600-511 - Designing with Cisco Network Programmability for ACI
Go back to Cisco
For which ACI constructs are health scores calculated?
Which description of OpFlex is true?
an open and extensible policy protocol for transferring policy between a network policy controller and any device
Before you design an ACI fabric, it is important to understand existing application interactions. If you do not understand them entirely, which approach can you use?
Design a classic routing configuration in which everybody can talk to anybody as the equivalent to a contract called "anyany" that all EPGs provide and consume.
Which ACI construct provides the policy-based definition that comprises the communication, performance, and security needs of an application?
application network profile
Which statement about designing a migration approach of an existing Data Center network to Cisco ACI is true?
Simplify the migration by associating every EPG to a VLAN.
Which statement about the programming model and APIs available to automate network functions within ACI is true?
You can perform a CLI-based configuration from your desktop to the controller using cURL.
Which statement about a whitelist security model is true?
Permit specific traffic flows, and deny any other traffic.
Which method does ACI fabric dynamic load balancing use to provide optimal balancing of flows across the fabric?
Flows are dynamically allocated according to hop-by-hop congestion in the fabric.
Which type of ACI switch provides Layer 3 connections to outside networks?
border leaf devices
The use of the Cisco Bi-Di 40G transceiver provides cost effective transition to a 40G ACI fabric through transmission over which cabling plant?
single pair of OM3/OM4 MM fiber
In which two ways are EPGs defined? (Choose two.)
static binding with a port
external routing adjacency
Which two constructs make up a security policy within the Cisco APIC? (Choose two.)
Which option is an ideal environment in which to deploy ACI?
disaster recovery site
Which two options are two provisions of ACI for security? (Choose two.)
ACI provides a stateless whitelist approach for all traffic in the fabric.
ACI allows for easy integration of external stateful physical and virtual security devices into the fabric.
Which two types of data formats are supported by the RESTful APIs? (Choose two.)
Which two options are two intended uses of Layer 3-External in the ACI fabric? (Choose two.)
to provide connectivity to external networks
to advertise a default gateway into the ACI fabric
Which two options are components of a device package? (Choose two.)
A session is authenticated to make API calls via the REST API of the Cisco APIC. Which option is the default token timeout for that session?
Which option does the Cisco ACI fabric use to support management automation, programmatic policy, and dynamic "workload-anywhere" models?
closely coupled policy-based control systems and software
Which two benefits of ACI help improve the time required to deploy an application? (Choose two.)
enabling software developers to create development environments similar to production
evolving the IT model from manual workflows to an application model that automates deployment, operations, and visibility
Which network devices should be connected to the spine?
Which statement about OpenStack and ACI is true?
Integration can leverage a Cisco APIC plug-in or a Group Policy plug-in.
Which two ACI features assist with application service-level assurance? (Choose two.)
tenant health scores
fabric health scores
Which two methods to scale bandwidth and capacity enable capacity planning and scaling in the ACI fabric? (Choose two.)
Scale-out spine nodes for bandwidth.
Scale-out leaf nodes for capacity.
Which statement about the infrastructure requirements for an ACI fabric is true?
Leaf and spine switches can connect at 40 Gbps with multimode fiber by using the Cisco 40 Gbps short-reach bidirectional QSFP optics modules, which do not require new cabling.
Which option is for migrating an existing Data Center network to Cisco ACI?
First connect the core (for example, Cisco ASR 9000 Router or Cisco Nexus 7000 Series Switches) to the ACI fabric that supports external connectivity routing mechanisms (OSPF NSSA, iBGP, and static routes).
When building a contract, what is the function of a filter?
classification of traffic
Which statement about bridge domains is true?
Applications that require Layer 2 flooding should use one bridge domain per subnet.
In an ACI topology, what is the minimum required number of Cisco APICs?
Which overlay protocol does Cisco AVS for vSphere use to allow the ACI fabric to extend over an existing network infrastructure?
Which two options are benefits of the ACI fabric beyond forwarding traffic from physical and virtual servers? (Choose two.)
zero-touch provisioning of fabric switches
applying policy independently of forwarding
You want to satisfy the business, risk, and customer requirements. Which option is a consideration when you select and design an ACI fabric?
the requirement for a central point of management, but no centralized control plane
OpenStack integration with the Cisco APIC is provided through a plug-in to which OpenStack Project?
If flowlet switching and dynamic flow prioritization are enabled, which two statements about ACI fabric load balancing are true? (Choose two.)
A flowlet is a subset of a TCP/UDP flow that is composed of packets that are part of the same bursts of packets.
The first few identified flowlets of a TCP/UDP flow are treated with a higher priority than the last flowlet of the same TCP/UDP flow.
When designing an ACI fabric for a VMWare environment, which two options are supported vSwitch options? (Choose two.)
Where should network services be placed in an ACI fabric?
Which two benefits are achieved through database sharding within the Cisco APIC cluster? (Choose two.)
What is the purpose of the mgmt tenant?
used for in-band and out-of-band Cisco APIC to switch node communication, nonroutable outside the fabric
You have an application named "E_commerce" in tenant "Production", which is composed of three tiers of servers (web, app, and DB). Each tier sits in a different EPG (epgWeb, epgApp, and epgDB). Which action should be performed first to measure the performance or packet loss of this application?
Configure a troubleshooting policy for on-demand atomic counters for epgWeb-to-epgApp traffic and epgApp-to-epgDB traffic.