Cisco
CompTIA
ISC
EC-Council
EXIN
Fortinet
ITIL
Juniper
Microsoft
VMware
Avaya
SAP
Google
NVIDIA
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk
ServiceNow
All Vendors
  2. Home
  3. Exams
  4. Cisco
  5. 300-620

Cisco 300-620 Exam Questions
Implementing Cisco Application Centric Infrastructure (DCACI) (Page 7 )

Updated On: 17-Feb-2026
Page 7 of 60
PDF with 368 Questions

DRAG DROP (Drag and Drop is not supported)
Refer to the exhibit. A Cisco ACI fabric is newly deployed, and the security team requires more visibility of all inter EPG traffic flows. All traffic in a VRF must be forwarded to an existing firewall pair. During failover, the standby firewall must continue to use the same IP and MAC as the primary firewall. Drag and drop the steps from the left into the implementation order on the right to configure the service graph that meets the requirements. (Not all steps are used.)
Select and Place:

  1. See Explanation section for answer.

Answer(s): A

Explanation:


Reference:

https://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/3-x/L4-L7_services_deployment/3_2_1/b_L4L7_Deploy_321/ b_L4L7_Deploy_321_chapter_01001.html



An engineer is extending an EPG out of the ACI fabric using static path binding. Which statement about the endpoints is true?

  1. Endpoints must connect directly to the ACI leaf port.
  2. External endpoints are in a different bridge domain than the endpoints in the fabric.
  3. Endpoint learning encompasses the MAC address only.
  4. External endpoints are in the same EPG as the directly attached endpoints.

Answer(s): D



Which setting prevents the learning of Endpoint IP addresses whose subnet does not match the bridge domain subnet?

  1. "Limit IP learning to network" setting within the bridge domain.
  2. "Limit IP learning to subnet" setting within the EPG.
  3. "Limit IP learning to network" setting within the EPG.
  4. "Limit IP learning to subnet" setting within the bridge domain.

Answer(s): D


Reference:

https://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/2-x/L2_config/b_Cisco_APIC_Layer_2_Configuration_Guide/ b_Cisco_APIC_Layer_2_Configuration_Guide_chapter_010.html



Which endpoint learning operation is completed on the egress leaf switch when traffic is received from an L3Out?

  1. The source MAC and IP address of the traffic is learned as a local endpoint.
  2. The source MAC address of the traffic is learned as a remote endpoint.
  3. No source MAC or IP address of the traffic is learned as a remote endpoint.
  4. The source IP address of the traffic is learned as a remote endpoint.

Answer(s): C



Refer to the exhibit. Which two objects are created as a result of the configuration? (Choose two.)

  1. application profile
  2. attachable AEP
  3. bridge domain
  4. endpoint group
  5. VRF

Answer(s): C,E


Reference:

https://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/2-x/rest_cfg/2_1_x/b_Cisco_APIC_REST_API_Configuration_Guide/ b_Cisco_APIC_REST_API_Configuration_Guide_chapter_01110.html






Post your Comments and Discuss Cisco 300-620 exam dumps with other Community members:

Join the 300-620 Discussion