Exam 350-401 topic 1 question 695 discussion

A. vSmart B. vManage C. vBond D. vEdge

In the Cisco SD-WAN architecture, the vSmart controller acts as the centralized brain of the network. It is responsible for aggregating and distributing VPN (Virtual Private Network) routing information across the SD-WAN fabric

A is correct

A is correct

A. Aggregation and distribution of VPN routing information: This is indeed one of the primary functions of vSmart. vSmart aggregates routing information from all the edge devices (vEdge routers) and distributes this information to ensure optimal path selection and policy enforcement across the network. B. Execution of localized policies: This is typically the role of the vEdge routers, which enforce the policies received from vSmart at a local level.

In the Cisco SD-WAN architecture, the vSmart controller acts as the centralized brain of the network. It is responsible for aggregating and distributing VPN (Virtual Private Network) routing information across the SD-WAN fabric. The vSmart controller uses the Overlay Management Protocol (OMP) to exchange routing information with the edge routers (vEdge routers) in the SD-WAN network. It collects information about network reachability, network policies, and security requirements from the vEdge routers and distributes this information to ensure efficient and optimized routing throughout the network.

I think the vEdges are the ones that redistribute the routes into OMP, the vSmart just learns the routes and advertises it to other vEdges, so I would go with A, I could be wrong. But Iim using this as a reference and if you ctrl f redistribute you can see its configured on the vEdges section, https://www.cisco.com/c/en/us/td/docs/routers/sdwan/configuration/sdwan-xe-gs-book/system-overview.html

The answer is D here is an explicative source https://www.thenetworkdna.com/2021/02/cisco-viptela-sd-wan-vsmart-as-control.html#:~:text=OMP%2D%20Overlay%20Management,using%20OMP%20updates.

D https://www.cisco.com/c/en/us/td/docs/routers/sdwan/configuration/sdwan-xe-gs-book/system-overview.html The major components of the Cisco vSmart Controller are: Control plane connections; OMP (Overlay Management Protocol); Authentication; Key reflection and rekeying; Policy engine; Netconf and CLI

I still go with D

Seems like A to me. https://www.cisco.com/c/en/us/td/docs/routers/sdwan/configuration/sdwan-xe-gs-book/system-overview.html Each Cisco vSmart Controller establishes and maintains a control plane connection with each edge router in the overlay network. Each connection, which runs as a DTLS tunnel, is established after device authentication succeeds, and it carries the encrypted payload between the Cisco vSmart Controller and the edge router. This payload consists of route information necessary for the Cisco vSmart Controller to determine the network topology, and then to calculate the best routes to network destinations and distribute this route information to the Edge routers.

After some further reading, I need to vote for A, because D seems to belong to vEdges. Distribution of VPN routing information clearly is a function of the vSmart. (A) However, OMP route redistribution (D) is done by vEdges: "two WAN edge routers doing route redistribution between the Cisco Overlay Management Protocol (OMP) and any site-local routing protocol running on the service side" "By default, the vEdges automatically redistribute the following route types that they learn from site-local peers into OMP: Connected, Static, OSPF/OSPFv3 intra-area, OSPF/OSPFv3 inter-area" https://www.networkacademy.io/ccie-enterprise/sdwan/omp-redistribution-loop-prevention

According to these documents, both A and D seem to be correct: https://www.cisco.com/c/en/us/td/docs/routers/sdwan/configuration/sdwan-xe-gs-book/system-overview.html "All site-local routes are populated on the vEdge routers. Distributed these routes to the other vEdge routers this is done through the Cisco vSmart Controller, via OMP. If you are using BGP or if there are OSPF external LSAs, allow OMP to redistribute the BGP routes. Re-advertise OMP routes into BGP or OSPF." https://www.networkacademy.io/ccie-enterprise/sdwan/what-is-a-centralized-control-policy "VPN Membership policies are used to control the distribution of routing information for specific VPNs to a list of sites." Based on the diagram, vSmart is responsible for managing OMP and VPN in the SD-WAN fabric.

As an optional step, you can create control and data plane policies on the Cisco vSmart Controller and push them to the vEdge routers. Shouldn't this then be answer B? A aggregation & distribution (in vSmart) and not B execution of localized policies (in vEdge)

Guys be careful, question 440 and this one are exactly the same and on both questions it states the correct answer, this must be the answer, please find the information here: https://www.cisco.com/c/en/us/td/docs/routers/sdwan/configuration/sdwan-xe-gs-book/system-overview.html#cisco-vsmart-controller

I prefer D as I know vSmart is managing routing. OMP is the control protocol that is used to exchange routing, policy, and management information between the vSmart controllers and vEdge routers in the overlay network. It is enabled by default, so after you start up the vSmart controllers and vEdge routers, it is not necessary to explicitly configure or enable OMP.

Think its A too The Cisco SD-WAN policy design provides a clear separation between centralized and localized policy. In short, centralized policy is provisioned on the centralized Cisco vSmart Controllers in the overlay network, and the localized policy is provisioned on Cisco vEdge devices, https://www.ciscolive.com/c/dam/r/ciscolive/emea/docs/2020/pdf/BRKCRS-2815.pdf