ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 350-601 All Questions

View all questions & answers for the 350-601 exam
Go to Exam

Exam 350-601 topic 1 question 64 discussion

Actual exam question from Cisco's 350-601
Question #: 64
Topic #: 1
[All 350-601 Questions]

An engineer implements an ACI fabric and must implement microsegmentation of endpoints within the same IP subnet using a network-based attribute. The attribute mapping must allow IP subnet independence. Which attribute must be selected?

  • A. IP
  • B. tag
  • C. custom
  • D. MAC address
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
If you want to use a network-based attribute and classify IP addresses in the same subnet, you must use the MAC-based network attribute. IP-based microsegmented EPGs do not support classification for IP addresses in the same subnet. IP-based microsegmented EPGs are supported only when traffic requires Layer 3 routing. If the traffic is bridged, the microsegmentation policy cannot be enforced.
Reference:
https://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/3-
by Rmat2 at Oct. 24, 2021, 8:22 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
sepehr63
Highly Voted 3 years, 4 months ago
D is correct
upvoted 9 times
...
udo2020
Most Recent 10 months, 1 week ago
Since 5.2 is it possible to use IP and MAC based. Not sure which version is related to exam.
upvoted 1 times
...
GuyThatTakesDumps
2 years, 7 months ago
D is correct
upvoted 2 times
...
mahmoudlol
2 years, 9 months ago
Selected Answer: D
D is Correct
upvoted 2 times
...
mauchi
3 years ago
subnet independence - not using IP address
upvoted 1 times
...
Rmat2
3 years, 6 months ago
Correct Answer - A
upvoted 3 times
vincenzop
3 years, 6 months ago
"If you want to use a network-based attribute and classify IP addresses in the same subnet, you must use the MAC-based network attribute. IP-based microsegmented EPGs do not support classification for IP addresses in the same subnet. IP-based microsegmented EPGs are supported only when traffic requires Layer 3 routing. If the traffic is bridged, the microsegmentation policy cannot be enforced" https://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/3-x/virtualization/b_ACI_Virtualization_Guide_3_1_1/b_ACI_Virtualization_Guide_3_1_1_chapter_0100.html
upvoted 3 times
Pakawat
3 years, 5 months ago
Network-Based Attributes The network-based attributes are IP (IP address filter) and MAC (MAC Address Filter). You can apply one or more MAC or IP addresses to a uSeg EPG. For IP addresses, you simply specify the address or the subnet; for MAC addresses, you simply specify the address.
upvoted 1 times
...
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago