• Home
  • Blogs
  • Pass 500-490 Exam Latest Practice Questions Updated on Jul 21, 2024 [Q17-Q34]

Pass 500-490 Exam Latest Practice Questions Updated on Jul 21, 2024 [Q17-Q34]

Share

Pass 500-490 Exam Latest Practice Questions Updated on Jul 21, 2024

Cisco 500-490 Study Guide Archives 

NEW QUESTION # 17
Which protocol runs between the vSmart controllers and between the vSmart controllers and the vEdge routers, and unifies all control plane functions under a single: protocol umbrella1?

  • A. BGP
  • B. OSPF
  • C. VRRP
  • D. IKE

Answer: C


NEW QUESTION # 18
Which two options help you sell Cisco ISE? (Choose two.)

  • A. Explaining ISE support for 3rd party network devices
  • B. Discussing (he importance of custom profiling
  • C. Referring to Trust Sec as being only supported on Cisco networks
  • D. Downplaying the value of px Grid as compared to REST ful APIs
  • E. Show casing the entire ISE feature set

Answer: A,C


NEW QUESTION # 19
Which two statements are true regarding CiscoISE?(Choose two.)

  • A. In distributed deployments, failover from primary to secondary Policy Administration Nodes happens automatically.
  • B. The number of logs that ISE can retain is determined by your disk space.
  • C. In two-node standalone ISE deployments, failover must be done manually.
  • D. ISE can detected endpoints whose addresses have been translated via NAT.
  • E. ISE supports up to 100 Policy Services Nodes.
  • F. ISE supports IPv6 downloadable ACLs.

Answer: C,D


NEW QUESTION # 20
Which is a function of the Proactive Insights feature of Cisco DNA Center Assurance?

  • A. generating synthetic traffic to perform tests that raise awareness of potential network issues
  • B. enabling you to quickly view all of the contextual information related to a single user
  • C. enabling you to see the complete path of packets from the client to the end application
  • D. pointing out where the most serious issues are happening in the network

Answer: A


NEW QUESTION # 21
Which two options help you sell Cisco ISE? (Choose two.)

  • A. Explaining ISE support for 3rd party network devices
  • B. Discussing (he importance of custom profiling
  • C. Downplaying the value of px Grid as compared to REST ful APIs
  • D. Show casing the entire ISE feature set
  • E. Referring to Trust Sec as being only supported on Cisco networks

Answer: A,D


NEW QUESTION # 22
Which two activities should occur during an SE's demo process? (Choose two.)

  • A. leveraging a company such as Complete Communications to build a financial case.
  • B. determining whether the customer would like to drive deeper during a follow up
  • C. asking the customer to provide network drawings or white board the environment for you
  • D. identifying which capabilities require demonstration
  • E. highlighting opportunities that although not currently within scope would result in lower operational costs and complexity

Answer: D,E


NEW QUESTION # 23
Which are the three focus areas for reinventing the WAN? (Choose three.)

  • A. Secure Elastic Connectivity
  • B. Operations
  • C. Cloud First
  • D. Centralized device authentication
  • E. Application Quality of Experience
  • F. Execution

Answer: A,C,E


NEW QUESTION # 24
Which two activities should occur during an SE's discovery process? (Choose two.)

  • A. Mapping Cisco innovation to customer 's needs
  • B. Working with the customer to develop a reference architecture
  • C. Referencing the PPDIOO model to effectively facilitate the discussion
  • D. Establishing credibility with the customer
  • E. Gathering information about the current state of the customer 's network environment

Answer: A,E

Explanation:
Explanation
The discovery process is a critical phase in the sales cycle, where the SE gathers information about the customer's network environment, business goals, challenges, and needs. The discovery process helps the SE to understand the customer's pain points, identify opportunities, and propose solutions that align with the customer's objectives and address their problems. The discovery process also helps the SE to establish credibility, trust, and rapport with the customer, and to map Cisco innovation to the customer's needs.
Some of the activities that should occur during the SE's discovery process are:
Gathering information about the current state of the customer's network environment. This includes collecting data about the network topology, devices, protocols, applications, performance, security, availability, scalability, and management. The SE can use various tools and methods to gather this information, such as interviews, questionnaires, surveys, audits, assessments, and network analysis tools. Gathering information about the current state helps the SE to understand the customer's existing network capabilities, limitations, and gaps, and to benchmark the network against best practices and industry standards12 Mapping Cisco innovation to the customer's needs. This involves identifying how Cisco products, solutions, and services can help the customer achieve their desired outcomes, address their challenges, and overcome their pain points. The SE can use various tools and methods to map Cisco innovation to the customer's needs, such as value proposition, business case, return on investment (ROI) analysis, proof of value (POV), proof of concept (POC), and demonstrations. Mapping Cisco innovation to the customer's needs helps the SE to show the value and benefits of Cisco solutions, differentiate Cisco from competitors, and influence the customer's decision making34 References:
1: Cisco Discovery Service 2: Cisco Network Assessment Services 3: Cisco Catalyst SD-WAN Demos 4:
Cisco Business Critical Services


NEW QUESTION # 25
Which two statements describes Cisco SD-Access? (Choose two.)

  • A. an automated encryption/decryption engine for highly secured transport requirements
  • B. a collection of tools and applications that are a combination of loose and tight couping
  • C. an overlay for the wired infrastructure in which traffic is tunneled via a GRE tunnel to a mobility controller for policy and application visibility
  • D. programmable overlays enabling network virtualization across the campus
  • E. software-defined segmentation and policy enforcement based on user identity and group membership

Answer: D,E

Explanation:
Explanation
Cisco SD-Access is a solution within Cisco DNA, which is built on intent-based networking principles. Cisco SD-Access provides visibility-based, automated end-to-end segmentation to separate user, device, and application traffic without redesigning the underlying physical network1. Cisco SD-Access also enables programmable overlays that allow network virtualization across the campus, branch, data center, and cloud2. Cisco SD-Access has two main components: the fabric and the policy3.
The fabric is the network overlay that consists of interconnected nodes that provide a consistent and scalable way of delivering network services and functions. The fabric nodes are classified into four types: edge nodes, border nodes, control plane nodes, and intermediate nodes. The edge nodes are the access switches or wireless controllers that connect to the end devices. The border nodes are the routers or switches that connect the fabric to external networks, such as the Internet, WAN, or data center. The control plane nodes are the routers or switches that maintain the mapping between the endpoint identifiers and the network locators. The intermediate nodes are the routers or switches that provide transit services within the fabric3.
The policy is the network configuration that defines the network behavior and outcomes, based on the business intent and requirements. The policy is composed of three elements: the endpoint groups, the contracts, and the virtual networks. The endpoint groups are the logical containers that group the endpoints based on their attributes, such as user identity, device type, or application. The contracts are the rules that specify the allowed interactions between the endpoint groups, such as the protocols, ports, and quality of service. The virtual networks are the logical partitions that isolate the endpoint groups and contracts from each other, based on the network scope and security3.
Cisco SD-Access addresses the following challenges and benefits:
It simplifies the network design and management, as it reduces the complexity and variability of the network elements and interfaces.
It enhances the network security and compliance, as it enforces granular and dynamic policies based on the endpoint identity and context, rather than the network topology and IP addresses.
It improves the network performance and user experience, as it optimizes the network path, load balancing, and traffic engineering based on the network conditions and application requirements.
It enables the network agility and scalability, as it supports the rapid deployment and integration of new devices, applications, and services, without affecting the existing network operations.
References:
Cisco Software-Defined Access - Cisco Software-Defined Access Solution Overview What Is Software-Defined Access? - SD-Access - Cisco Cisco SD-Access Architecture Overview


NEW QUESTION # 26
Which protocol runs between the vSmart controllers and between the vSmart controllers and the vEdge routers, and unifies all control plane functions under a single protocol umbrella?

  • A. BGP
  • B. VRRP
  • C. OMP
  • D. OSPF
  • E. IKE

Answer: C

Explanation:
Explanation
The protocol that runs between the vSmart controllers and between the vSmart controllers and the vEdge routers, and unifies all control plane functions under a single protocol umbrella is the Overlay Management Protocol (OMP)12. OMP is a proprietary protocol that is designed to enable the Cisco SD-WAN solution, which provides a software overlay that runs over standard network transport, including MPLS, broadband, and internet to deliver applications and services3. OMP provides the following services12:
Orchestration of overlay network communication, including connectivity among network sites, service chaining, and VPN or VRF topologies Distribution of service-level routing information and related location mappings Distribution of data plane security parameters Central control and distribution of routing policy OMP is an all-encompassing information management and distribution protocol that enables the overlay network by separating services from transport. Services provided in a typical VPN setting are usually located within a VPN domain, and they are protected so that they are not visible outside the VPN. In such a traditional architecture, it is a challenge to extend VPN domains and service connectivity. OMP addresses these scalability challenges by providing an efficient way to manage service traffic based on the location of logical transport end points. This method extends the data plane and control plane separation concept from within routers to across the network2.
References:
1: Routing Configuration Guide for vEdge Routers, Cisco SD-WAN Release 20.x - Unicast Overlay Routing 2: Introduction to Overlay Management Protocol in Viptela 3: Cisco SD-WAN vEdge vManage vSmart IBM


NEW QUESTION # 27
Which component of the SD Access fabric is responsible for communicating with networks that are external to the fabric?

  • A. edge nodes
  • B. intermediate nodes
  • C. border-nodes
  • D. control plane nodes

Answer: C

Explanation:
Explanation
https://www.cisco.com/c/dam/en/us/td/docs/solutions/CVD/Campus/CVD-Software-Defined-Access-Design-Guide-2018AUG.pdf
https://www.cisco.com/c/dam/en/us/td/docs/solutions/CVD/Campus/CVD-Software-Defined-Access-Design-Gu


NEW QUESTION # 28
Which two statements are true regarding SD-WAN demonstrations? (Choose two.)

  • A. During a demo you should consider the target audience and the desired outcome
  • B. Use demonstrations primarily for large opportunities and competitive situations
  • C. There is a big difference between demos that use a top down approach and demos that use a bottom up approach
  • D. As a Cisco SD-WAN SF, you should you should spend your time learning about the technology rather than contributing to demo innovation
  • E. During a demo, you should demonstrate and discuss what the team considers important details

Answer: B,D


NEW QUESTION # 29
Which protocol runs between the vSmart controllers and between the vSmart controllers and the vEdge routers, and unifies all control plane functions under a single protocol umbrella?

  • A. BGP
  • B. VRRP
  • C. OMP
  • D. OSPF
  • E. IKE

Answer: C


NEW QUESTION # 30
What are the three foundational elements required for the new operational paradigm? (Choose three.)

  • A. fabric
  • B. application QoS
  • C. policy-based automated provisioning of network
  • D. centralization
  • E. assurance
  • F. multiple technologies at multiple OSI layers

Answer: A,C,E

Explanation:
Explanation
The new operational paradigm is a way of designing, deploying, and managing networks that leverages the power of intent-based networking. Intent-based networking is a network architecture that aligns the network with the business goals and policies, and uses artificial intelligence and automation to translate the intent into network configurations and actions. The new operational paradigm requires three foundational elements:
Fabric: A fabric is a network topology that consists of interconnected nodes that provide a consistent and scalable way of delivering network services and functions. A fabric can span across multiple domains, such as campus, branch, data center, and cloud, and can support multiple protocols, such as IP, Ethernet, MPLS, and VXLAN. A fabric enables the network to operate as a single entity, rather than a collection of disparate devices and links. A fabric also simplifies the network design and management, as it reduces the complexity and variability of the network elements and interfaces.
Assurance: Assurance is the process of continuously monitoring, verifying, and optimizing the network performance and behavior, based on the defined intent and policies. Assurance uses telemetry, analytics, and machine learning to collect and process data from the network devices and applications, and to provide insights and recommendations for network optimization and troubleshooting. Assurance also enables the network to self-heal and self-optimize, by applying corrective actions and adjustments to the network configurations and policies, based on the feedback loop from the data and analytics.
Policy-based automated provisioning of network: Policy-based automated provisioning of network is the process of applying the intent and policies to the network devices and services, using automation and orchestration tools. Policy-based automated provisioning of network abstracts the network complexity and heterogeneity, and allows the network operators to define the network requirements and outcomes in a high-level and declarative way, rather than specifying the low-level and imperative commands and parameters. Policy-based automated provisioning of network also enables the network to be agile and adaptive, as it can dynamically adjust the network configurations and policies, based on the changing network conditions and business needs.
References:
Cisco Intent-Based Networking
Cisco Digital Network Architecture
Cisco Routed Optical Networking
Cisco Operational Insights: A New Way of Seeing Operations


NEW QUESTION # 31
Which is a function of lite Proactive Insights feature of Cisco DNA Center Assurance'?

  • A. enabling you to quickly view all of the contextual information related to the end application
  • B. enabling you to see the complete path of packets from the client to the end application
  • C. pointing out where the most serious issues are happening in the network
  • D. generating synthetic traffic to perform tests that raise awareness of potential network issues

Answer: B


NEW QUESTION # 32
Which component of the SD-Access fabric is responsible for communicating with networks that are external to the fabric?

  • A. border nodes
  • B. edge nodes
  • C. intermediate nodes
  • D. control plane nodes

Answer: A


NEW QUESTION # 33
Which two options are primary functions of Cisco ISE? (Choose two.)

  • A. allocating resources
  • B. automatically enabling, disabling, or reducing allocated power to certain devices
  • C. providing information about every device that touches the network
  • D. enforcing endpoint compliance with network security policies
  • E. enabling WAN deployment over any type of connection
  • F. providing VPN access for any type of device

Answer: C,D


NEW QUESTION # 34
......


To prepare for the Cisco 500-490 exam, candidates can choose from a variety of study materials, including official Cisco training courses, study guides, and practice exams. These resources are designed to help candidates gain a deep understanding of the topics covered in the exam and develop the skills needed to pass the exam.

 

500-490 Questions Prepare with Learning Information: https://www.lead1pass.com/Cisco/500-490-practice-exam-dumps.html

Download 500-490 Mock Test Study Material: https://drive.google.com/open?id=1IsdUKycFzT2UKriSEMm9IRCCFxi4d5WJ

Related Blogs

more
Cisco 500-490 Certification Practice Exam