Cisco CCNP Data Center 642-997 Exam questions and answers: 642-997 DCUFI

Welcome to Pass4cert! Share 40 of the latest valid Cisco CCNP Data Center 642-997 exam dumps and 642-997 pdf online download for free!
Guaranteed Upgrade Skills! Easily pass the 642-997 exam to get 642-997 Certificate: https://www.pass4itsure.com/642-997.html (q&as:123)

[PDF]Free Cisco CCNP Data Center 642-997 pdf dumps download from Google Drive: https://drive.google.com/open?id=1eIjf3v99pqLI863mPvDCWlmITjKbBxeX

[PDF]Free Full Cisco pdf dumps download from Google Drive: https://drive.google.com/drive/folders/1dq6fv9FX6zSDDoHc3ge-WzVU9SNaUbsH

Retired Certification Exams – Cisco: https://www.cisco.com/c/en/us/training-events/training-certifications/exams/retired.html

Latest effective Cisco CCNP Data Center 642-997 Exam Practice Tests

QUESTION 1
Refer to the command below. When configuring an SVS connection on the Cisco Nexus 5000 Series Switch, which device is being referenced as the remote IP address?
nexus5500-2(config-svs-conn)# remote ip address 10.10.1.15 port 80 vrf management
A. ESX or ESXi host
B. vCenter
C. vPC peer switch
D. Cisco IMC management
Correct Answer: B
Explanation
Explanation/Reference:
This command specifies the hostname or IP address for the vCenter Server. Optionally, specifies the port number and VRF.
Reference:
http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus5500/sw/layer2/6x/b_5500 _Layer2_Config_6x/b_5500_Layer2_Config_602N12_chapter_010000.html

QUESTION 2
Which two statements about Cisco Nexus 7000 line cards are true? (Choose two.)
A. M1, M2, and F1 cards are allowed in the same VDC.
B. M line cards are service-oriented and likely face the access layer and provide Layer 2 connectivity.
C. F line cards are performance-oriented and likely connect northbound to the core layer for Layer 3 connectivity.
D. M line cards support Layer 2, Layer 3, and Layer 4 with large forwarding tables and a rich feature set.
E. The F2 line card must reside in the admin VDC.
Correct Answer: AD
Explanation
Explanation/Reference:
Cisco is introducing a new line card called as F3 Module which has rich feature set and offers high performance 40G/100G port density to the Nexus 7000 product family. Cisco also introduced a new feature in NX-OS 6.2(2) where the F2e
line card can be in the same VDC as M1 or M2 Line Card. The objective of this session is to cover detailed steps and methodology of migrating Nexus 7000 with VDC types prior to NX-OS 6.2 to the newer F3 or M/F2e VDC types. The
session also covers the effect of VDC migration with commonly used Network features, firewall and load balancer services. M-Series XL modules support larger forwarding tables. M-Series modules are frequently required at network core,
peering, and aggregation points. When used with the F1-Series, the M-Series modules provide inter-VLAN services and form a pool of Layer 3 resources for the system.
Reference: https://www.ciscolive2014.com/connect/sessionDetail.ww?SESSION_ID=2244
And http://www.cisco.com/c/en/us/td/docs/solutions/Enterprise/Data_Center/VMDC/2- 6/vmdctechwp.html

QUESTION 3
Which protocol is the foundation for unified fabric as implemented in Cisco NX-OS?
A. Fibre Channel
B. Data Center Bridging
C. Fibre Channel over Ethernet
D. N proxy virtualization
E. N Port identifier virtualization
Correct Answer: C
Explanation
Explanation/Reference:
Fibre Channel over Ethernet (FCoE) is one of the major components of a Unified Fabric. FCoE is a new technology developed by Cisco that is standardized in the Fibre Channel Backbone 5 (FC-BB-5) working group of Technical Committee
T11 of the International Committee for Information Technology Standards (INCITS). Most large data centers have huge installed bases of Fibre Channel and want a technology that maintains the Fibre Channel model. FCoE assumes a
lossless Ethernet, in which frames are never dropped (as in Fibre Channel) and that therefore does not use IP and TCP. Reference: http://www.cisco.com/c/en/us/products/collateral/switches/nexus-5000-series- switches/white_paper_c11-
495142.html

QUESTION 4
By default it will take 10 seconds for authentication to fail due to an unresponsive RADIUS server before a Cisco Nexus series switch reverts to another RADIUS server or local authentication. What is one efficient way to improve the reaction
time to a RADIUS server failure?
A. Decrease the global RADIUS retransmission count to 1.
B. Decrease the global RADIUS timeout interval to 5 seconds.
C. Configure the RADIUS retransmission count and timeout interval per server, versus globally.
D. Configure per server a test idle timer, along with a username and password.
Correct Answer: D
Explanation
Explanation/Reference:
You can monitor the availability of RADIUS servers. These parameters include the username and password to use for the server and an idle timer. The idle timer specifies the interval during which a RADIUS server receives no requests
before the Nexus 5000 Series switch sends out a test packet. You can configure this option to test servers periodically. The test idle timer specifies the interval during which a RADIUS server receives no requests before the Nexus 5000
Series switch sends out a test packet. The default idle timer value is 0 minutes. When the idle time interval is 0 minutes, the Nexus 5000 Series switch does not perform periodic RADIUS server monitoring.
Reference:
http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus5000/sw/configuration/guid e/cli_rel_4_0_1a/CLIConfigurationGuide/sec_radius.html

QUESTION 5
Which statement about the Layer 3 card on the Cisco Nexus 5500 Series Switch is true?
A. BGP support is not provided, but RIP, EIGRP, and OSPF support is provided.
B. Up to two 4-port cards are supported with up to 160 Gb/s of Layer 3 forwarding capability.
C. Up to 16 FEX connections are supported.
D. Port channels cannot be configured as Layer 3 interfaces.
Correct Answer: C
Explanation
Explanation/Reference:
From the Cisco NX-OS 5.1(3)N1(1) release and later releases, each Cisco Nexus 5500 Series device can manage and support up to 24 FEXs without Layer 3. With Layer 3, the number of FEXs supported per Cisco Nexus 5500 Series device
is 8. With Enhanced vPC and a dual-homed FEX topology each FEX is managed by both Cisco Nexus 5000 Series devices. As a result, one pair of Cisco Nexus 5500 Series devices can support up to 24 FEXs and 16 FEXs for Layer 2 and
Layer 3.
Reference:
http://www.cisco.com/en/US/docs/switches/datacenter/nexus5000/sw/mkt_ops_guides/513 _n1_1/n5k_enhanced_vpc.html

QUESTION 6
Which statement about RADIUS configuration distribution using Cisco Fabric Services on a Cisco Nexus 7000 Series Switch is true?
A. Cisco Fabric Services does not distribute the RADIUS server group configuration or server and global keys.
B. Enabling Cisco Fabric Services causes the existing RADIUS configuration on your Cisco NX-OS device to be immediately distributed.
C. When the RADIUS configuration is being simultaneously changed on more than one device in a Cisco Fabric Services region, the most recent changes will take precedence.
D. Only the Cisco NX-OS device with the lowest IP address in the Cisco Fabric Services region can lock the RADIUS configuration.
Correct Answer: A
Explanation
Explanation/Reference:
CFS does not distribute the RADIUS server group configuration or server and global keys. The keys are unique to the Cisco NX-OS device and are not shared with other Cisco NX- OS devices.
Reference: http://www.cisco.com/c/en/us/td/docs/switches/datacenter/sw/6_x/nx- os/security/configuration/guide/b_Cisco_Nexus_7000_NX- OS_Security_Configuration_Guide__Release_6-x/b_Cisco_Nexus_7000_NX-
OS_Security_Configuration_Guide__Release_6-x_chapter_0101.html

QUESTION 7
Which three items must be configured in the port profile client in Cisco UCS Manager? (Choose three.)
A. port profile
B. DVS
C. data center
D. folder
E. vCenter IP address
F. VM port group
Correct Answer: BCD
ExplanationExplanation/Reference:
After associating an ESX host to a DVS, you can migrate existing VMs from the vSwitch to the DVS, and you can create VMs to use the DVS instead of the vSwitch. With the hardware-based VN-Link implementation, when a VM uses the
DVS, all VM traffic passes through the DVS and ASIC-based switching is performed by the fabric interconnect. In Cisco UCS Manager, DVSes are organized in the following hierarchy:
vCenter
Folder (optional)
Datacenter
Folder (required)
DVS
At the top of the hierarchy is the vCenter, which represents a VMware vCenter instance. Each vCenter contains one or more datacenters, and optionally vCenter folders with which you can organize the datacenters. Each datacenter contains
one or more required datacenter folders. Datacenter folders contain the DVSes.
Reference:
http://www.cisco.com/c/en/us/td/docs/unified_computing/ucs/sw/gui/config/guide/1-3- 1/b_UCSM_GUI_Configuration_Guide_1_3_1/UCSM_GUI_Configuration_Guide_1_3_1_c hapter28.html

QUESTION 8
Which statement about SNMP support on Cisco Nexus switches is true?
A. Cisco NX-OS only supports SNMP over IPv4.
B. Cisco NX-OS supports one instance of the SNMP per VDC.
C. SNMP is not VRF-aware.
D. SNMP requires the LAN_ENTERPRISE_SERVICES_PKG license.
E. Only users belonging to the network operator RBAC role can assign SNMP groups.
Correct Answer: B
Explanation
Explanation/Reference:
Cisco NX-OS supports one instance of the SNMP per virtual device context (VDC). By default, Cisco NX-OS places you in the default VDC. SNMP supports multiple MIB module instances and maps them to logical network entities. SNMP is
also VRF aware. You can configure SNMP to use a particular VRF to reach the SNMP notification host receiver. You can also configure SNMP to filter notifications to an SNMP host receiver based on the VRF where the notification occurred.
Reference: http://www.cisco.com/c/en/us/td/docs/switches/datacenter/sw/5_x/nx- os/system_management/configuration/guide/sm_nx_os_cg/sm_9snmp.html

QUESTION 9
Which statement explains why a Cisco UCS 6200 Fabric Interconnect that is configured in end-host mode is beneficial to the unified fabric network?
A. There is support for multiple (power of 2) uplinks.
B. Upstream Layer 2 disjoint networks will remain separated.
C. The 6200 can connect directly via vPC to a Layer 3 aggregation device.
D. STP is not required on the uplink ports from the 6200.
Correct Answer: D
Explanation
Explanation/Reference:
In Cisco Unified Computing System environments, two Ethernet switching modes determine the way that the fabric interconnects behave as switching devices between the servers and the network. In end-host mode, the fabric interconnects
appear to the upstream devices as end hosts with multiple links. In end-host mode, the switch does not run Spanning Tree Protocol and avoids loops by following a set of rules for traffic forwarding. In switch mode, the switch runs Spanning
Tree Protocol to avoid loops, and broadcast and multicast packets are handled in the traditional way.
http://www.cisco.com/c/en/us/solutions/collateral/data-center-virtualization/unified- computing/whitepaper_c11-701962.html

QUESTION 10
Which GLBP load-balancing algorithm ensures that a client is always mapped to the same VMAC address?
A. vmac-weighted
B. dedicated-vmac-mode
C. shortest-path and weighting
D. host-dependent
Correct Answer: D
Explanation
Explanation/Reference:
Host dependent–GLBP uses the MAC address of the host to determine which virtual MAC address to direct the host to use. This algorithm guarantees that a host gets the same virtual MAC address if the number of virtual forwarders does not
change.
Reference: http://www.cisco.com/c/en/us/td/docs/switches/datacenter/sw/5_x/nx- os/unicast/configuration/guide/l3_cli_nxos/l3_glbp.html

QUESTION 11
On a Cisco Nexus 7000 Series router, which statement about HSRP and VRRP is true?
A. When VDCs are in use, only VRRP is supported.
B. HSRP and VRRP both use the same multicast IP address with different port numbers.
C. HSRP has shorter default hold and hello times.
D. The VRRP group IP address can be the same as the router-specific IP address.
Correct Answer: D
Explanation
Explanation/Reference:
VRRP allows for transparent failover at the first-hop IP router by configuring a group of routers to share a virtual IP address. VRRP selects a master router in that group to handle all packets for the virtual IP address. The remaining routers are
in standby and take over if the master router fails.
Reference: http://www.cisco.com/c/en/us/td/docs/switches/datacenter/sw/5_x/nx- os/unicast/configuration/guide/l3_cli_nxos/l3_vrrp.html

QUESTION 12
After enabling strong, reversible 128-bit Advanced Encryption Standard password type-6 encryption on a Cisco Nexus 7000, which command would convert existing plain or weakly encrypted passwords to type-6 encrypted passwords?
A. switch# key config-key ascii
B. switch(config)# feature password encryption aes
C. switch# encryption re-encrypt obfuscated
D. switch# encryption decrypt type6
Correct Answer: C
Explanation
Explanation/Reference:
This command converts existing plain or weakly encrypted passwords to type-6 encrypted passwords.
Reference: http://www.cisco.com/c/en/us/td/docs/switches/datacenter/sw/5_x/nx- os/security/configuration/guide/b_Cisco_Nexus_7000_NX- OS_Security_Configuration_Guide__Release_5-x/b_Cisco_Nexus_7000_NX-
OS_Security_Configuration_Guide__Release_5-x_chapter_010101.html

QUESTION 13
Which statement about implementation of Cisco TrustSec on Cisco Nexus 5546 or 5548 switches are true?
A. Cisco TrustSec support varies depending on Cisco Nexus 5500 Series Switch model.
B. The hardware is not able to support MACsec switch-port-level encryption based on IEEE 802.1AE.
C. The maximum number of RBACL TCAM user configurable entries is 128k.
D. The SGT Exchange Protocol must use the management (mgmt 0) interface.
Correct Answer: B
Explanation
Explanation/Reference:
Reference: https://scadahacker.com/library/Documents/Manuals/Cisco%20- %20TrustSec%20Solution%20Overview.pdf

QUESTION 14
How is a dynamic vNIC allocated?
A. Dynamic vNICs are assigned to VMs in vCenter.
B. Dynamic vNICs can only be bound to the service profile through an updating template.
C. Dynamic vNICs are bound directly to a service profile.
D. Dynamic vNICs are assigned by binding a port profile to the service profile.
Correct Answer: C
Explanation
Explanation/Reference:
The dynamic vNIC connection policy determines how the connectivity between VMs and dynamic vNICs is configured. This policy is required for Cisco UCS domains that include servers with VIC adapters on which you have installed VMs andconfigured dynamic vNICs. Each dynamic vNIC connection policy includes an Ethernet adapter policy and designates the number of vNICs that can be configured for any server associated with a service profile that includes the policy.
For VM-FEX that has all ports on a blade in standard mode, you need to use the VMware adapter policy.
For VM-FEX that has at least one port on a blade in high-performance mode, use the VMwarePassThrough adapter policy or create a custom policy. If you need to create a custom policy, the resources provisioned need to equal the resource
requirements of the guest OS that needs the most resources and for which you will be using high-performance mode.
Reference:
http://www.cisco.com/c/en/us/td/docs/unified_computing/ucs/sw/vm_fex/vmware/gui/config _guide/b_GUI_VMware_VM-FEX_UCSM_Configuration_Guide/b_GUI_VMware_VM- FEX_UCSM_Configuration_Guide_chapter_010.html

QUESTION 15
In the dynamic vNIC creation wizard, why are choices for Protection important?
A. They allow reserve vNICs to be allocated out of the spares pool.
B. They enable hardware-based failover.
C. They select the primary fabric association for dynamic vNICs.
D. They allow dynamic vNICs to be reserved for fabric failover.
Correct Answer: C
Explanation
Explanation/Reference:
Number of Dynamic vNICs ?This is the number of vNICs that will be available for dynamic assignment to VMs. Remember that the VIC has a limit to the number of vNICs that it can support and this is based on the number of uplinks between
the IOM and the FI. At least this is the case with the 2104 IOM and the M81KR VIC, which supports ((# IOM Links * 15) ?2)). Also remember that your ESXi server will already have a number of vNICs used for other traffic such as Mgmt,
vMotion, storage, etc, and that these count against the limit.
Adapter Policy ?This determines the vNIC adapter config (HW queue config, TCP offload, etc) and you must select VMWarePassThru to support VM-FEX in High Performance mode.
Protection ?This determines the initial placement of the vNICs, either all of them are placed on fabric A or Fabric B or they are alternated between the two fabrics if you just select the “Protected” option. Failover is always enabled on these
vNICs and there is no way to disable the protection.
Reference: http://infrastructureadventures.com/2011/10/09/deploying-cisco-ucs-vm-fex-for- vsphere-%E2%80%93-part-2-ucsm-config-and-vmware-integration/

QUESTION 16
Which statement about RBAC user roles on a Cisco Nexus switch is true?
A. If you belong to multiple roles, you can execute only the commands that are permitted by both roles (logical AND).
B. Access to a command takes priority over being denied access to a command.
C. The predefined roles can only be changed by the network administrator (superuser).
D. The default SAN administrator role restricts configuration to Fibre Channel interfaces.
E. On a Cisco Nexus 7000 Series Switch, roles are shared between VDCs.
Correct Answer: B
Explanation
Explanation/Reference:
If you belong to multiple roles, you can execute a combination of all the commands permitted by these roles. Access to a command takes priority over being denied access to a command. For example, suppose a user has RoleA, which
denied access to the configuration commands. However, the users also have RoleB, which has access to the configuration commands. In this case, the users have access to the configuration commands.
Reference:
http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus5000/sw/configuration/guid e/cli/CLIConfigurationGuide/sec_rbac.html

QUESTION 17
Which statement about the implementation of Cisco TrustSec on Cisco Nexus 7000 Series Switches is true?
A. While SGACL enforcement and SGT propagation are supported on the M and F modules, 802.1AE (MACsec) support is available only on the M module.
B. SGT Exchange Protocol is required to propagate the SGTs across F modules that lack hardware support for Cisco TrustSec.
C. AAA authentication and authorization is supported using TACACS or RADIUS to a Cisco Secure Access Control Server.
D. Both Cisco TrustSec and 802.1X can be configured on an F or M module interface.
Correct Answer: A
Explanation
Explanation/Reference:
The M-Series modules on the Nexus 7000 support 802.1AE MACSEC on all ports, including the new M2-series modules. The F2e modules will have this feature enabled in the future.
It is important to note that because 802.1AE MACSEC is a link-level encryption, the two MACSEC-enabled endpoints, Nexus 7000 devices in our case, must be directly L2 adjacent. This means we direct fiber connection or one facilitated with
optical gear is required. MACSEC has integrity checks for the frames and intermediate devices, like another switch, even at L2, will cause the integrity checks to fail. In most cases, this means metro-Ethernet services or carrier-provided label
switched services will not work for a MACSEC connection.
Reference: http://www.ciscopress.com/articles/article.asp?p=2065720

QUESTION 18
Which two security features are only supported on the Cisco Nexus 7000 Series Switches? (Choose two.)
A. IP source guard
B. traffic storm control
C. CoPP
D. DHCP snooping
E. Dynamic ARP Inspection
F. NAC
Correct Answer: BF
Explanation
Explanation/Reference:
A traffic storm occurs when packets flood the LAN, creating excessive traffic and degrading network performance. You can use the traffic storm control feature to prevent disruptions on Layer 2 ports by a broadcast, multicast, or unicast traffic
storm on physical interfaces. Traffic storm control (also called traffic suppression) allows you to monitor the levels of the incoming broadcast, multicast, and unicast traffic over a 10-millisecond interval. During this interval, the traffic level,
which is a percentage of the total available bandwidth of the port, is compared with the traffic storm control level that you configured. When the ingress traffic reaches the traffic storm control level that is configured on the port, traffic storm
control drops the traffic until the interval ends.
Reference:
http://www.cisco.com/c/en/us/td/docs/switches/datacenter/sw/5_x/dcnm/security/configurati on/guide/b_Cisco_DCNM_Security_Configuration_Guide__Release_5- x/Cisco_DCNM_Security_Configuration_Guide__Release_5-
x_chapter17.html
And
http://www.cisco.com/c/en/us/td/docs/switches/datacenter/sw/5_x/dcnm/security/configurati on/guide/b_Cisco_DCNM_Security_Configuration_Guide__Release_5- x/Cisco_DCNM_Security_Configuration_Guide__Release_5-x_chapter1.html

QUESTION 19
When a local RBAC user account has the same name as a remote user account on an AAA server, what happens when a user with that name logs into a Cisco Nexus switch?
A. The user roles from the remote AAA user account are applied, not the configured local user roles.
B. All the roles are merged (logical OR).
C. The user roles from the local user account are applied, not the remote AAA user roles.
D. Only the roles that are defined on both accounts are merged (logical AND).
Correct Answer: C
Explanation
Explanation/Reference:
If you have a user account configured on the local Cisco NX-OS device that has the same name as a remote user account on an AAA server, the Cisco NX-OS software applies the user roles for the local user account to the remote user, not
the user roles configured on the AAA server.
Reference: http://www.cisco.com/c/en/us/td/docs/switches/datacenter/sw/4_1/nx- os/security/configuration/guide/sec_nx-os-cfg/sec_rbac.html

QUESTION 20
Which statement is true if password-strength checking is enabled?
A. Short, easy-to-decipher passwords will be rejected.
B. The strength of existing passwords will be checked.
C. Special characters, such as the dollar sign ($) or the percent sign (%), will not be allowed.
D. Passwords become case-sensitive.
Correct Answer: A
Explanation
Explanation/Reference:
If a password is trivial (such as a short, easy-to-decipher password), the cisco NX_OS software will reject your password configuration if password-strength checking is enabled. Be sure to configure a strong password. Passwords are case
sensitive.
Reference: http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus9000/sw/7- x/security/configuration/guide/b_Cisco_Nexus_9000_Series_NX- OS_Security_Configuration_Guide_7x/b_Cisco_Nexus_9000_Series_NX-
OS_Security_Configuration_Guide_7x_chapter_01000.pdf

QUESTION 21
Which command specifies a load-balancing method based on the MAC address of a host where the same forwarder is always used for a particular host while the number of GLBP group members remains unchanged?A. load-balancing host-dependent
B. load-balancing mac-pinning
C. load-balancing round-robin
D. load-balancing weighted
Correct Answer: A
Explanation

QUESTION 22
Which two elements must be configured correctly for Cisco TrustSec Fibre Channel Link Encryption to work on a Cisco MDS 9000 Series Switch? (Choose two.)
A. AES-GMAC
B. key
C. salt
D. AAA
E. group
Correct Answer: BC
Explanation

QUESTION 23
Which configuration is specific to Cisco TelePresence System seed devices?
A. radius server radius-server-name
B. aaa session-id common
C. radius-server vsa send authentication
D. aaa new-model
Correct Answer: A
Explanation

QUESTION 24
Which command is used to associate EID-to-RLOC for a LISP site?
A. #feature lisp
B. #ipv6 lisp itr
C. #ip lisp database-mapping
D. #ip lisp itr map-resolver
Correct Answer: C
Explanation

QUESTION 25
Which three options of encryption are supported in PIM hello messages? (Choose three.)
A. cleartext
B. DES-SHA1
C. DES-CBC3-SHA
D. Cisco Type 7
E. RC4-SHA
F. 3DES
Correct Answer: ADF
Explanation

QUESTION 26

pass4itsure 642-997 exam dump -26 pass4itsure 642-997 exam dump -26-1

What is the status of FCoE license on Cisco Nexus 5548 switch?
A. FCoE license is not installed
B. FCoE license is installed, but it is expired
C. FCoE license is installed and status is enabled
D. FCoE license does not need to be installed because it is part of ENTERPRISE_PKG
Correct Answer: A
Explanation

QUESTION 27
In Cisco Nexus 7000 Series Switches, which three statements about SPAN are true? (Choose three.)
A. SPAN source ports can be the in-band interface to the supervisor engine control plane of the switch.
B. SPAN monitor ports can be routed ports.
C. SPAN destination ports can be configured in only one SPAN session at a time.
D. The Cisco Nexus 7000 supports virtual SPAN feature.
E. SPAN destination port actively participates in spanning-tree instance.
F. SPAN destinations cannot be an RSPAN VLAN.
Correct Answer: ACD
Explanation

QUESTION 28
Which three options are CallHome predefined destination profiles that are supported on Cisco NX-OS? (Choose three.)
A. CiscoTAC-1
B. full-text-destination
C. pager-xml-destination
D. short-text-destination
E. xml-text-destination
F. pager-json-destination
Correct Answer: ABD
Explanation

QUESTION 29
What configuration is required when implementing FCoE?
A. disable LAN traffic on the interface
B. configure PortFast on the access port
C. permit all VLANs on the interface
D. permit all VSANs on the interface
Correct Answer: A
Explanation
Explanation/Reference:
DCBX allows the switch to send a LAN Logical Link Status (LLS) message to a directly- connected CNA. Enter the shutdown lan command to send an LLS-Down message to the CNA. This command causes all VLANs on the interface that
are not enabled for FCoE to be brought down. If a VLAN on the interface is enabled for FCoE, it continues to carry SAN traffic without any interruption.
Reference:
http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus5000/sw/fcoe/b_Cisco_Ne xus_5000_Series_NX-
OS_Fibre_Channel_over_Ethernet_Configuration_Guide_/Cisco_Nexus_5000_Series_NX- OS_Fibre_Channel_over_Ethernet_Configuration_Guide__chapter3.html

QUESTION 30
Which two statements about SAN zoning on Cisco Nexus switches are true? (Choose two.)
A. Zoning is enforced by examining the destination ID field.
B. Devices can only belong to one zone.
C. Only one zone set can be activated at any time.
D. A zone can only be a member one zone set.
E. Zoning must be administered from the primary SAN switch in the fabric.
F. Zone configuration changes are nondisruptive.
Correct Answer: CF
Explanation
Explanation/Reference:
A zone set can be activated or deactivated as a single entity across all switches in the fabric. Only one zone set can be activated at any time. If zoning is not activated, all devices are members of the default zone. If zoning is activated, any
device that is not in an active zone (a zone that is part of an active zone set) is a member of the default zone. Zoning can be administered from any switch in the fabric. When you activate a zone (from any switch), all switches in the fabric
receive the active zone set. Additionally, full zone sets are distributed to all switches in the fabric, if this feature is enabled in the source switch. Reference: http://www.cisco.com/en/US/docs/storage/san_switches/mds9000/sw/san- os/quick/
guide/qcg_zones.html

QUESTION 31
Which three parameters can be set when configuring a Cisco MDS 9000 Series Switch to use a TACACS+ server? (Choose three.)
A. group-size
B. deadtime
C. timeout
D. keep-alive
E. retransmit
Correct Answer: BCE
Explanation

QUESTION 32
Which feature allows routing protocols to remain in the data path during a supervisor failover?
A. Cisco Nonstop Forwarding
B. Cisco Stateful Switchover
C. Cisco Express Forwarding
D. Cisco Route Processor Redundancy
Correct Answer: A
Explanation

QUESTION 33
Which four statements about reserved VLANs in Cisco NX-OS are true? (Choose four.)
A. The range of reserved VLANs cannot be changed.
B. The number of reserved VLANs is 96.
C. A change to the range of reserved VLANs can be performed only in the VDC default.
D. A write-erase procedure restores the default reserved VLAN range.
E. The number of reserved VLANs is 128.
F. A reload is needed for changes to take place.
G. The configuration must be saved for changes to take place.
Correct Answer: CEFG
Explanation

QUESTION 34
Which two items are services that are provided by Cisco Fabric Services? (Choose two.)
A. device alias distribution
B. VLAN database distribution
C. Kerberos proxy distribution
D. RSA key pair distribution
E. DPVM configuration distribution
Correct Answer: AE
Explanation
Explanation/Reference:
The device alias application uses the Cisco Fabric Services (CFS) infrastructure to enable efficient database management and distribution. Device aliases use the coordinated distribution mode and the fabric-wide distribution scope. DPVM
can use CFS to distribute the database to all switches in the fabric. This allows devices to move anywhere and keep the same VSAN membership. You should enable CFS distribution on all switches in the fabric. Using the CFS infrastructure,
each DPVM server learns the DPVM database from each of its neighboring switches during the ISL bring-up process. If you change the database locally, the DPVM server notifies its neighboring switches, and that database is updated by all
switches in the fabric.
Reference:
http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus5000/sw/configuration/guid e/cli/CLIConfigurationGuide/ddas.html and
http://www.cisco.com/c/en/us/td/docs/switches/datacenter/sw/nx- os/san_switching/configuration/guide/b_Cisco_Nexus_7000_NX- OS_SAN_Switching_Configuration_Guide/Cisco_Nexus_7000_NX-
OS_SAN_Switching_Configuration_Guide_chapter4.html#concept_2B83E16506C845B39 BDF96F9CAFFAEC3

QUESTION 35
Which three options are capabilities of the Cisco Nexus 7000 Series Switch? (Choose three.)
A. All interface and supervisor modules are accessible from the front.
B. All interface and supervisor modules are accessible from the rear.
C. single power supply only
D. multiple power supply option for redundancy
E. up to 180.7 Tbps forwarding capacity with Fabric-2 modules with 10-slot switches
F. up to 18.7 Tbps forwarding capacity with Fabric-2 modules with 18-slot switches
Correct Answer: ADF
Explanation

QUESTION 36
Drag the network characteristics on the left to the most appropriate design layer on the right.pass4itsure 642-997 exam dump -36-1 Explanation
Explanation/Reference:

QUESTION 37
Drag the description on the left to the most appropriate Nexus product on the right.pass4itsure 642-997 exam dump -37Explanation
Explanation/Reference:

QUESTION 38
Drag the security description on the left to the appropriate security feature on the right.pass4itsure 642-997 exam dump -38 pass4itsure 642-997 exam dump -38-1Explanation
Explanation/Reference:

QUESTION 39
Drag the description on the left to the most appropriate FCoE protocol or feature on the right.pass4itsure 642-997 exam dump -39Explanation
Explanation/Reference:

QUESTION 40
VSANs and SAN Zoning have similar security goals, but also have different qualities. Drag the characteristic on the left to the appropriate column heading (VSAN or Zoning) on the right.pass4itsure 642-997 exam dump -40 pass4itsure 642-997 exam dump -40-1 pass4itsure 642-997 exam dump -40-2Explanation
Explanation/Reference:

The latest updated Cisco CCNP Data Center 642-997 exam questions and answers help you improve your skills! Guaranteed to pass the 642-997 exam easily: https://www.pass4itsure.com/642-997.html (Q&As: 123)

[PDF] Free Cisco 642-997 pdf dumps download from Google Drive: https://drive.google.com/open?id=1eIjf3v99pqLI863mPvDCWlmITjKbBxeX

[PDF] Free Full Cisco pdf dumps download from Google Drive: https://drive.google.com/drive/folders/1dq6fv9FX6zSDDoHc3ge-WzVU9SNaUbsH

Pass4itsure Promo Code 15% Off

pass4itsure 642-997 coupon

related: https://www.pass4cert.net/latest-release-cisco-648-232-dumps.html

You may also like