500-470 Exam Dumps : Cisco Enterprise Networks SDA, SDWAN and ISE Exam for System Engineers

Some of the statements that are true regarding Cisco SD-WAN license tiers are:

• With Pro license, control and data policies are supported2. This license tier enables network operators to define and enforce policies for traffic shaping, quality of service (QoS), application optimization, and security2.
• With Plus license, split-tunnel is supported3. This license tier enables network operators to use split-tunneling technology to route traffic through different paths based on application or user preferences3.
• With Enterprise license, vAnalytics is included4. This license tier enables network operators to use vAnalytics feature to collect and analyze data from various sources such as endpoints, applications, devices, networks, and cloud services4.

Syslog, FNF (Flexible NetFlow), and SNMP (Simple Network Management Protocol) are three technologies that can be deployed to gather data and provide insight into the network performance, health, and behavior. Syslog is a standard protocol for logging messages from network devices, such as routers, switches, firewalls, and servers. Syslog messages can be sent to a centralized server for analysis, correlation, and alerting. FNF is a Cisco technology that captures and exports information about network flows, such as source and destination IP addresses, ports, protocols, bytes, packets, and timestamps. FNF can be used to monitor network traffic patterns, identify anomalies, and optimize network resources. SNMP is a protocol that allows network devices to communicate with management systems, such as Cisco DNA Center. SNMP can be used to collect statistics, configuration, and status information from network devices, as well as to send commands and notifications. SNMP can help network administrators to troubleshoot, configure, and manage their network devices remotely. References: Cisco DNA Center User Guide, Release 1.3.1.0 - Monitor the Network 1, Cisco DNA Center User Guide, Release 1.3.1.0 - Configure Flexible NetFlow 2, Cisco DNA Center User Guide, Release 1.3.1.0 - Configure SNMP 3

/configuration/guide/scg3750/sw8021x.pdf

The protocol that is used between an endpoint and a switch with an 802.1 authentication is EAP, which stands for Extensible Authentication Protocol. EAP is a framework that defines how the endpoint (also called the supplicant) and the switch (also called the authenticator) exchange authentication messages over a wired or wireless network. EAP supports various authentication methods, such as passwords, certificates, tokens, or biometrics, and can be encapsulated in different transport protocols, such as RADIUS, Diameter, or EAPOL. EAP is used in 802.1X authentication, which is a standard for port-based network access control that prevents unauthorized access to a network1.

The other options, TACACS, MAB, and RADIUS, are not protocols that are used between an endpoint and a switch with an 802.1 authentication. TACACS is a protocol that provides remote authentication and authorization for network devices, such as routers or switches, but it is not used for endpoint authentication. MAB is a technique that uses the MAC address of an endpoint as a credential for 802.1X authentication, but it is not a protocol itself. RADIUS is a protocol that provides centralized authentication, authorization, and accounting for network access, but it is not used directly between the endpoint and the switch, but rather between the switch and the authentication server1. References := : 2: What Is 802.1X Authentication? How Does 802.1x Work? - Fortinet2, 1: IEEE 802.1X - Wikipedia1