Architecture

Question 1

data center network topology that consists of two switching layers—a spine and leaf. The leaf layer consists of access switches that aggregate traffic from servers and connect directly into the spine or network core. Spine switches interconnect all leaf switches in a full-mesh topology.

Answer 1

Spine-Leaf Architecture

Question 2

cisco defines 3 layers of hierarchy, the core,distribution, and access each with specific function

Answer 2

3-Tier Architecture

Question 3

It’s also known as collapsed core design because it’s only 2 layers. In this the distribution layer is merged with the core layer.

Answer 3

2-Tier Architecture

Question 4

Access layer is commonly referred to as

Answer 4

Network edge

Question 5

relies on switch clustering such as a virtual switching system (VSS) and stacking technologies such as StackWise, in which multiple physical switches act as a single logical switch

Answer 5

Simplified Campus Design

Question 6

is an alternative configuration in which Layer 3 is extended all the way to the access layer switches.

Answer 6

Layer 3 Access Layer (router access)

Question 7

Traditional LAN designs use a Layer 2 access layer and a Layer 3 distribution layer. The distribution layer is the Layer 3 IP gateway for access layer hosts.

Answer 7

Layer 2 Access Layer (STP Based)

Question 8

is a hop redundancy protocol that is designed to provide redundancy to the gateway router within the organization’s network by the use of a virtual IP address and virtual MAC address

Answer 8

First Hop Redundancy Protocol (FHRP)

Question 9

is a Cisco-proprietary router redundancy protocol that enables a cluster of routers to cooperate, and all routers are willing to be a default router. All the routers within the cluster will have the same virtual IP address and virtual mac address.

Answer 9

Hot-Standby Router Protocol (HSRP)

Question 10

is the process of mirroring information between RPs (route processor). This checkpoints Layer 2 protocol states and line card operation.It designates one of the RPs as the active RP and the other as the standby RP, and it also fully instantiates the standby RP and then synchronizes critical state information between the RP

Answer 10

Stateful Switchover Operation (SSO)

Question 11

The number of time the signal makes one complete up and down cycle in 1 second

Answer 11

Frequency

Question 12

also commonly referred as the network edge, is where end-user devices
or endpoints connect to the network.

Answer 12

Access Layer

Question 13

Aggregate access layer switches in a given building or campus. Provides boundary between the layer 2 domain of access layer and layer 3 domain of core layer.

Answer 13

Distribution layer

Question 14

the backbone and
aggregation point for multiple networks and provides scalability, high availability, and fast
convergence to the network.

Answer 14

Core Layer

Question 15

HSRP V1 vs V2

Answer 15

V1 - 256 Group
V1 - Mac 0000.0C07.AC.XX
V1 - Multicast 224.0.0.2
V2 - 4096 Group
V2 - Mac 0000.0C9F-FXXX
V2 - Multicast 224.0.0.102

Question 16

VRRP

Answer 16

Similar to HSRP
Preempt is enabled by Default
Can use same IP
Mac 0000.5e01.00XX
Mcast 224.0.0.18

Question 17

is a Cisco proprietary solution for load balancing and redundancy in an IP network

Answer 17

GLBP
Mcast Address - 224.0.0.102
Mac - 0007.B40x.xxyy

Question 18

allows for the forwarding of data packets to continue along known routes while the routing protocol information is being restored following a switchover.

Answer 18

NSF (Non-stop forwarding)

Question 19

is an ARP Response that was not prompted by an ARP Request. sent as a broadcast, as a way for a node to announce or update its IP to MAC mapping to the entire network.

Answer 19

Gratuitous Arp

Question 20

Stand-alone wireless deployment.

Answer 20

Autonomous Wireless Deployment

Question 21

Wireless Deployment where AP loses its Basic service sets (BSS) for wireless users. It joins WLC to become a fully functional

Answer 21

Lightweight AP

Question 22

Wireless Deployment Design consideration

Answer 22

Capacity
Coverage

Question 23

Cisco Platform to integrate Real-time location services (RTLS)

Answer 23

Cisco Prime Infrastructure
DNA Centre
Cisco Mobile Experiences (CMX)
Cisco Mobility Services Engine (MSE)

Question 24

where each mapped area is influenced by an RF calibration template that more closely resembles the actual signal attenuation expe- rienced by the APs and clients.

Answer 24

RF Fingerprinting

Question 25

Which WLC deployment allow dropping of traffic through local switch

Answer 25

Branch and cloud wireless deployment

Question 26

What wireless overlap are recommended for 1. Data and 2. Voice and Video

Answer 26

1. 20% for Data
2. 35% for Voice and Video

Question 27

5 Characteristics of Cloud Computing according to NIST

Answer 27

1. On demand self-service
2. Broad network access
3. Resource pooling (multitenancy)
4. Rapid Elasticity
5. Metered services

Question 28

Cloud Service Models

Answer 28

Infrastructure as a Services (IAAS)
Platform as a Services (PAAS)
Software as a Services (SAAS)

Question 29

Cloud Deployment models

Answer 29

Public
Private
Hybrid
Community

Question 30

the automation tool from Cisco that can be used for the automation of several datacenter tasks.

Answer 30

UCS Director

Question 31

is an architecture designed to make a network more flexible and easier to manage. centralizes management by abstracting the control plane from the data forwarding function in the discrete networking devices.

Answer 31

Cisco SDN (Software Define Networking)

Question 32

Cisco SD-WAN component

Answer 32

1.VManage (configuraition-use RestAPI)
2. VSmart (control plane - push policy)
3. VEdge (Edge routers)
4. VBond (OOB Orchestrator )

Question 33

provides a mechanism to install, manipulate, and delete the configuration of network devices. It uses an Extensible Markup Language (XML)-based data encoding for the configuration data as well as the protocol messages.

Answer 33

Netconf

Question 34

is an architectural style for an application program interface (API) that uses HTTP requests to access and use data. That data can be used to GET, PUT, POST and DELETE data types, which refers to the reading, updating, creating and deleting of operations concerning resources.

Answer 34

RestAPI

Question 35

is an all-in-one TCP-based protocol, similar to BGP, that establishes and maintains the SD-WAN control plane

Answer 35

Cisco Overlay Management Protocol (OMP)

Question 36

the software or hardware routers at your sites and responsible for the data plane of the SD-WAN. connect to a vSmart controller through a Datagram Transport Layer Security (DTLS) connection.

Answer 36

vEdge

Question 37

is the term used to refer to edge routers of a Cisco SD-WAN implementation. They are the same type of entity as the vEdge but they run an IOS XE SD-WAN software image as opposed to a Viptela operating system (ViptelaOS)

Answer 37

cEdge

Question 38

this is a controller for your network, it is responsible for managing all control and data policies by using special Overlay Management Protocol (OMP)

Answer 38

vSmart

Question 39

is a software module that authenticates the Cisco vSmart Controllers and the edge routers in the overlay network and coordinates connectivity between them. It must have a public IP address so that all Cisco vEdge devices in the network can connect to it

Answer 39

vBond

Question 40

is a single pane of glass network management system (NMS) GUI that is used to configure and manage the full SD-WAN solution. It enables centralized provisioning and simplifies network changes.

Answer 40

vManage

Question 41

a feature that allows a WAN Edge router to communicate over the WAN transport connected to the adjacent WAN Edge router through a TLOC-extension interface

Answer 41

TLOC Extension

Question 42

is a type of data processing that inspects in detail the data being sent over a computer network, and may take actions such as alerting, blocking, re-routing, or logging it accordingly

Answer 42

DPI (Deep Packet Inspection)

Question 43

allows the solution to recognize applications and/or traffic flows and set preferred paths throughout the network to serve them appropriately according to their application requirements.

Answer 43

Application Aware Routing (AAR)

Question 44

is a set of capabilities that extend the Cisco SD-WAN overlay fabric to a public cloud instance. is designed to automate the connectivity to IaaS workloads and most importantly to provide visibility into the cloud.

Answer 44

Cloud on Ramp for IaaS

Question 45

is a set of Cisco SD-WAN capabilities designed to address the challenges that Software-as-a-Service applications impose on the wide-area network.

Answer 45

Cloud on Ramp for SasS

Question 46

is a cloud-based analytics service for Cisco SD-WAN offering comprehensive insights into application and network performance. License required

Answer 46

Cisco vAnalytics

Question 47

measures the quality of a cloud SaaS application connection on a scale of 0 to 10, 0 being the worst and 10 being the best quality.

Answer 47

vQoE (Viptela Quality of Experience)

Question 48

is an architecture designed to make a network more flexible and easier to manage. centralizes management by abstracting the control plane from the data forwarding function in the discrete networking devices.

Answer 48

SDN (Software Defined-Network)

Question 49

is the network management and command center for Cisco DNA, your intent-based network for the enterprise. Provision and configure all your network devices in minutes. Use advanced artificial intelligence (AI) and machine learning (ML) to proactively monitor, troubleshoot, and optimize your network.

Answer 49

Cisco DNA Centre

Question 50

Software Define Architecture Four Basic Layer

Answer 50

1. Physical Layer
2. Network Layer
3. Controller Layer [DNA Centre]
4. Management Layer

Question 51

provides onboarding and mobility services for wired users and devices (including fabric-enabled WLCs and APs) connected to the fabric. It is a LISP tunnel router (xTR) that also provides the anycast gateway, endpoint authentication, and assignment to overlay host pools (static or DHCP), as well as group-based policy enforcement (for traffic to fabric endpoints).

Answer 51

Fabric Edge Node

Question 52

is a LISP map server/resolver (MS/MR) with enhanced functions for SD-Access, such as fabric wireless and SGT mapping. It maintains a simple host tracking database to map EIDs to RLOCs.

Answer 52

Fabric Control Plane Node

Question 53

are LISP proxy tunnel routers (PxTRs) that connect external Layer 3 networks to the SD-Access fabric and translate reachability and policy information, such as VRF and SGT information, from one domain to another.

Answer 53

Fabric Border Nodes

Question 54

connects APs and wireless endpoints to the SD-Access fabric. The WLC is external to the fabric and connects to the SD-Access fabric through an internal border node.

Answer 54

Fabric Wireless Controller

Question 55

This is a subsystem integrated directly into Cisco DNA Center that provides all the underlay and fabric automation and orchestra- tion services for the physical and network layers.

Answer 55

Cisco Network Control Platform (NCP)

Question 56

is a data collection and analytics and assurance subsystem that is integrated directly into Cisco DNA Center.

Answer 56

Cisco Network Data Platform (NDP)

Question 57

provide all the identity and policy services for the physical layer and network layer.provides network access control (NAC) and identity services for dynamic endpoint-to-group mapping and policy definition in a variety of ways, including using 802.1x, MAC Authentication Bypass (MAB), and Web Authentication (WebAuth).

Answer 57

Cisco ISE (Identify Service Engine)

Question 58

4 Steps Workflow in DNA Centre Management

Answer 58

1. Design
2. Policy
3. Provision
4. Assurance

Question 59

is routing architecture that provides new semantics for IP addressing. The current IP routing and addressing architecture uses a single numbering space, the IP address, to express two pieces of information:

-Device identity
-The way the device attaches to the network

Answer 59

LISP (Location Identifier Separation Protocol)

Question 60

an encapsulation protocol that provides data center connectivity using tunneling to stretch Layer 2 connections over an underlying Layer 3 network

Answer 60

VXLAN

Question 61

an umbrella term for security improvements to Cisco network devices based on the capability to strongly identify users, hosts and network devices within a network. provides topology independent and scalable access controls by uniquely classifying data traffic for a particular role.

Answer 61

Cisco TrustSec

Question 62

uses machine learning on an application to determine the flow characteristics such as malware analysis and crypto audit. Based on the flow-record associated with flow-monitor, the switch creates an exporter template that shows NetFlow records with derived collect fields.

Answer 62

ETA (Encrypted Traffic Analytics)