1. Home
  2. Cisco
  3. 600-511

Designing with Cisco Network Programmability for ACI

Exam Details

  • Exam Code
    :600-511
  • Exam Name
    :Designing with Cisco Network Programmability for ACI
  • Certification
    :Cisco Certifications
  • Vendor
    :Cisco
  • Total Questions
    :60 Q&As
  • Last Updated
    :Mar 23, 2025

Cisco Cisco Certifications 600-511 Questions & Answers

  • Question 21:

    Which two constructs make up a security policy within the Cisco APIC? (Choose two.)

    A. bridge domain

    B. contracts

    C. virtual route forwarders

    D. endpoint groups

    E. filters

  • Question 22:

    Which two statements about server connectivity in ACI are true? (Choose two.)

    A. Unicast traffic from servers in the same EPG is not permitted unless a specific contract allows it.

    B. Unicast traffic from servers in a different EPG is not permitted unless a specific contract allows it.

    C. Unicast traffic from servers in a different EPG is not permitted unless both EPGs are in the same bridge domain.

    D. Multicast traffic from servers in the same EPG is not permitted unless a specific contract allows it.

    E. Multicast traffic from servers in the different EPG is not permitted unless a specific contract allows it.

    F. Multicast traffic from servers in a different EPG is not permitted unless both EPGs are in the same bridge domain.

  • Question 23:

    You have an application named "E_commerce" in tenant "Production", which is composed of three tiers of servers (web, app, and DB). Each tier sits in a different EPG (epgWeb, epgApp, and epgDB). Which action should be performed first to measure the performance or packet loss of this application?

    A. Check the health score of the application profile "E_commerce".

    B. Check the faults of the application profile "E_commerce".

    C. Configure a troubleshooting policy for on-demand atomic counters for epgWeb-to-epgApp traffic and epgApp-to-epgDB traffic.

    D. Configure a monitoring policy for each of the EPGs of the "E_commerce" application.

  • Question 24:

    If flowlet switching and dynamic flow prioritization are enabled, which two statements about ACI fabric load balancing are true? (Choose two.)

    A. A flowlet is a subset of a TCP/UDP flow that is composed of packets that are part of the same bursts of packets.

    B. A flowlet is a subset of a TCP/UDP flow that is composed of packets of approximately the same size (64 bytes to 127 is flowlet 1, 128 to 255 is flowlet 2, ...).

    C. The first few identified flowlets of a TCP/UDP flow are treated with a higher priority than the last flowlet of the same TCP/UDP flow.

    D. Each flowlet of a TCP/UDP flow is treated with same priority and takes the same path to avoid out-oforder packets.

    E. The egress leaf reorders out-of-order packets when flowlet switching is used.

  • Question 25:

    Which three options are the primary benefits of a leaf-spine architecture? (Choose three.)

    A. linear scalability

    B. robust multipathing

    C. use of Rapid PVST

    D. deterministic latency

    E. increased scalability of the proxy database

    F. 1.5:1 oversubscribed ports

    G. best suited for integration into an access/aggregation/core topology

  • Question 26:

    Which three features or protocols can be used to integrate ACI into existing management tools? (Choose three.)

    A. SNMP

    B. RESTful APIs

    C. Syslog

    D. OSPF

    E. CallHome

    F. BGP

    G. RSPAN

  • Question 27:

    Which statement about OpenStack and ACI is true?

    A. Integration can leverage a Cisco APIC plug-in or a Group Policy plug-in.

    B. The Nova ML2 plug-in maps APIs into the ACI policy model.

    C. The Cisco APIC driver communicates northbound using the OpFlex plug-in.

    D. The Cisco APIC driver is used in place of an OVS driver to communicate to the virtual machine managers.

  • Question 28:

    Which three elements of the ACI fabric contribute to zero-touch deployment capability? (Choose three.)

    A. centralized controller for policy, bootstrap, and image management

    B. topology auto discovery, automated configuration, and infrastructure addressing

    C. loose wiring validation

    D. support for iBGP confederations

    E. NX-API and NETCONF protocol interfaces

    F. orchestration using Visore

  • Question 29:

    Which description of OpFlex is true?

    A. a proprietary protocol that is used for communication between ACI spine and leaf switches

    B. a Cisco protocol that is used between third-party orchestration tools and Cisco APIC

    C. an open and extensible policy protocol for transferring policy between a network policy controller and any device

    D. an open protocol that is used between virtual machine managers and ACI leaf switches to transfer VXLAN-encapsulated packets

  • Question 30:

    For which ACI constructs are health scores calculated?

    A. bridge domains

    B. service graphs

    C. contracts

    D. filters

    E. service device clusters

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Cisco exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 600-511 exam preparations and Cisco certification application, do not hesitate to visit our Vcedump.com to find your solutions here.