traffic is sent only to locations
of the network that specifically request it. PIM dense mode is not supported by Cisco NX-OS.
To access multicast commands, you must enable the PIM or PIM6 feature. Multicast is enabled
only after you enable PIM or PIM6 on an interface of each router in a domain. You configure PIM
for an IPv4 network and PIM6 for an IPv6 network. By default, iGMP and MLD are running on the
system.
PIM, which is used between multicast-capable routers, advertises group membership across a
routing domain by constructing multicast distribution trees. PIM builds shared distribution trees on
which packets from multiple sources are forwarded, as well as source distribution trees, on which
packets from a single source are forwarded.
The distribution trees change automatically to reflect the topology changes due to link or router
failures. PIM dynamically tracks both multicast-capable sources and receivers, although the
source state is not created in Bidir mode.
Reference: http://www.cisco.com/c/en/us/td/docs/switches/datacenter/sw/nxos/multicast/configuration/guide/b_multicast/b_multicast_chapter_010.html#concept_26C4810D8
DCF4CBAAD4845502124ACF9
www.braindumps.com
76
QUESTION NO: 92
Refer to the exhibit.
Which configuration command (or commands) will produce the output that is shown in the exhibit?
A. no feature igmp
B. no feature igmp snooping
C. vlan 201
no ip igmp snooping
D. vlan configuration 201
no ip igmp snooping
E. interface vlan 201
no ip igmp snooping
Answer: D
Explanation:
Global IGMP snooping overrides the VLAN IGMP snooping. If global snooping is disabled, you
cannot enable VLAN snooping. If global snooping is enabled, you can enable or disable VLAN
snooping.
Reference: http://www.cisco.com/c/en/us/td/docs/switches/metro/me3400/software/release/122_58_se/configuration/guide/ME3400_scg/swigmp.html
www.braindumps.com
77
QUESTION NO: 93
Refer to the exhibit.
The following message output was displayed while configuring PIM on Nexus 7000. Which
command should be configured on the Cisco Nexus 7000 Series switch to allow the desired
configuration?
A. feature multicast
B. feature pim
C. ip multicast-routing
D. ip pim routing
Answer: B
Explanation:
Feature PIM enables PIM. By default PIM is disabled.
Reference: http://www.cisco.com/c/en/us/td/docs/switches/datacenter/sw/5_x/nxos/multicast/configuration/guide/n7k_multic_cli_5x/pim.html
QUESTION NO: 94
Refer to the exhibit.
When the engineer tried to check CoPP on the switch, the engineer observed the error that is
shown in the exhibit. Which option describes the reason for the displayed output?
www.braindumps.com
78
QUESTION NO: 95
How many ACL capture sessions can be configured on a Cisco Nexus 7000 switch?
A. ACL capture is not supported on the Cisco Nexus 7000 switch.
B. Only one ACL capture session can be active at any given time in the system across virtual
device contexts.
C. Only one ACL capture session can be active in each virtual device context.
D. The number of ACL capture sessions depends on the space that is available within the ACL
Ternary Content Addressable Memory.
E. Only one ACL capture session is supported per VLAN.
Answer: B
Explanation:
Reference: http://www.cisco.com/c/en/us/support/docs/switches/nexus-7000-seriesswitches/116044-nexus-7000-acl-capture-00.html
QUESTION NO: 96
On a Cisco Nexus 7000 device, on which port type can port security be configured?
A. Access ports
B. SPAN destination port
www.braindumps.com
79
QUESTION NO: 97
Which statement is true about DHCP snooping on the Cisco Nexus 7000 platform?
A. DHCP snooping cannot be enabled globally and on a per-VLAN basis.
B. By default, DHCP snooping is disabled globally and on all VLANs.
C. You can enable DHCP snooping on a single VLAN only.
D. For DHCP snooping to function properly, all DHCP servers must be connected to the device
through untrusted interfaces.
Answer: B
Explanation:
When you use the feature dhcp command to enable the DHCP snooping feature, there is a delay
of approximately 30 seconds before the I/O modules receive DHCP snooping or DAI configuration.
This delay occurs regardless of the method that you use to change from a configuration with
DHCP snooping disabled to a configuration with DHCP snooping enabled. For example, if you use
the Rollback feature to revert to a configuration that enables DHCP snooping, the I/O modules
receive DHCP snooping and DAI configuration approximately 30 seconds after you complete the
rollback.
Reference: http://www.cisco.com/c/en/us/td/docs/switches/datacenter/sw/4_1/nxos/security/configuration/guide/sec_nx-os-cfg/sec_dhcpsnoop.html
www.braindumps.com
80
QUESTION NO: 99
Refer to the exhibit.
You configured a port on a Cisco Nexus 7000 switch as a trunk port. Which VLANs are allowed on
the trunk port based on the port configuration in the exhibit?
A. No VLANs are allowed by default. Use the switchport trunk allowed vlan 1-4094 command to
allow all VLANs.
B. Only Native VLAN 1 will be allowed.
C. VLANs 1 to 3967, and 4048 to 4094 are allowed.
D. VLANs 1 to 3900, and 4048 to 4094 are allowed.
E. VLANs 1 to 4094 are allowed.
Answer: C
Explanation:
Sets the allowed VLANs for the trunk interface. The default is to allow all VLANs on the trunk
www.braindumps.com
81
Reference: http://www.cisco.com/c/en/us/td/docs/switches/datacenter/sw/6_x/nxos/fabricpath/configuration/guide/b-Cisco-Nexus-7000-Series-NX-OS-FP-Configuration-Guide6x/b-Cisco-Nexus-7000-Series-NX-OS-FP-Configuration-Guide6x_chapter_011.html#reference_30D28E8661BB4CE78ED56E7EE99DF477
82
The engineer needs to check if keepalive messages between two servers in the address range
9.9.9.0/24 arrive from the device that is directly connected via the trunk interface. Which two
configurations should be applied on the switch port to achieve displayed output? (Choose two.)
A. ip access-list LO_FILTER
statistics per-entry
10 permit ip 9.9.9.0 0.0.0.255 any
20 permit ip any any
B. ip access-list LO_FILTER
10 permit ip 9.9.9.0 0.0.0.255 any
20 permit ip any any
www.braindumps.com
83
Command or Action
Purpose
Step 1
switch# configure terminal
Enters configuration mode.
Step 2
switch(config)# interface {76thernet[chassis/]slot/port | port-channel channel-number}
Enters interface configuration mode for the specified interface.
Step 3
switch(config-if)# {ip port access-group |ipv6 port traffic-filter} access-list in
Applies an Ipv4 or Ipv6 ACL to the interface or EtherChannel. Only inbound filtering is supported
with port ACLs. You can apply one port ACL to an interface.
Step 4
switch# show running-config
(Optional)
Displays ACL configuration.
Step 5
switch# copy running-config startup-config
(Optional)
Copies the running configuration to the startup configuration.
Reference: http://www.cisco.com/c/en/us/products/collateral/switches/nexus-5000-seriesswitches/white_paper_c11-682225.html
www.braindumps.com
84
85
Answer:
Explanation:
www.braindumps.com
86
Answer:
Explanation:
87
Interfaces on the switch that are configured as FabricPath interfaces can carry traffic only for
FabricPath VLANs.
Interfaces on the switch that are not configured as FabricPath interfaces carry traffic for the
following:
FabricPath VLANs
www.braindumps.com
88
What is the purpose of this command on the Cisco Nexus 7000 switch?
A. The command enables conversational learning on FabricPath VLANs 1 through 10 for the F
Series module.
B. The command enables the FabricPath protocol on VLANs 1 through 10.
C. There is no need for this command because conversational learning is enabled by default for all
VLANs.
D. The command enables conversational learning on a classic Ethernet VLAN for the F Series
module.
Answer: D
Explanation:
With conversational MAC learning, the interface learns only the source MAC address of an
ingressing frame if that interface already has the destination MAC address present in the MAC
address table. If the source MAC address interface does not already know the destination MAC
address, it does not learn that MAC address. Each interface learns only those MAC addresses
that are actively speaking with the interface. In this way, conversational MAC learning consists of a
three-way handshake. The interface learns the MAC address only if that interface is having a
bidirectional conversation with the corresponding interface. Unknown MAC address are forwarded,
or flooded, throughout the network.
This combination of conversational MAC address learning and multiple FEs on each F Series
module produces greatly reduced mAC address tables on each F Series module.
For CE VLANs, you can configure conversational learning per VLAN on the F Series module using
the command-line interface (CLI). CE VLANs use traditional MAC address learning by default.
Traditional MAC learning is not supported on FabricPath VLANs with Cisco Release NX-OS 5.1 or
higher.
Reference: http://www.cisco.com/en/US/docs/switches/datacenter/sw/5_x/nxos/fabricpath/configuration/guide/fp_switching.html (conversational Mac Address Learning)
www.braindumps.com
89
Which three statements describe the use of the vPC peer link in this topology? (Choose three.)
A. The peer link is used for synchronizing MAC addresses between SW1 and SW2.
B. The peer link is used for control plane traffic only.
C. The peer link provides necessary transport for multicast traffic.
D. The peer link is used for the communication of orphaned ports.
E. The peer link does not prevent the loops in the topology.
F. The peer link always consists of two 10GB ports in a port-channel.
Answer: A,C,D
Explanation:
The peer link, also known as the multichassis EtherChannel trunk (MCT), connects the vPC peer
switches. The peer link is always forwarding. The bridge protocol data units (BPDUs) or Link
Aggregation Control Protocol (LACP) packets that are received by the secondary vPC peer on a
vPC port are forwarded to the primary vPC peer through the peer link for processing.
www.braindumps.com
90
Reference:
http://www.cisco.com/c/en/us/td/docs/solutions/Enterprise/Campus/VSS30dg/campusVSS_DG/VS
S-dg_ch2.html
www.braindumps.com
91
www.braindumps.com
92
A new Nexus device, Router-B, was recently added to the network. The engineer wants to make
Router-B the designated IGMP querier for this network. Which two configurations should be
applied to the devices on the network to accomplish this goal? (Choose two.)
A. Router-B(config)# interface Ethernet1/1
Router-B(config-if)# ip address 10.1.1.251 255.255.255.0
B. Router-B(config)# interface Ethernet1/1
Router-B(config-if)# ip address 10.1.1.249 255.255.255.0
Router-B(config)# feature igmp
C. Router-B(config)# interface Ethernet1/1
Router-B(config-if)# ip igmp version 2
Router-B(config)# feature igmp
D. Router-B(config)# interface Ethernet1/1
Router-B(config-if)# ip igmp querier
Router-B(config)# feature pim
E. Router-B(config)# interface Ethernet1/1
Router-B(config-if)# ip pim sparse-mode
Answer: B,E
Explanation:
Both IGMPv1 and IGMPv2 support membership report suppression, which means that if two hosts
on the same subnet want to receive multicast data for the same group, then the host that receives
a member report from the other host suppresses sending its report. Membership report
suppression occurs for hosts that share a port.
If no more than one host is attached to each VLAN switch port, then you can configure the fast
leave feature in IGMPv2. The fast leave feature does not send last member query messages to
hosts. As soon as the software receives an IGMP leave message, the software stops forwarding
multicast data to that port.
www.braindumps.com
93
The customer is trying to configure a rendezvous point, but for some reason it is failing. Which
configuration should be applied on both Nexus devices to configure the rendezvous point?
A. RT-2(config)#ip pim send-rp-discovery loopback10
RT-2(config)#interface lo0
B. RT-2(config-if)#ip pim-sparse
RT-2(config)#ip pim send-rp-announce lo10 group-list 239.0.0.0/24
RT-2(config)#interface lo0
RT-2(config-if)#ip pim-sparse
www.braindumps.com
94
www.braindumps.com
95
Answer:
www.braindumps.com
96
Explanation:
www.braindumps.com
97
www.braindumps.com
98
The network topology that is shown in the exhibit has two aggregation switches (SW1 and SW2).
The access layer switch connects to both aggregation switches. On SW1 and SW2, ports
connecting to the access layer switches are configured as vPC member ports. SW1 and SW2 are
also connected using a port channel that is configured as a vPC peer link. Which statement
describes the use of the vPC peer-keepalive link in this topology?
A. The peer-keepalive link is used for synchronizing MAC addresses between Agg1 and Agg2.
B. The peer-keepalive link is used for control plane traffic. The peer link is used for the data plane.
C. The peer-keepalive link is used to resolve dual-active scenarios, where the peer link
connectivity is lost.
D. The peer-keepalive link is used for the communication of orphaned ports.
Answer: C
Explanation:
A routed link (it is more accurate to say path) is used to resolve dual-active scenarios in which
the peer link connectivity is lost. This link is referred to as a vPC peer-keepalive or fault-tolerant
link. The peer-keepalive traffic is often transported over the management network through the
management 0 port of the Cisco Nexus 5000 Series Switch or the management 0 ports on each
Cisco Nexus 7000 Series supervisor. The peer-keepalive traffic is typically routed over a dedicated
Virtual Routing and Forwarding (VRF) instance (which could be the management VRF, for
example).
The keepalive can be carried over a routed infrastructure; it does not need to be a direct point-to-
www.braindumps.com
99
During troubleshooting of vPCs, it is observed that virtual port channel 2 is in the down state.
Based on the show command output, what is a possible cause of this issue?
A. The virtual port channel is down because LACP is not enabled on the remote switch.
B. The virtual port channel is down because of a VLAN mismatch.
www.braindumps.com
100
www.braindumps.com
101
www.braindumps.com
102
The FabricPath switch ID for the virtual switch becomes the outer source MAC address (OSA) in
www.braindumps.com
103
Topic 3,
969696969696969696969696969696969696969696969696969696969696969696969696969696
969696969696969696969696969696969696969696969696969696969696969696969696969696
969696969696969696969696969696969696969696969696969696969696969696969696969696
9696Cisco Storage Networking
QUESTION NO: 125
Which statement describes multihop FCoE function when an FCoE switch receives an FCoE
frame from the directly connected FCoE host?
A. The switch receives the FCoE frame and forwards it to another switch over its VE port.
www.braindumps.com
104
www.braindumps.com
105
106
www.braindumps.com
107
108
www.braindumps.com
109
www.braindumps.com
110
111
Reference:
http://www.cisco.com/c/en/us/td/docs/switches/datacenter/mds9000/sw/5_2/configuration/guides/f
und/DCNM-SAN-LAN_5_2/DCNM_Fundamentals/perfmon.html
www.braindumps.com
112
Given this FCoE topology, host VFC interface and FC storage are in the same VSAN (VSAN 10).
The VSAN is in the allow list for both ISLs. Both ISLs are up at 4 GB.
Which command can be issued on the N5K command line to confirm that SCSI traffic from the
host to the storage will flow across both links, as opposed to using only one link?
A. show fspf traffic vsan 10
B. show vsan 10
C. show trunk protocol
D. show fcroute unicast vsan 10
Answer: B
Explanation:
The following example shows how to display information about a specific VSAN:
switch# show vsan 100
Reference:
http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus5000/sw/configuration/guide/cli_re
l_4_0_1a/CLIConfigurationGuide/vsan.html
www.braindumps.com
113
Reference:
https://books.google.com.pk/books?id=o3jeY1SwOYcC&pg=PA460&lpg=PA460&dq=VLAN+disco
very,+FCF+discovery,+FLOGI+and+FDISC,+FC+command&source=bl&ots=cZSJqQRMpn&sig=G
CwEWMK4ulWQa6e_JbTGr9RQ3Zg&hl=en&sa=X&ei=Pt0wVfuYOcPfaqXqgOgB&ved=0CDsQ6A
EwBg#v=onepage&q=VLAN%20discovery%2C%20FCF%20discovery%2C%20FLOGI%20and%2
0FDISC%2C%20FC%20command&f=false
www.braindumps.com
114
www.braindumps.com
115
116
www.braindumps.com
117
www.braindumps.com
118
119
www.braindumps.com
120
www.braindumps.com
121
122
Reference:
http://www.cisco.com/en/US/docs/storage/san_switches/mds9000/sw/rel_2_x/fm/configuration/gui
de/fcip.html (Modifying FCIP links)
123
Which two options describe possible causes of the failure shown in the exhibit? (Choose two.)
A. Two switches have the same zone set name, but different zone names and different zone
members.
www.braindumps.com
124
Reference:
http://www.cisco.com/en/US/products/ps5989/prod_troubleshooting_guide_chapter09186a008067
a309.html (mismatched active zone sets with the same VSAN)
125
Reference:
http://www.cisco.com/c/en/us/td/docs/solutions/Enterprise/Data_Center/HA_Clusters/HA_Clusters/
HA_FCI_4.html (compression modes and rate)
www.braindumps.com
126
When a CNA host connects to the virtual interface of the switch, what will happen?
A. The switch will not initialize because it is in the wrong mode.
B. The host will negotiate using DCBX and connect properly.
C. The host will negotiate using DCBX and will change parameters as required, but a shut/no shut
is needed on the interface.
D. The host will not connect. The vFC port number does not match the Ethernet interface.
Answer: A
Explanation:
In expansion port (E port) mode, an interface functions as a fabric expansion port. This port may
be connected to another E port to create an Inter-Switch Link (ISL) between two switches. E ports
carry frames between switches for configuration and fabric management. They serve as a conduit
between switches for frames destined to remote N ports. E ports support class 3 and class F
service.
An E port connected to another switch may also be configured to form a SAN port channel.
Reference:
http://www.cisco.com/c/en/us/td/docs/solutions/Enterprise/Data_Center/HA_Clusters/HA_Clusters/
HA_FCI_4.html
www.braindumps.com
127
What action must be taken to make fc1/1 capable of being an ISL port channel member operating
at 4 GB?
A. One of the interfaces between fc1/2 and fc1/6 must be placed in out-of-service mode to free up
bandwidth in the port group so that fc1/1 can use that bandwidth.
B. Interface fc1/1 must be placed into dedicated rate mode.
C. The B2B credit value of interface fc1/1 must be raised to a minimum of 100.
D. No action is necessary because shared rate mode ports are fine for ISLs.
E. No action is possible because module 1 is oversubscribed and will only support ISLs if the ports
operate at 2GBs.
Answer: B
Explanation:
To add an interface to a PortChannel, follow these steps:
Command
Purpose
Step 1
switch# config t
switch(config)#
Enters configuration mode.
Step 2
switch(config)# interface fc1/15
switch(config-if)#
Configures the specified port interface (fc1/15).
Step 3
switch(config-if)#channel-group 15
Adds physical Fibre Channel port 1/15 to channel group 15. If channel group 15 does not exist, it
is created. The port is shut down.
To add a range of ports to a PortChannel, follow these steps:
www.braindumps.com
128
129
Based on the output, what is the most likely reason for the failure of the iSCSI boot?
A. There is no gateway configured on the iSCSI vNIC.
B. The LUN is not masked correctly on the storage array.
C. CHAP authentication is not configured correctly.
D. The latency between the imitator and target is too high.
Answer: B
Explanation:
Provision a special LUN with the correct size to install the OS image. This LUN must be LUN 0
and will be used by the server to obtain the OS image. In addition, configure LUN masking so that
the server has access to the LUN. This configuration is typically performed using the pWWN of the
server: the corresponding vHBA's pWWN. The LUN masking procedure is specific to the storage
array and is usually performed using the array's device manager or command-line interface (CLI).
Reference: https://communities.cisco.com/thread/38370
www.braindumps.com
130
Answer:
Explanation:
www.braindumps.com
131
Answer:
Explanation:
www.braindumps.com
132
Explanation:
Answer:
Explanation:
www.braindumps.com
133
Answer:
Explanation:
www.braindumps.com
134
Answer:
Explanation:
135
136
Reference:
http://www.cisco.com/c/en/us/td/docs/switches/datacenter/mds9000/sw/5_0/configuration/guides/i
oa/ioa/scsi_wa_ta.html
www.braindumps.com
137
138
Answer:
Explanation:
www.braindumps.com
139
Answer:
Explanation:
www.braindumps.com
140
www.braindumps.com
141
142
Which option describes the capability that the FCoE setting allows?
A. configures the FEX to send FCoE traffic only to this switch
B. allows mapped VLAN-VSAN traffic to reach the FEX
C. configures FEX for A-B SAN capabilities
D. allows interface Ethernet 101/1/1 to exchange DCBX information
Answer: A
Explanation:
Although Ethernet traffic is dual homed between a FEX and a switch pair in an enhanced vPC
topology, FCoE traffic must be single-homed to maintain SAN isolation. Therefore, while enhanced
vPC supports FCoE, a single homed FEX topology can be a better choice when SAN isolation and
high FCoE bandwidth are required.
Reference:
http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus5500/sw/fcoe/7x/b_5500_FCoE_
Config_7x/b_5500_FCoE_Config_7x_chapter_011.html (see configuring FCoE over Enhanced
vPC)
www.braindumps.com
143
144
www.braindumps.com
145
Which three statements about the exhibit output related to Cisco Fabric Services are true?
(Choose three.)
A. The lock can only be released only by the operations manager user on the 10.1.1.11 switch.
B. The admin user on the 10.1.1.11 switch must clear the lock.
C. The tacacs+ commit command is the only command that can be used to clear the lock.
D. Any network-admin user can release the lock with the command clear tacacs+ session.
E. The operations manager user has started, but not committed, a configuration change for the
feature tacacs+ command.
F. If committed, the changes are automatically saved to the startup configuration on all switches.
Answer: D,E,F
Explanation:
When you configure an application that uses the CFS infrastructure, that application starts a CFS
session and locks the network. When a network is locked, the device software allows configuration
changes to this application only from the device holding the lock. If you make configuration
changes to the application from another device, the device issues a message to inform the user
about the locked status. The configuration changes are held in a pending database by that
application.
If you start a CFS session that requires a network lock but forget to end the session, an
administrator can clear the session. If you lock a network at any time, your user name is
remembered across restarts and switchovers. If another user (on the same machine) tries to
perform configuration tasks, that user's attempts are rejected.
Reference: http://www.cisco.com/c/en/us/td/docs/switches/datacenter/sw/5_x/nxos/system_management/configuration/guide/sm_nx_os_cg/sm_2cfs.html (locking the network)
www.braindumps.com
146
Given the displays from N5K-1 and N5K-2, what is the expected result if the zone mode enhanced
vsan 1 command is issued on N5K-1?
A. The mode change will complete with a warning that the zone database from N5K-1 will be
distributed throughout the fabric.
B. The mode change will not complete due to the mismatch in the default zone mode.
C. The mode change prompts the administrator to override the default zone mismatch and make
them the same.
D. The mode change completes, and the default zone setting remains unchanged in N5K-1 and
N5K-2.
E. The default zone setting is set to deny in both switches because it is more secure.
Answer: A
Explanation:
When the zone moe enhanced vsan 1 command is issued on N5k-1, the mode change will
complete with a warning that the zone database from N5k- has been distributed throughout the
fabric.
Reference:
http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus5000/sw/configuration/guide/cli_re
l_4_0_1a/CLIConfigurationGuide/initconfig.html
www.braindumps.com
147
www.braindumps.com
148
Which two options describe information that can be determined from this output? (Choose two.)
A. the uplink interface that is operating as the designated receiver for broadcast traffic
B. the uplink interface that is operating as the designated sender for broadcast traffic
C. the switching mode for which the Fabric Interconnect is configured
D. the uplink interface from which multicast traffic will be sourced
E. whether the last respond code was accepted or not
Answer: A,C
Explanation:
www.braindumps.com
149
You have associated a newly created service profile to a blade. When you examine the configured
boot order and actual boot order, they do not match. Which two statements describe reasons for
this mismatch? (Choose two.)
A. Having a single iSCSI boot target would prevent the profile from associating, and would
generate a configuration error.
B. The server must complete a POST cycle before Cisco UCS Manager will update this
information.
C. The blade needs to be reacknowledged.
D. The server is in the process of a firmware upgrade.
www.braindumps.com
150
You are configuring a UCS C-Series server for SAN boot over FCoE. The server fails to boot after
the HBA option ROM loads. Which option describes the most likely solution for this problem?
A. Decrease the vNIC MTU.
B. Set the vNIC Class of Service to a nonzero value.
C. Set the default VLAN to FCOE VLAN.
D. Set the vHBA Class of Service to 2.
E. Uncheck the PXE Boot option.
F. Disable Persistent LUN Binding.
Answer: C
Explanation:
To set up FC interfaces and FCoE VLAN interfaces:
www.braindumps.com
151
You are connecting a Cisco Nexus 2000 to an existing Cisco UCS Fabric Interconnect domain for
C-Series integration. Which option describes the next Cisco Nexus 2000 that will be discovered?
A. FEX0101
B. FEX0003
C. FEX0102
D. FEX1000
E. FEX1001
Answer: B
Explanation:
www.braindumps.com
152
What is the most likely reason for the output that is shown in bold in the exhibit?
A. One or more of the VLANs that are assigned to the vNIC have been deleted from Cisco UCS
Manager.
B. One or more of the VLANs that are assigned to the vNIC are assigned to different disjoint Layer
2 uplinks.
C. There are no Ethernet uplinks that are enabled.
www.braindumps.com
153
154
You are setting up a service profile to iSCSI boot using a Cisco UCS VIC 1240. The service profile
returns a configuration error when you attempt to associate it. What is the problem, based on the
exhibit?
A. The iSCSI adapter policy is not set.
B. iSCSI boot will not work with the default VLAN.
C. The default VLAN should not be set as native on the overlay vNIC.
D. The MAC address assignment is invalid.
Answer: D
www.braindumps.com
155
www.braindumps.com
156
www.braindumps.com
157
www.braindumps.com
158
Step 1
On the VSM, enter the show vlan command to view the state of the VLANs associated with the
port. If the VLAN associated with a port is not active, then the port may be down. In this case, you
must create the VLAN and activate it.
Step 2
To see the state of the port on the VSM, enter a show interface brief command.
Step 3
Enter the module vem module-number execute vemcmd show port command to display the
ports that are present on the VEM, their local interface indices, VLAN, type (physical or virtual),
CBL state, port mode, and port name.
The key things to look for in the output are:
www.braindumps.com
159
The LTL of the port you are trying to troubleshoot. It will help you identify the interface quickly in
other VEM commands where the interface name is not displayed.
Make sure the state of the port is up. If not, verify the configuration of the port on the VSM.
Step 4
To view the VLANs and their port lists on a particular VEM, use the module vem module-number
execute vemcmd show bd command:
n1000V# module vem 5 execute vemcmd show bd
Reference:
http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus1000/sw/4_0_4_s_v_1_3/troubles
hooting/configuration/guide/n1000v_trouble/n1000v_trouble_8layer2.html (verifying a connection
between VEM ports)
160
161
www.braindumps.com
162
Reference:
http://www.cisco.com/en/US/docs/switches/datacenter/vsg/sw/4_2_1_VSG_1_4_1/vpath_vservice
s/reference/guide/vpath_vservices_overview.html
163
Command
Description
Step 1
config t
Example:
n1000v# config t
n1000v(config)#
www.braindumps.com
164
nameSpecifies the port profile name, which can be up to 80 characters and must be unique for
each port profile on the Cisco Nexus 1000V.
typeAn Ethernet type port profile can be used for physical ports, and in the vCenter Server, the
corresponding port group can be selected and assigned to physical ports (PNICs).
Note
If a port profile is configured as an Ethernet type, then it cannot be used to configure VMware
virtual ports.
Note
Once a port profile is created, you cannot change its type (Ethernet or vEthernet).
Step 3
channel-group auto mode on [sub-group {cdp |manual}] [mac-pinning]
ExampleCDP is configured on the upstream switches:
n1000v(config-port-prof)# channel-group auto mode on sub-group cdp
n1000v(config-port-prof)#
ExampleCDP is not configured on the upstream switches:
n1000v(config-port-prof)# channel-group auto mode on manual
n1000v(config-port-prof)#
ExampleUpstream switches do not support port channels:
n1000v(config-port-prof)# channel-group auto mode on mac-pinning
n1000v(config-port-prof)#
Creates a unique asymmetric port channel (also known as vPC-HM) and automatically assigns it
when the port profile is assigned to the first interface.
Each additional interface that belongs to the same module is added to the same port channel. In
VMware environments, a different port channel is created for each module.
The following options are also defined:
modeSets the port channel mode toon (active and passive use LACP).
www.braindumps.com
165
manualSpecifies that subgroups are configured manually. This option is used if CDP is not
configured on the upstream switches.
www.braindumps.com
167
www.braindumps.com
168
ip address 10.1.0.2/24
hsrp 2000
ip 10.1.0.1
interface Vlan3001
ip address 10.2.0.1/24
ip arp 10.2.0.88 00AA.BBCC.DD66
interface Ethernet2/2
switchport
switchport access vlan 3000
no shutdown
www.braindumps.com
169
www.braindumps.com
170
171
Reference: https://popravak.wordpress.com/2012/12/11/vmware-vsphere-distributed-switch-cisconexus-1000v/
www.braindumps.com
172
An ESX host is added to a distributed switch but is never seen as a module in VSM. Given below
configuration from VSM, what is the cause of this issue? (Choose two.)
VSM# show svs domain
SVS domain config:
Domain iD. 111
Control vlan: 500
Packet vlan: 501
L2/L3 Control modE. L2
L3 control interfacE. NA
Status: Config push to VC successful.
A. Missing VLAN 500 on Switch1 trunk to Switch2
B. Missing VLAN 501 on Switch1 trunk to Switch 2
C. VLAN 500 is not created on Switch2
D. Interface VLAN 500 is missing on Switch1
E. Interface VLAN 501 is missing on Switch1
F. VLAN 111 is missing on all switches
www.braindumps.com
173
174
www.braindumps.com
175
176
177
www.braindumps.com
178
www.braindumps.com
179
An administrator is setting up the VSM and VEM in Layer 3 mode. The administrator adds a host
to the distributed switch in VMware, but does not see the module join the VSM. Given the
configuration in the exhibit, which configuration needs to be included?
A. ip route 0.0.0.0 0.0.0.0 10.10.10.1
B. vrf context control ip route 0.0.0.0 0.0.0.0 10.10.10.1
C. vrf context management ip route 0.0.0.0 0.0.0.0.10.10.10.1
D. ip route vrf management 0.0.0.0 0.0.0.0 10.10.10.1
Answer: A
Explanation:
You have to include ip route 0.0.0.0 0.0.0.0 10.10.10.1 to see the module join the VSM. This IP
route specifies the IP addresses needed for the module join with VSM
Reference: http://www.cisco.com/c/dam/en/us/td/docs/solutions/CVD/Aug2014/CVDVirtualizationWithCiscoUCSNexus1000VandVMwareDesignGuide-AUG14.pdf
180
You know which users or groups should have access to the role you are creating.
You have already created the users and groups to be assigned to this role in vCenter and have
access to the Cisco Nexus 1000V DVS folder where the VSM resides. See the "Defining DVS
Access in vSphere Client" procedure.
You have enabled the port profile role feature using the "Enabling the Port Profile Role Feature"
procedure.
role name
role description
users to assign
groups to assign
181
182
A port profile is created in the VSM, but it is not seen in vCenter and cannot be assigned to a
virtual machine. Given the configuration in the exhibit, which VSM command will resolve this
issue?
A. vmware port-group
B. vmware port-active
C. profile-active
D. port-group active
E. shutdown / no shutdown
Answer: A
Explanation:
State
Behavior
Disabled (the default)
When disabled, a port profile behaves as follows:
183
If configured with the VMware port-group attribute, the port group is created on the vCenter
Server.
Reference:
http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus1000/sw/4_2_1_s_v_1_4/port_pro
file/configuration/guide/n1000v_port_profile/n1000v_portprof_2create.html
www.braindumps.com
184
The network administrator is adding a new Cisco Nexus 1000V Switch to vCenter, but does not
see the new switch under the vCenter networking tab. The administrator issues the command that
is shown in the exhibit on VSM to troubleshoot this problem. When the administrator attempts to
fix the issue, the error that is shown in the exhibit is seen. Which option describes the most correct
cause of this error?
A. There is a missing control VLAN in the VSM configuration.
B. There is a missing packet VLAN in the VSM configuration.
C. VSM has no network connection to vCenter.
D. The VSM extension key is not installed on vCenter.
E. The vCenter extension key is not installed on VSM.
Answer: D
Explanation:
The VSM uses the extension key when communicating with the vCenter Server. Each VSM has its
own unique extension key, such as Cisco_Nexus_1000V_32943215
Use the show vmware vc extension-key command to find the extension key of the VSM. It is also
listed in the .xml file.
The extension key registered on the vCenter Server can be found through the MOB.
The same extension key cannot be used to create more than one DVS on the vCenter Server.
Reference:
http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus1000/sw/4_0/troubleshooting/conf
iguration/guide/n1000v_troubleshooting/trouble_17system.html
www.braindumps.com
185
186
Which three statements about the exhibit are true? (Choose three.)
A. The differentiating characteristic of the Cisco Nexus 1000V Series is that it does not run
Spanning Tree Protocol. This characteristic may seem to be a significant departure from other
Ethernet switches, which might potentially cause catastrophic network loops. However, in reality,
the Cisco Nexus 1000V Series implements a simple and effective loop-prevention strategy that
does not require Spanning Tree Protocol.
B. Because the Cisco Nexus 1000V Series does not participate in Spanning Tree Protocol, it does
not respond to BPDU packets, nor does it generate them. BPDU packets that are received by
Cisco Nexus 1000V Series Switches are dropped.
C. The Cisco Nexus 1000V Series uses a simple technique to prevent loops. Like a physical
Ethernet switch, the Cisco Nexus 1000V Series Switch performs source and destination MAC
address lookups to make forwarding decisions. The VEM applies loop-prevention logic to every
incoming packet on Ethernet interfaces.
D. The Cisco Nexus 1000V Series uses a simple technique to prevent loops. Like any logical
Ethernet switch, the Cisco Nexus 1000V Series Switch performs source and destination MAC
address lookups to make forwarding decisions. The VEM applies loop-prevention logic to every
www.braindumps.com
187
Because the Cisco Nexus 1000V Series does not participate in Spanning Tree Protocol, it does
not respond to Bridge Protocol Data Unit (BPDU) packets, nor does it generate them. BPDU
packets that are received by Cisco Nexus 1000V Series Switches are dropped.
The Cisco Nexus 1000V Series uses a simple technique to prevent loops. Like a physical Ethernet
switch, the Cisco Nexus 1000V Series Switch performs source and destination MAC address
lookups to make forwarding decisions. The VEM applies loop-prevention logic to every incoming
packet on Ethernet interfaces. This logic is used to identify potential loops. Every ingress packet
on a physical Ethernet interface is inspected to help ensure that the destination MAC address is
internal to the VEM. If the source MAC address is internal to the VEM, the Cisco Nexus 1000V
Series Switch will drop the packet. If the destination MAC address is external, the switch will drop
the packet, preventing a loop back to the physical network.
Reference: http://www.cisco.com/c/en/us/products/collateral/switches/nexus-1000v-switchvmware-vsphere/guide_c07-556626.html (loop prevention)
www.braindumps.com
188
189
190
Performance Manager
The primary purpose of DCNM-SAN is to manage the network. A key management capability is
network performance monitoring. Performance Manager gathers network device statistics
historically and provides this information graphically using a web browser. Performance Manager
presents recent statistics in detail and older statistics in summary. Performance Manager also
integrates with external tools such as Cisco Traffic Analyzer.
Performance Manager has three operational stages:
Performance Manager can collect statistics for ISLs, hosts, storage elements, and configured
flows. Flows are defined based on a host-to-storage (or storage-to-host) link. Performance
Manager gathers statistics from across the fabric based on collection configuration files. These
files determine which SAN elements and SAN links Performance Manager gathers statistics for.
Based on this configuration, Performance Manager communicates with the appropriate devices
(switches, hosts, or storage elements) and collects the appropriate information at fixed five-minute
intervals.
Reference:
http://www.cisco.com/c/en/us/td/docs/switches/datacenter/mds9000/sw/5_2/configuration/guides/f
und/DCNM-SAN-LAN_5_2/DCNM_Fundamentals/fmfundov.html
www.braindumps.com
191
www.braindumps.com
192
Reference: http://www.cisco.com/c/dam/en/us/products/collateral/servers-unified-computing/ucs5100-series-blade-server-chassis/b250m2_specsheet.pdf
www.braindumps.com
193
Reference: http://www.cisco.com/c/dam/en/us/products/collateral/servers-unified-computing/ucs5100-series-blade-server-chassis/at_a_glance_c45-555038.pdf
Reference:
http://www.cisco.com/c/en/us/td/docs/switches/datacenter/mds9000/sw/5_0/configuration/guides/i
nt/fm/fm_interfaces/npv.html
www.braindumps.com
194
195
www.braindumps.com
196
197
Reference: http://www.cisco.com/c/en/us/td/docs/unified_computing/ucs/sw/gui/config/guide/20/b_UCSM_GUI_Configuration_Guide_2_0/b_UCSM_GUI_Configuration_Guide_2_0_chapter_01
1100.html (scrub policy)
198
Reference:
http://www.cisco.com/en/US/docs/unified_computing/ucs/sw/gui/config/guide/141/UCSM_GUI_Co
nfiguration_Guide_141_chapter43.html
Reference: http://www.cisco.com/c/en/us/td/docs/unified_computing/ucs/sw/gui/config/guide/1-31/b_UCSM_GUI_Configuration_Guide_1_3_1/UCSM_GUI_Configuration_Guide_1_3_1_chapter2
5.html#concept_140F6E7B34CB4E999E444134BB160DA4
199
200
www.braindumps.com
201
Reference: http://www.cisco.com/c/en/us/td/docs/unified_computing/ucs/sw/gui/config/guide/20/b_UCSM_GUI_Configuration_Guide_2_0/b_UCSM_GUI_Configuration_Guide_2_0_chapter_01
00.html (End-host mode)
www.braindumps.com
202
www.braindumps.com
203
204
205
Reference: http://www.cisco.com/c/en/us/td/docs/unified_computing/ucs/sw/gui/config/guide/20/b_UCSM_GUI_Configuration_Guide_2_0/b_UCSM_GUI_Configuration_Guide_2_0_chapter_01
01.html
206
www.braindumps.com
207
Reference:
http://www.cisco.com/en/US/docs/unified_computing/ucs/sw/gui/config/guide/141/UCSM_GUI_Co
nfiguration_Guide_141_chapter43.html (backup types)
www.braindumps.com
208
209
Reference: http://www.cisco.com/c/en/us/td/docs/unified_computing/ucs/sw/gui/config/guide/22/b_UCSM_GUI_Configuration_Guide_2_2/b_UCSM_GUI_Configuration_Guide_2_2_chapter_01
0100.html#task_73D1704DAF1245038067362AA264E08C (see table 1)
www.braindumps.com
210
The fabric interconnect is in the End-Host mode, and all uplink ports failed.
211
www.braindumps.com
212
www.braindumps.com
213
If uplink 1 fails, to which addresses will Fabric Interconnect B transmit a GARP on Uplink 2?
A. AA and BB only
B. C1 and C2 only
C. A1, B1, AA, and BB
D. AA, BB, C1, and C2
E. No GARPs will be transmitted
Answer: D
Explanation:
The Fabric Interconnect B transmit a Garp through MAC AA, MAC BB, MAC C1 and MAC C2 on
Uplink 2.
Reference: http://www.slideshare.net/ciscolatinoamerica/cisco-unified-computing-andvirtualization-architecture-design-and-deployment-recommendation
www.braindumps.com
214
215
All Ethernet ports are trunked with VLANs 2 thru 10. The Cisco UCS domain is in end-host mode.
Host A transmits a single broadcast frame on VLAN 4.
Which statements are true? (Choose two.)
www.braindumps.com
216
217
218
Your company requires a Cisco UCS configuration that will, at a minimum, allow the configuration
in the provided exhibit.
Which Cisco UCS components will meet the requirement? (Choose three.)
A. Cisco UCS 6148, Cisco UCS 6248UP, or the Cisco UCS 6296UP fabric interconnects
B. Cisco UCS 2104XP Fabric Extender
C. Cisco UCS 2204XP or 2208XP Fabric Extenders
D. Cisco UCS M81KR Virtual Interface Card
E. Cisco UCS Virtual Interface Card 1280
www.braindumps.com
219
www.braindumps.com
220
The Cisco UCS domain is operating in switching mode. A network administrator notices that no
traffic is traversing the uplinks on Fabric Interconnect B (Path C).
Which actions might be used to change this behavior?
A. Fix the port channel configuration between Fabric Interconnect B and Nexus 5548 B as the port
channel IDs do not match.
B. Modify the bridge priority on the fabric interconnects so that one of the Nexus 5548s will always
www.braindumps.com
221
www.braindumps.com
222
223
Answer:
Explanation:
www.braindumps.com
224
Answer:
Explanation:
www.braindumps.com
225
226
While attempting to modify a management firmware package, you receive the error that is shown
in the exhibit. Which two statements explain this error? (Choose two.)
A. The management firmware package that is referenced by the service profile has been deleted.
B. The Cisco UCS Manager version is 2.1 or later.
C. Cisco Integrated Management Controller firmware should be managed via the host firmware
policy.
D. You cannot modify the management firmware directly when a policy has been assigned.
E. The user that is logged into Cisco UCS Manager does not have sufficient privileges.
Answer: B,C
Explanation:
www.braindumps.com
227
Answer:
Explanation:
www.braindumps.com
228
Answer:
www.braindumps.com
229
www.braindumps.com
230
231
When you change a Layer 3 port to a Layer 2 port or a Layer 2 port to a Layer 3 port, all layerdependent configuration is lost. When you change an access or trunk port to a Layer 3 port, all
information about the access VLAN, native VLAN, allowed VLANs, and so forth, is lost.
Do not connect devices with access links because access links may partition a VLAN.
When connecting Cisco devices through an 802.1Q trunk, make sure that the native VLAN for an
802.1Q trunk is the same on both ends of the trunk link. If the native VLAN on one end of the trunk
is different from the native VLAN on the other end, spanning tree loops might result.
Disabling spanning tree on the native VLAN of an 802.1Q trunk without disabling spanning tree on
every VLAN in the network can cause spanning tree loops. You must leave spanning tree enabled
on the native VLAN of an 802.1Q trunk. If you cannot leave spanning tree enabled, you must
disable spanning tree on every VLAN in the network. Make sure that your network has no physical
loops before you disable spanning tree.
When you connect two Cisco devices through 802.1Q trunks, the devices exchange spanning tree
bridge protocol data units (BPDUs) on each VLAN allowed on the trunks. The BPDUs on the
native VLAN of the trunk are sent untagged to the reserved IEEE 802.1D spanning tree multicast
MAC address (01-80-C2-00-00-00). The BPDUs on all other VLANs on the trunk are sent tagged
to the reserved Cisco Shared Spanning Tree (SSTP) multicast MAC address (01-00-0c-cc-cc-cd).
Non-Cisco 802.1Q devices maintain only a single instance of spanning tree (the Mono Spanning
Tree) that defines the spanning tree topology for all VLANs. When you connect a Cisco switch to a
non-Cisco switch through an 802.1Q trunk, the Mono Spanning Tree of the non-Cisco switch and
the native VLAN spanning tree of the Cisco switch combine to form a single spanning tree
topology known as the Common Spanning Tree (CST).
Because Cisco devices transmit BPDUs to the SSTP multicast MAC address on VLANs other than
the native VLAN of the trunk, non-Cisco devices do not recognize these frames as BPDUs and
flood them on all ports in the corresponding VLAN. Other Cisco devices connected to the nonCisco 802.1Q cloud receive these flooded BPDUs. This BPDU reception allows Cisco switches to
maintain a per-VLAN spanning tree topology across a cloud of non-Cisco 802.1Q devices. The
232
non-Cisco 802.1Q cloud that separateswww.braindumps.com
the Cisco devices is treated as a single broadcast
You can group trunk ports into port-channel groups, but all trunks in the group must have the
same configuration. When a group is first created, all ports follow the parameters set for the first
port to be added to the group. If you change the configuration of one of these parameters, the
device propagates that setting to all ports in the group, such as the allowed VLANs and the trunk
status. For example, if one port in a port group ceases to be a trunk, all ports cease to be trunks.
If you try to enable 802.1X on a trunk port, an error message appears, and 802.1X is not enabled.
If you try to change the mode of an 802.1X-enabled port to trunk, the port mode is not changed.
Reference: http://www.cisco.com/c/en/us/td/docs/switches/datacenter/sw/4_2/nxos/interfaces/configuration/guide/if_nxos/if_access_trunk.html (guidelines and limitations, 6th
bullet)
www.braindumps.com
233
234
Assume that the Cisco UCS 6200 Series Fabric Interconnects are equipped with 16 port
expansion modules. What is the impact of the last command in the exhibit?
A. Fabric interconnect B will reboot.
B. The expansion module on fabric interconnect B will reload.
C. The command will generate an error.
D. Both fabric A and B expansion modules will reload.
E. The expansion module on fabric interconnect B will reload according to the maintenance policy
that is set by Cisco UCS Manager.
Answer: C
Explanation:
The commit-buffer command will generate an error because its creating interface 2 1 on ethuplink.
Reference: http://www.cisco.com/c/en/us/td/docs/unified_computing/ucs/sw/cli/config/guide/20/b_UCSM_CLI_Configuration_Guide_2_0/b_UCSM_CLI_Configuration_Guide_2_0_chapter_010
1.pdf
www.braindumps.com
235
Which option describes the output that is shown in bold in the exhibit?
A. This output represents a standby VIF.
B. This output indicates that fabric failover has been enabled on vNIC 3.
C. This output represents a reserved system VIF.
www.braindumps.com
236
Reference: http://www.cisco.com/c/en/us/td/docs/unified_computing/ucs/cseries_integration/ucsm2-1/b_UCSM2-1_C-Integration/b_UCSM2-1_CIntegration_chapter_01.html#concept_774B705BE3594D4EA81050E408629FEE
237
Based on the number of VLANs configured for these ports, Cisco UCS Manager keepstrack of the
cumulative count of VLAN port instances and enforces the VLAN port limit during validation. Cisco
UCS Manager reserves some pre-defined VLAN port resources for control traffic. These include
management VLANs configured under HIF and NIF ports.
Reference: http://www.cisco.com/c/en/us/td/docs/unified_computing/ucs/sw/gui/config/guide/14/b_UCSM_GUI_Configuration_Guide_1_4/b_UCSM_GUI_Configuration_Guide_1_4_chapter_01
111.pdf (page 3)
238
How many additional chassis equipped with Cisco UCS 2204XP I/O Modules could be connected
at maximum bandwidth without exceeding the existing port licenses?
A. 1
B. 2
C. 3
D. 4
E. 5
Answer: B
Explanation:
The maximum bandwidth that can be connected without exceeding existing port licenses is 2.
www.braindumps.com
239
Which two statements about the output and diagram are true? (Choose two.)
A. FI-A is configured in FC switch mode.
B. VSAN trunking is enabled on FI-A.
C. The native VSAN should be VSAN 1.
D. Cisco UCS will allow all VSANs by default when FC trunking is enabled.
E. FI-A requires VSAN pruning.
www.braindumps.com
240
www.braindumps.com
241
www.braindumps.com
242
www.braindumps.com
243
Assume that there is no disjoint Layer 2 configuration. Based on the output, what will happen if
uplink eth1/7 on FI-A fails?
A. The host will lose Ethernet uplink connectivity on FI-A.
B. Fabric failover will force the vNIC that is bound to FI-A to use uplink eth1/7 on FI-B.
C. Cisco UCS Manager will disable the host vNIC that is connected to FI-A.
D. Traffic from any hosts using this pin group will use e1/8 on FI-A.
Answer: D
Explanation:
D SR is high. There are two possible reasons for this:
www.braindumps.com
244
www.braindumps.com
245
Answer:
www.braindumps.com
246
Explanation:
Answer:
www.braindumps.com
247
Explanation:
Answer:
www.braindumps.com
248
Explanation:
Answer:
www.braindumps.com
249
www.braindumps.com
250
www.braindumps.com
251
B)
www.braindumps.com
252
C)
D)
www.braindumps.com
253
A. Option A
B. Option B
C. Option C
D. Option D
Answer: A,B
Explanation:
Number of Links Wired for the Chassis
1-Link Chassis Discovery Policy
2-Link Chassis Discovery Policy
4-Link Chassis Discovery Policy
8-Link Chassis Discovery Policy
Platform-Max Discovery Policy
1 link between IOM and fabric interconnects
Chassis is discovered by Cisco UCS Manager and added to the Cisco UCS domain as a chassis
wired with 1 link.
Chassis cannot be discovered by Cisco UCS Manager and is not added to theCisco UCS domain.
Chassis cannot be discovered by Cisco UCS Manager and is not added to the Cisco UCS domain.
Chassis cannot be discovered by Cisco UCS Manager and is not added to theCisco UCS domain.
Chassis is discovered byCisco UCS Manager and added to the Cisco UCS domain as a chassis
wired with 1 link.
2 links between IOM and fabric interconnects
Chassis is discovered by Cisco UCS Manager and added to the Cisco UCS domain as a chassis
wired with 1 link.
After initial discovery, reacknowledge the chassis and Cisco UCS Managerrecognizes and uses
the additional links.
Chassis is discovered by Cisco UCS Manager and added to the Cisco UCS domain as a chassis
www.braindumps.com
254
www.braindumps.com
255
256
Answer:
www.braindumps.com
257
Explanation:
www.braindumps.com
258
When connecting Cisco switches through an 802.1q trunk, make sure the native VLAN for an
802.1Q trunk is the same on both ends of the trunk link. If the native VLAN on one end of the trunk
is different from the native VLAN on the other end, spanning tree loops might result.
Disabling spanning tree on the native VLAN of an 802.1Q trunk without disabling spanning tree on
every VLAN in the network can cause spanning tree loops. We recommend that you leave
spanning tree enabled on the native VLAN of an 802.1Q trunk. If this is not possible, disable
spanning tree on every VLAN in the network. Make sure your network is free of physical loops
before disabling spanning tree.
When you connect two Cisco switches through 802.1Q trunks, the switches exchange spanning
tree BPDUs on each VLAN allowed on the trunks. The BPDUs on the native VLAN of the trunk are
sent untagged to the reserved IEEE 802.1d spanning tree multicast MAC address (01-80-C2-0000-00). The BPDUs on all other VLANs on the trunk are sent tagged to the reserved Cisco Shared
Spanning Tree (SSTP) multicast MAC address (01-00-0c-cc-cc-cd).
www.braindumps.com
259
Non-Cisco 802.1Q switches maintain only
a single instance of spanning tree (the Mono Spanning
Because Cisco switches transmit BPDUs to the SSTP multicast MAC address on VLANs other
than the native VLAN of the trunk, non-Cisco switches do not recognize these frames as BPDUs
and flood them on all ports in the corresponding VLAN. Other Cisco switches connected to the
non-Cisco 802.1q cloud receive these flooded BPDUs. This allows Cisco switches to maintain a
per-VLAN spanning tree topology across a cloud of non-Cisco 802.1Q switches. The non-Cisco
802.1Q cloud separating the Cisco switches is treated as a single broadcast segment between all
switches connected to the non-Cisco 802.1q cloud through 802.1q trunks.
Make certain that the native VLAN is the same on all of the 802.1q trunks connecting the Cisco
switches to the non-Cisco 802.1q cloud.
If you are connecting multiple Cisco switches to a non-Cisco 802.1q cloud, all of the connections
must be through 802.1q trunks. You cannot connect Cisco switches to a non-Cisco 802.1q cloud
through ISL trunks or through access ports. Doing so causes the switch to place the ISL trunk port
or access port into the spanning tree "port inconsistent" state and no traffic will pass through the
port.
Reference: http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst6500/ios/122SX/configuration/guide/book/layer2.html#wp1027047
www.braindumps.com
261
Reference: http://www.cisco.com/c/en/us/td/docs/unified_computing/ucs/sw/cli/config/guide/21/b_UCSM_CLI_Configuration_Guide_2_1/b_UCSM_CLI_Configuration_Guide_2_1_chapter_011
01.html#concept_02B3BE130EA54738A97CB23D97198B78
www.braindumps.com
262
263
264
265
266
www.braindumps.com
267
268
269
www.braindumps.com
270
www.braindumps.com
271
272
www.braindumps.com
273
www.braindumps.com
274
Reference: https://www.cisco.com/c/en/us/products/collateral/interfaces-modules/servicesmodules/product_buletin_c25-563569.pdf
www.braindumps.com
275
www.braindumps.com
276
www.braindumps.com
277
www.braindumps.com
278
www.braindumps.com
279
Answer:
Explanation:
www.braindumps.com
280
B)
www.braindumps.com
281
C)
www.braindumps.com
282
D)
www.braindumps.com
283
A. Exhibit A
B. Exhibit B
C. Exhibit C
D. Exhibit D
Answer: A,C
Explanation:
284
285
286
www.braindumps.com
287
www.braindumps.com
288
www.braindumps.com
289
The servers in this network are connected to an A-B SAN design. What is required for hosts to
support a high-availability Fibre Channel connection to a storage controller?
A. Multipath drivers should be installed on all the servers.
B. Multipath drivers should be installed on the CNA of S1 and S3.
C. High availability for Fibre Channel is controlled by the storage controller, and there is no need
to add or make changes on the server side.
D. S1 and S3 require that multipath drivers are installed, but S2 does not.
E. Multipath drivers should be installed on all CNAs of all servers.
Answer: A
Explanation:
290
www.braindumps.com
291
www.braindumps.com
292
Which two options describe information that can be determined from this output? (Choose two.)
A. Interface eth1/5 is configured as an uplink.
B. Jumbo frames have been configured on the best-effort class.
C. Packets are being dropped on the interface.
D. PFC is disabled on the system.
E. The default CoS configuration is being used.
Answer: B,E
Explanation:
www.braindumps.com
293
Assuming that all blades are equipped with Cisco UCS VIC 1280 adapters, which two statements
can be confirmed from the output? (Choose two.)
A. The Cisco IOM model is a 2104XP.
B. The Cisco IOM model is a 2204XP.
C. The Cisco IOM model is a 2208XP.
D. Blades 3, 4, 5, and 8 are missing.
E. Blades 3, 4, 5, and 8 are not associated with a service profile.
F. Link Group Preference is set to Port Channel.
Answer: B,D
Explanation:
www.braindumps.com
294
Which two statements about the diagram are true? (Choose two.)
A. Cisco UCS Manager is set to FC switching mode.
B. Cisco UCS Manager is set to FC end-host mode.
C. The topology is not supported.
D. The uplinks from each FI can carry multiple VSANs.
E. The uplinks from each FI can carry a single VSAN only.
Answer: B,D
Explanation:
www.braindumps.com
295
www.braindumps.com
296
When you assign this disk policy to Server 1/1, it fails. Which option describes the reason for this
failure?
A. The RAID controller does not support single disk configurations.
B. Only RAID0 and RAID1 are supported.
C. The server is equipped with a local disk.
D. Protection is enabled on the existing disk.
Answer: C
Explanation:
www.braindumps.com
297
Which two things can be determined from the SEL log output? (Choose two.)
A. The server experienced a crash.
B. The server experienced correctable memory errors.
C. DIMMs in channel 2 are experiencing memory errors.
D. DIMMs in channel 0 are experiencing memory errors.
E. Memory errors have crossed two thresholds.
Answer: B,E
Explanation:
www.braindumps.com
298
www.braindumps.com
299
www.braindumps.com
300
301
www.braindumps.com
302
Explanation:
www.braindumps.com
303
Answer:
Explanation:
www.braindumps.com
304
www.braindumps.com
305
Answer:
Explanation:
www.braindumps.com
306
www.braindumps.com
307