Cisco (300-415-ENSDWI) Exam Questions And Answers page 18
An administrator must configure an ACL for traffic coming in from the service-side VPN on a specific WAN Edge device with circuit ID 123456789. Which policy must be used to configure this ACL?
central data policy
app-aware policy
central control policy
SD-WAN Architecture and Design
SD-WAN Deployment and Migration
In a Cisco SD-WAN network, which component is responsible for distributing route and policy information via the OMP?
vManage
vSmart Controller
vBond Orchestrator
WAN Edge Router
SD-WAN Architecture and Design
SD-WAN Policies and QoS
What is a default protocol for control plane connection?
IPsec
DTLS
TLS
HTTPS
SD-WAN Architecture and Design
SD-WAN Deployment and Migration
Refer to the exhibit. Which configuration change is needed to configure the tloc-extension on Branch1-Edge1?
SD-WAN Architecture and Design
An engineer must improve video quality by limiting HTTP traffic to the Internet without any failover. Which configuration in vManage achieves this goal?
SD-WAN Architecture and Design
SD-WAN Policies and QoS
Which device information is required on PNP/ZTP to support the zero touch onboarding process?
serial and chassis numbers
interface IP address
public DNS entry
system IP address
SD-WAN Deployment and Migration
SD-WAN Deployment and Configuration
Refer to the exhibit. The network administrator has configured a centralized topology policy that results in the displayed routing table at a branch office. Which two configurations are verified by the output? (Choose two.)
The default route is configured locally.
This routing table is from a cEdge router.
The configured policy is adding a route tag of 300 to learned routes.
The default route is learned via OMP.
The routing table is for the transport VPN.
SD-WAN Architecture and Design
SD-WAN Management and Monitoring
Refer to the exhibit. The network administrator has configured a centralized topology policy that results in the displayed routing table at a branch office. Which two configurations are verified by the output? (Choose two.)
The default route is configured locally.
This routing table is from a cEdge router.
The configured policy is adding a route tag of 300 to learned routes.
The default route is learned via OMP.
The routing table is for the transport VPN.
SD-WAN Architecture and Design
SD-WAN Management and Monitoring
A Cisco SD-WAN customer has a requirement to calculate the SHA value for files as they pass through the device to see the returned disposition and determine if the file is good, unknown, or malicious. The customer also wants to perform real-time traffic analysis and generate alerts when threats are detected. Which two Cisco SD-WAN solutions meet the requirements? (Choose two.)
Cisco Threat Grid
Cisco Trust Anchor Module
Cisco AMP
Cisco Secure Endpoint
Cisco Snort IPS
SD-WAN Security and Authentication
SD-WAN Operations and Troubleshooting
Refer to the exhibit. Which command allows traffic through the IPsec tunnel configured in VPN 0?
service netsvc1 vpn1
service netsvc1 address 1.1.1.1
service FW address 1.1.1.1
service local
SD-WAN Security and Authentication
SD-WAN Deployment and Configuration
Comments