Skip to Content

Cisco 300-620: What Configuration Must Be Applied to Allow In-Band Management of Cisco ACI?

By: Author Alex Lim

Posted on  - Last updated:

Categories Exam

Learn the required bridge domain configuration to enable in-band management of Cisco APIC servers and fabric switches in a Cisco ACI fabric. Find the correct settings for unicast routing, IP addressing, and more.

Table of Contents

Question

Refer to the exhibit.

The engineer is planning to configure in-band management for the Cisco ACI fabric.

The goal is to allow the network operators to reach the Cisco APIC servers and fabric switches from the in-band network.

The engineer is planning to configure in-band management for the Cisco ACI fabric. The goal is to allow the network operators to reach the Cisco APIC servers and fabric switches from the in-band network. Which configuration must be applied on the bridge domain to accomplish these goals?

A. Enable Unicast Routing.
Set scope to Advertised Externally.
B. Scope: Shared between VRF.
Set the IP address as primary.
C. Make this IP address primary.
Configure an L3Out for Route Profile.
D. Enable Unicast Routing.
Configure a virtual IP address.

Answer

To allow the network operators to reach the Cisco APIC servers and fabric switches from the in-band network, the following configuration must be applied on the bridge domain:

D. Enable Unicast Routing. Configure a virtual IP address.

Explanation

Enabling unicast routing on the bridge domain allows Layer 3 forwarding between endpoints in the bridge domain and external networks. This is required for in-band management traffic to be routed to/from the APIC and fabric switches.

Configuring a virtual IP address provides a gateway for endpoints to send traffic outside the bridge domain. The virtual IP will be the default gateway used by the APIC and switches for in-band management connectivity.

The other options are incorrect:
A: Setting the bridge domain scope to Advertised Externally is not required for in-band management. This controls how the BD subnets are advertised.
B: A Shared between VRF scope is not related to in-band management. Making the IP address primary is not sufficient alone.
C: Configuring an L3Out is not required simply for in-band management, only the BD settings. An L3Out defines external connectivity.

In summary, enabling unicast routing and configuring a virtual IP gateway address on the bridge domain will allow in-band management communication between APIC, fabric switches, and operator endpoints. The virtual IP provides the required gateway for management traffic flows.

Cisco 300-620 certification exam assessment practice question and answer (Q&A) dump including multiple choice questions (MCQ) and objective type questions, with detail explanation and reference available free, helpful to pass the Cisco 300-620 exam and earn Cisco 300-620 certification.