Spring Sale Limited Time 75% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code = simple75

Pass the Cisco CCNP Enterprise 300-415 Questions and answers with Dumpstech

Home
Cisco
CCNP Enterprise
300-415
300-415 Questions and Answers

Exam 300-415 Premium Access

View all detail and faqs for the 300-415 exam

Go to Exam

Practice at least 50% of the questions to maximize your chances of passing.

Viewing page 2 out of 14 pages

Viewing questions 11-20 out of questions

Questions # 11:

Which vBond system configuration under VPN 0 allows for a routable public IP address even if the DNS name, hostname, or IP address of the vBond orchestrator are omitted?

Options:

local

vbond-only

dns-name

WAN

Answer

Questions # 12:

An engineer configures policing with a rate of 125 Bps and a burst rate of 8000 bits, as shown here:

Question # 12

Which configuration completes this task?

Options:

Configure 125 for rate and 1000 for burst.

Configure 1000 for rate and 64000 for burst

Configure 125 for rate and 8000 for burst

Configure 1000 for rate and 1000 for burst

Answer

Questions # 13:

Which two features does the application firewall provide? (Choose two.)

Options:

classification of 1400+ layer 7 applications

blocks traffic by application or application-family

numbered sequences of match-action pairs

classification of 1000+ layer 4 applications

application match parameters

Answer

A, B

Questions # 14:

When a WAN Edge device joins the SD-WAN overlay, which Cisco SD-WAN components orchestrates the connection between the WAN Edge device and a vSmart controller?

Options:

vManage

vBond

OMP

APIC-EM

Answer

Questions # 15:

Which controller is excluded from the process of checking against the authorized, allowed list?

Options:

vBond

PnP

vSmart

vManage

Answer

Questions # 16:

Question # 16

Refer to the exhibit. An ongineer configured OMP with an ovorlay-as of 10666. What is tho AS-PATH for prefix 104.104.104.104/32 on R1007?

Options:

100 10666 104

100 10666

100 10666 20 104

100 20 104

Answer

Questions # 17:

Which on-the-box security feature supported by the Cisco ISR 4451 SD-WAN device and not on vEdge?

Options:

Cloud Express service

Enterprise Firewall with Application Awareness

reverse proxy

IPsec/GRE cloud proxy

Answer

Explanation

https://www.cisco.com/c/en/us/products/collateral/software/one-wan-subscription/guide-c07-740642.html#Step2SoftwareType

Questions # 18:

Refer to the exhibit.

Question # 18

The WAN Edge router at the data centers does not use NAT and has been configured with color restriction. Which color configuration needs to be associated to the WAN Edge router's VPN 0 interface to bring up the data plane tunnels?

Options:

Configure the WAN interface as a public-internet color.

Configure the WAN interface as a private1 color with restriction.

Configure the WAN interface as a TLOC-Extended private1 color.

Configure the WAN interface as a TLOC-Extended public-internet color.

Answer

Explanation

This scenario involves a WAN Edge router sitting behind a separate NAT device.

Public vs. Private Colors: In Cisco SD-WAN, "Public" colors (like public-internet, gold, silver) signal to the software that the TLOC might be subject to NAT and needs to use STUN to discover its public-facing IP/Port. "Private" colors assume no NAT is present.

NAT Traversal: Because there is a NAT router between the WAN Edge and the Internet ISP, the WAN Edge must use a public color so that it correctly initiates NAT traversal and allows remote sites to reach it via the NATed public address.

Color Restriction: With restriction enabled, the device will only form tunnels with other devices using the same color. Since the path leads to the "Internet ISP," a public-internet color is the standard and necessary configuration to establish these data plane tunnels.

Questions # 19:

Question # 19

Refer to the exhibit Which NAT types must the engineer configure for the vEdge router to bring up the data plane tunnels?

Options:

Enable Full Cone NAT on the vEdge interface

Use public color on the TLOC

Use private color on the TLOC

Enable Symmetric MAT on the vEdge interface

Answer

Questions # 20:

How is the software managed in Cisco SD-WAN?

Options:

Software images must be uploaded to vManage through HTTP or FTP

Software downgrades are unsupported for vManage

Software images must be transferred through VPN 512 or VPN 0 of vManage

Software upgrade operation in the group must include vManage. vBond, and vSmart.

Answer

Viewing page 2 out of 14 pages

Viewing questions 11-20 out of questions

Modal title

Registered Required

In order to participate in the comments you need to be logged-in.
You can sign-up or login (it's free).