Share your DCACI Experience

@malvina, did you managed to obtain the dumps

@spiks, no, unfortunately.

Who knows the correct answer?

Which endpoint learning operation is completed on the egress leaf switch when traffic is received from an L3Out?

A. The source MAC and IP address of the traffic is learned as a local endpoint.
B. The source MAC address of the traffic is learned as a remote endpoint.
C. No source MAC or IP address of the traffic is learned as a remote endpoint.
D. The source IP address of the traffic is learned as a remote endpoint.

guys, who have information or examples of new questions?

Friends who have a new drag and drop? I’ve heard of new d & d’s about radius configuration.

@Anonymous – Thanks
my congratulations on successfully passing the exam !

share the dump you used.

i passed my Exam, but 40% new Questions.

Many VMM Questions!

No Valid Dump!

@lucky which dump did you use?

Hi guys,
Do you know Provider sell reputable dumps?

A customer migrates a legacy environment to Cisco ACI. A Layer 2 trunk is configured to interconnect the two environments. The customer also builds ACI fabric in an application-centric mode. Which feature should be enabled in the bridge domain to reduce instability during the migration?

A. Set Multi-Destination Flooding to Flood in BD.
B. Enable Flood in Encapsulation.
C. Set Multi-Destination Flooding to Flood in Encapsulation.
D. Disable Endpoint Dataplane Learning

The Flood in Encapsulation option is used to limit flooding traffic inside the bridge domain to a single encapsulation. When two EPGs share the same bridge domain and Flood in Encapsulation is enabled, the EPG flooding traffic does not reach the other EPG. C looking better

i think better answer is C, not A.

new question:

Using EPG extension, an engineer has moved all endpoints in a VLAN into an ACI fabric. When he moves the default gateway from traditional switches into the fabric, he suddenly loses all connectivity to the endpoints from outside the fabric. Which of the following are possible reasons this has taken place? (Choose all that apply.)

a) The Layer 2 connection between ACI switches and non-ACI switches has been disconnected.
b) The bridge domain does not have an associated L3Out configured.
c) The subnet Scope parameter on the BD needs to be set to Advertised Externally.
d) No contracts have been associated with the EPG.

@Bigus, The answer to your query would be C and D.

A would not be correct as the connection would of been lost before the DFG was moved
B would not be correct as L3OUT is not required per BD

C is most likely correct as connections were ok when the DFG was advertised via the legacy network, but relocation to ACI caused the connection to drop suggesting the route is no longer advertised externally.
D would also be correct as failure to add the relevant contract or preferred Group member state would block all traffic external to an EPG.

thanks guys @spiks and @spikus, but maybe more B (The bridge domain does not have an associated L3Out configured)?

I found several questions on the Internet that I had not met before.
Perhaps these are new questions.

1. Using EPG extension, an engineer has moved all endpoints in a VLAN into an ACI fabric. When he moves the default gateway from traditional switches into the fabric, he suddenly loses all connectivity to the endpoints from outside the fabric. Which of the following are possible reasons this has taken place? (Choose all that apply.)

a) The Layer 2 connection between ACI switches and non-ACI switches has been disconnected.
b) The bridge domain does not have an associated L3Out configured.
c) The subnet Scope parameter on the BD needs to be set to Advertised Externally.
d) No contracts have been associated with the EPG.

02. Which statements are correct regarding ACI support for BFD?
(Choose all that apply.)
a) BFD is supported for EIGRP, OSPF, and BGP in ACI.
b) BFD is supported on L3Out loopback interfaces.
c) BFD is supported for BGP prefix peers (dynamic neighbors).
d) BFD is supported on routed interfaces, routed subinterfaces, and SVIs.

03. Out of the following switches, which are spine platforms that support ACI Multi-Site?
(Choose all that apply.)
a) Nexus 93180YC-EX
b) Nexus 9364C
c) Nexus 9736C-FX line card
d) Nexus 9396PX

04. A user needs full read-only visibility into an ACI fabric. Which predefined security domain can be used to enable such visibility?
a) common
b) all
c) infra
d) fabric

@Bigus

1. B, C, D. Once the default gateway moves into ACI, the Layer 2 connection is irrelevant. Therefore, A is incorrect. However, if the L3Out has not been associated with the BD (or EPG) or the subnet Scope parameter has not been set to Advertised Externally, the subnet is not advertised out of ACI. For this reason, B and C are correct. Another possible reason for the communication outage may be contracts. With EPG extension, it is not ACI but the traditional network switches that initially control access to the subnet. But when the default gateway moves into ACI, contracts govern communication with the EPGs. For this reason, D is also a correct answer.

2. A, D. BFD is not supported on BGP prefix peers and loopback addresses as of the time of writing. It is supported on non-loopback interfaces and all configurable routing protocols in ACI.

3. B, C. Nexus 93180YC-EX is a cloud-scale leaf switch. Nexus 9364C is a second-generation
spine and supports ACI Multi-Site. Nexus9736C-FX is a line card that can be populated into a Nexus 9500 Series spine and supports ACI Multi-Site. The Nexus9396PX is a first-generation leaf switch.

4. B
Several security domains are predefined:all, mgmt, and common. The predefined security domain all provides access to the entire ACI object hierarchy.

@Ven – are these real questions? Do you have any other questions?

new D&D about RADIUS configuration action with OOB

there are 6 option , only 4 need to be dragged in the correct order:

1)specify and set cisco apic connectivity preference to oob
2) create radius provider group
3) set cisco apic connectivity preference to oob
4) create login domain for radius
5) set cisco apic connectivity to inband
6) create the radius provider

Refer to the exhibit. An engineer configures the Cisco ACI fabric for VMM integration with ESXi servers that are to be connected to the ACI leaves. The server team requires the network switches to initiate the LACP negotiation as opposed to the servers. The LAG group consists of two 10 Gigabit Ethernet links. The server learn also wants to evenly distribute traffic across all available links. Which two enhanced LAG policies meet these requirements? (Choose two.)

A. LACP Mode: LACP Standby
B. LB Mode: Destination IP Address and TCP/UDP Port
C. LB Mode: Source and Destination MAC Address
D. LB Mode: Source IP Address and TCP/UDP Port
E. LACP Mode: LACP Active

i think better answer is E and C, but I’m not sure
Friends, what do you say?

Which new construct must a user create when configuring in-band management?

A. VLAN pool
B. management contract
C. management tenant
D. bridge domain

i think better answer is A, but I’m not sure
===================================
Refer to the exhibit. An engineer configures the Cisco ACI fabric for VMM integration with ESXi servers that are to be connected to the ACI leaves. The server team requires the network switches to initiate the LACP negotiation as opposed to the servers. The LAG group consists of two 10 Gigabit Ethernet links. The server learn also wants to evenly distribute traffic across all available links. Which two enhanced LAG policies meet these requirements? (Choose two.)

A. LACP Mode: LACP Standby
B. LB Mode: Destination IP Address and TCP/UDP Port
C. LB Mode: Source and Destination MAC Address
D. LB Mode: Source IP Address and TCP/UDP Port
E. LACP Mode: LACP Active

i think better answer is E and C, but I’m not sure

Friends, what do you say?

Refer to the exhibit. An engineer configures the Cisco ACI fabric for VMM integration with ESXi servers that are to be connected to the ACI leaves. The server team requires the network switches to initiate the LACP negotiation as opposed to the servers. The LAG group consists of two 10 Gigabit Ethernet links. The server learn also wants to evenly distribute traffic across all available links. Which two enhanced LAG policies meet these requirements? (Choose two.)

A. LACP Mode: LACP Standby
B. LB Mode: Destination IP Address and TCP/UDP Port
C. LB Mode: Source and Destination MAC Address
D. LB Mode: Source IP Address and TCP/UDP Port
E. LACP Mode: LACP Active

i think better answer is E and C, but I’m not sure
=========================

Which new construct must a user create when configuring in-band management?

A. VLAN pool
B. management contract
C. management tenant
D. bridge domain

i think better answer is A

Friends, what do you say?

Guys who can help with the correct answer? Who has any new information on the exam, who took it recently?

@Bigus

1. create the radius provider
2. create radius provider group
3. create login domain for radius
4. set cisco apic connectivity preference to oob

I am not sure for the fourth step.

actually that questions you asked, are from dcaci official cert guide “DO I KNOW THIS ALREADY?”QUIZ, this quiz is located in early of every chapter. I don’t think that’s the real exam questions.

Which description regarding the initial APIC cluster discovery process is true?
A. The APIC uses an internal IP address from a pool to communicate with the nodes.
B. Every switch is assigned a unique AV by the APIC.
C. The APIC discovers the IP address of the other APIC controllers by using Cisco Discovery Protocol.
D. The ACI fabric is discovered starting with the spine switches.

i think better answer is B

@Bigus

That D&D question show up on the exam.

My answer is: 6 2 4 3

Actually the previous question was from dcaci official cert guide and not in the exam

Answer for last question is A. The APIC uses an internal IP address from a pool to communicate with the nodes.

Many many new questions, around 34 new from total 61 questions, dump is 45% valid, new question about VMM, local and remote endpoint learning (many questions, make sure you understand the mechanism), some about MST integration, about BD attribute (unicast routing, arp flooding, L2 unknown unicast), backing up apic configuration with security settings, SG between 2 vrf and exporting contract between vrf, config ntp using oob, override interface policy between cdp and lldp, collect statistic of unicast and BUM traffic in epg, question about multisite multipod requirement, migrating vmkernel from vswitch to DVS, atribute in BD if integrating aci with existing network and the gateway still in existing (outside aci), where to check whether someone deleting the epg (audit logs), how to enable outside l3out network to communicate with internal aci subnet (define external prefix with external epg flag enabled), integration blade server with DVS (lacp/mac pinning), drag n drop: where to config vlan pool (apic), where to config vcenter domain (apic), where to config vcenter/vshield controller (ucs manager), where to verify dvs (vmware), what must be created to separate management policy and dataplane traffic (tenant), what feature need to enabled in aci leaf port to prevent looping outside fabric not impacting the fabric, SG template for multiple firewall and load balanced the traffic between multiple firewalls, how to configure MST in aci (STP interface policy), protocol for ISN, BGP RR

@DCACI – thanks

in drag n drop, i think better answer is:
where to config vlan pool (apic),
where to config vcenter domain (apic),
where to config vcenter/vshield controller (apic),
where to verify dvs (vmware),

in this guide (https://www.cisco.com/c/en/us/support/docs/cloud-systems-management/application-policy-infrastructure-controller-apic/118965-config-vmm-aci-ucs-00.html), no info about ucs manager

Bob1733 Apprentice
Members
22

Author

Posted 2 minutes ago

Guys, I really ask for help. my exam is coming soon. Suggest new questions. Tell me the right solution for D&D:

there are 6 option , only 4 need to be dragged in the correct order:

1)specify and set cisco apic connectivity preference to oob
2) create radius provider group
3) set cisco apic connectivity preference to oob
4) create login domain for radius
5) set cisco apic connectivity to inband
6) create the radius provider

what better answer: 6 2 4 3 or 3 6 2 4 ?
=====================================

Who can tell by D&D:

drag n drop:
where to config vlan pool,
where to config vcenter domain,
where to config vcenter/vshield controller ,
where to verify dvs,

passed 20 minutes ago in Croatia. about 7 new questions. The old questions is relevant + new questions were discussed here in the posts. Good luck to all!

hi everyone, dumps 79q still valid?

Hi everyone
I noticed that in dumps 79 there are a few wrong answers.
—
An engineer is extending an EPG out of the ACI fabric using static path binding. Which statement about the endpoints is true?

A. Endpoints must connect directly to the ACI leaf port.
B. External endpoints are in a different bridge domain than the endpoints in the fabric.
C. Endpoint learning encompasses the MAC address only.
D. External endpoints are in the same EPG as the directly attached endpoints.
Dumps: C correct
But my answer is D

A customer migrates a legacy environment to Cisco ACI. A Layer 2 trunk is configured to interconnect the two environments. The customer also builds ACI fabric in an application-centric mode. Which feature should be enabled in the bridge domain to reduce instability during the migration?

A. Set Multi-Destination Flooding to Flood in BD.
B. Enable Flood in Encapsulation.
C. Set Multi-Destination Flooding to Flood in Encapsulation.
D. Disable Endpoint Dataplane Learning
Dump: A correct
But my answer is C

Anybody have updated dumps please?

@Mr Siro – please read the comments in the page, 79q has lot of errors, you need to go thru cisco material to correct or else check examtopics site, folks have corrected the answer

Thank AdamR

Hey guys can anyone please share the link to download the dump or please send it to
apolloultra1 at dot gmail dot com

@Free File to All,

kindly please share what you used.

Hello everyone
Anyone have any updates?
I’m going to take an exam tomorrow

Hi everyone
today i passed exam
many new question, dump 79q valid 40%
I’ll try remember new question

I pass yesterday, 79q valid 40%

i’m mr Siro
yesterday, my exam have many newquestion
—
in drag n drop relate to VMM
where to config vlan pool (apic),
where to config vcenter domain (apic),
where to config vcenter/vshield controller (UCS),
where to verify dvs (Center),
——
there are 6 option , only 4 need to be dragged in the correct order:

1)specify and set cisco apic connectivity preference to oob
2) create radius provider group
3) set cisco apic connectivity preference to oob
4) create login domain for radius
5) set cisco apic connectivity to inband
6) create the radius provider

what better answer: 6 2 4 3 is correct

Hi Guys,
Any free dump please ?

Hi! I have failed the exam 300-620. From dumps was aboute 10 questions. My score is 735, 79q has many mistakes.

toponedumps and kashif boota are indian pakistani call center sc@mmers selling outdated dump.

Dumps have update
I have 111q

prep a way or pass leade r? which is better

111q is valid dump

@Anonymous

Can you share the 111q dump?

An engineer must advertise a selection of external networks learned from a BGP neighbor into the ACI
fabric. Which L3Out subnet configuration option creates an inbound route map for route filtering?
A. External Subnets for the External EPG
B. Shared Route Control Subnet
C. Import Route Control Subnet
D. Shared Security Import Subnet

An engineer must set up a Cisco ACI fabric to send Syslog messages related to hardware events, such as
chassis line card failures. The messages should be sent to a dedicated Syslog server. Where in the Cisco
APIC should the policy be configured to meet this requirement?
A. uni/tn-common/monepg-default
B. uni/infra/monifra-default
C. uni/fabric/monfab-default
D. uni/fabric/moncommon

An engineer must implement management policy and data plane separation in the Cisco ACI fabric. Which
ACI object must be created in Cisco APIC to accomplish this goal?
A. Application profile
B. Tenant
C. Contract
D. Bridge domain

An engineer wants to monitor all configuration changes, threshold crossing, and link-state transitions in a
Cisco ACI fabric. Which action must be taken to receive the required messages?
A. Add Faults and Events to the monitor policy.
B. Add Session Logs and Audit Logs to the monitor policy.
C. Include Audit Logs and Events in the Syslog source policy.
D. Include Events and Session Logs in the Syslog source policy.

An organization has encountered many STP-related issues in the past due to failed hardware components.
They are in the process of long-term migration to a newly deployed ACI fabric. Senior engineers are worried
that spanning-tree loops in the existing network may be extended to the ACI fabric. Which feature must be
B9670B295EC4724B7AC7AF37296A4809
enabled on the ACI leaf ports to protect the fabric from spanning-tree loops?
A. BPDU Guard
B. per-VLAN MCP
C. Storm Control
D. BPDU Filter

A network engineer must design a method to allow the Cisco ACI to redirect traffic to the firewalls. Only
traffic that matches specific L4-L7 policy rules should be redirected. The load must be distributed across
multiple firewalls to scale the performance horizontally. Which action must be taken to meet these
requirements?
A. Configure ACI Service Graph with Unidirectional PBR.
B. Implement ACI Service Graph with GIPo.
C. Implement ACI Service Graph Two Nodes with GIPo.
D. Configure ACI Service Graph with Symmetric PBR.

An engineer created two interface protocol policies called Pol_CDP40275332 and Pol_LLDP46783451. The
policies must be used together in a single policy. Which ACI object must be used?
A. interface policy group
B. switch policy group
C. switch profile
D. interface profile

A systems engineer is implementing the Cisco ACI fabric. However, the Server2
information is missing from the Leaf 101 endpoint table and the COOP database of the spine. The
requirement is for the bridge domain configuration to enforce the ACI fabric to forward the unicast packets
generated by Server1 destined to Server2. Which action must be taken to meet these requirements?
A. Enable ARP Flooding
B. Set L2 Unknown Unicast to Flood
C. Set IP Data-Plane Learning to No
D. Enable Unicast Routing

An engineer must allow multiple external networks to communicate with internal ACI subnets. Which action
should the engineer take to assign the prefix to the class ID of the external Endpoint Group?
B9670B295EC4724B7AC7AF37296A4809
A. Enable the Export Route Control Subnet for the External Endpoint Group flag.
B. Enable an L3Out with Shared Route Control Subnet.
C. Configure subnets with the External Subnets for External EPG flag enabled.
D. Configure subnets with the Import Route Control Subnet flag enabled.

An engineer must ensure that Cisco ACI flushes the appropriate endpoints when a topology change
notification message is received in an MST domain. Which three steps are required to accomplish this
goal? (Choose three.)
A. Enable the BPDU interface controls under the spanning tree interface policy.
B. Configure a new STP interface policy.
C. Bind the spanning tree policy to the switch policy group.
D. Associate the STP interface policy to the appropriate interface policy group.
E. Create a new region policy under the spanning tree policy.
F. Map VLAN range to MAT instance number.

A Cisco ACI bridge domain and VRF are configured with a default data-plane learning configuration. Which
two endpoint attributes are programmed in the leaf switch when receiving traffic? (Choose two.)
A. Remote MAC, IP
B. Remote Subnet
C. Local IP, not MAC
D. Local MAC, IP
E. Local Subnet
F. Remote IP

An engineer wants to initiate an ICMP ping from Server1 to Server2. The requirement
is for the BD1 to enforce ICMP replies that follow the expected path. The packets must be prevented from
taking the direct path from Leaf1 to Server1. Which action must be taken on BD1 to meet these
requirements?
A. Set L2 Unknown Unicast to Flood.
B. Set L2 Unknown Unicast to Hardware Proxy.
C. Disable Unicast Routing.
D. Enable ARP Flooding.

An engineer must configure a group of servers with a contract that uses TCP port 80. The EGP that
contains the web servers requires an external Layer 3 cloud to initiate communication. Which action must
be taken to meet these requirements?
A. Configure the EGP as a provider and L3 out as consumer of the contract.
B. Configure OSPF to exchange routes between the L3 out and EGP.
C. Configure a taboo contract and apply it to the EPG.
D. Configure the EPG as a consumer and L3 out as a provider of the contract.

The unicast routing feature is enabled on the bridge domain. Which two conditions enable the Cisco ACI
B9670B295EC4724B7AC7AF37296A4809
leaf to learn a source IP as a local endpoint? (Choose two.)
A. Through Ethernet traffic received in a bridge domain.
B. IP traffic routed through an SVI.
C. Through VXLAN traffic received on the uplink.
D. IP traffic routed through a Layer 3 Out.
E. Through ARP received on an SVI.

When does the Cisco ACI leaf learn a source IP or MAC as a remote endpoint?
A. When VXLAN traffic arrives on a leaf fabric port from the spine and outer source IP is in the Layer 3 Out
EPG subnet range.
B. When VXLAN traffic arrives on a leaf fabric port from the spine and outer source IP is in the bridge
domain subnets range.
C. When VXLAN traffic arrives on a leaf fabric port from the spine and inner source IP is in the Layer 3 Out
EPG subnet range.
D. When VXLAN traffic arrives on a leaf fabric port from the spine and inner source IP is in the bridge
domain subnets range.

The company ESXi infrastructure is hosted on the Cisco UCS-B Blade Servers. The company decided to
take advantage of ACI VMM integration to enable consistent enforcement of policies across virtual and
physical workloads. The requirement is to prevent the packet loss between the distributed virtual switch and
the ACI fabric. Which setting must be implemented on a vSwitch policy to accomplish this goal?
A. Static Channel
B. MAC Pinning
C. LACP
D. LLDP

An engineer is configuring ACI VMM domain integration with Cisco UCS-B Series. Which type of port
channel policy must be configured in the vSwitch policy?
A. LACP Active
B. MAC Pinning
C. LACP Passive
D. MAC Pinning-Physical-NIC-load

In-band is currently configured and used to manage the Cisco ACI fabric. The requirement is for leaf and
spine switches to use out-of-band management for NTP protocol. Which action accomplishes this goal?
A. Select Out-of-Band as Management EPG in the default DateTimePolicy.
B. Create an Override Policy with NTP Out-of-Band for leaf and spine switches.
C. Change the interface used for APIC external connectivity to ooband.
D. Add a new filter to the utilized Out-of-Band-Contract to allow NTP protocol.

An administrator must migrate the vSphere Management VMkernel of all ESXi hosts in the production
cluster from the standard default virtual switch to a VDS that is integrated with APIC in a VMM domain.
Which action must be completed in this scenario?
A. The Management VMkernel EPG resolution must be set to Pre-Provosion.
B. The administrator must create an in-band VMM Management EPG before performing the migration.
C. The administrator must set the Management VMkernel BD resolution immediacy to On-Demand.
D. The VMkernel Management BD must be located under the Management Tenant.

A customer implements RBAC on a Cisco APIC using a Windows RADIUS server that is configured with
network control policies. The APIC is as follows:
Tenant = TenantX
Security Domain = Tenantx-SD
User = X
The customer requires User X to have access to TenantX only, without any extra privilege in the Cisco ACI
fabric domain. Which Cisco AV pair must be implemented on the RADIUS server to meet these
requirement?
A. shell:domains = TenantX-SD/fabric-admin/,common//read-all
B. shell:domains = TenantX-SD/tenant-admin
B9670B295EC4724B7AC7AF37296A4809
C. shell:domains = TenantX-SD/tenant-ext-admin/,common//read-all
D. shell:domains = TenantX-SD/tenant-admin/,common//read-all

An engineer must create a backup of the Cisco ACI fabric for disaster recovery purposes. The backup must
be transferred over a secure and encrypted transport. The backup file must contain all user and password
related information. The engineer also wants to process and confirm the backup file validity by using a
Python script. This requires the data structure to have a format similar to a Python dictionary. Which
configuration set must be used to meet these requirements?
A. Under the Create Remote location settings, select Protocol: FTP
Under the Export policy, select
– Format: XML
– Modify Global AES Encryption Settings: Enabled
B. Under the Create Remote location settings, select Protocol: FTP
Under the Export policy, select
– Format: XML
– Modify Global AES Encryption Settings: Disabled
C. Under the Create Remote location settings, select Protocol: SCP
Under the Export policy, select
– Format: JSON
– Modify Global AES Encryption Settings: Disabled
D. Under the Create Remote location settings, select Protocol: SCP
Under the Export policy, select
– Format: JSON
– Modify Global AES Encryption Settings: Enabled

An application team tells the Cisco ACI network administrator that it wants to monitor the statistics of the
unicast and BUM traffic that are seen in a certain EPG. Which statement describes the collection statistics?
A. All EPGs in the Cisco ACI tenant object must be enabled for statistics to be collected.
B. Cisco ACI does not capture statistics at the EPG level. Only statistics that pass through ACI contracts
can be monitored.
C. EPG statistics can be collected only for VMM domains. If a physical domain exists, statistics are not
collected.
D. The collection of statistics is enabled on the EPG level by enabling the statistics for unicast and BUM
traffic.

Which routing protocol is supported between Cisco ACI spines and IPNs in a Cisco ACI Multi-Pod
environment?
A. OSPF
B. IS-IS
C. BGP
D. EIGRP

An engineer must deploy Cisco ACI across 10 geographically separated data centers. Which ACI site
deployment feature enables the engineer to control which bridge domains contain Layer 2 flooding?
A. GOLF
B. Multi-Site
C. Multi-Pod
D. Stretched Fabric

Any body want 111q pack?