Black Friday Biggest Discount Flat 70% Offer - Ends in 0d 00h 00m 00s - Coupon code: 70diswrap

DumpsWrap Logo

HP HPE6-A73 Dumps

Page: 1 / 13
Total 127 questions
Get HPE6-A73 Full Access Download HPE6-A73 PDF

Aruba Certified Switching Professional Exam Questions and Answers

Question 1

What is a concept associated with PIM sparse mode (SM)?

Options:

A.

Reverts to forwarding when the pruning state times out.

B.

Requires periodic joins to maintain the shortest path tree (SPT).

C.

Recommended for use when high bandwidth connections exist.

D.

Implements a push content to forward traffic from the multicast source.

Question 2

Which protocols are used by NetEdit to interact with third-party devices? (Choose two.)

Options:

A.

telnet

B.

SNMP

C.

SSH

D.

Restful API

E.

CDP

Question 3

A company requires access by all users, guests, and employees to be authenticated. Employees will be

authenticated using 802.1X, whereas guests will be authenticated using captive portal. Which type of

authentication must be configured on an AOS-CX switch ports where both guests and employees connect?

Options:

A.

Both 802.1X and captive portal

B.

802.1X only

C.

Both 802.1X and MAC-Auth

D.

802.1X, captive portal, and MAC-Auth

Question 4

An administrator wants to implement dynamic segmentation policies. The network consists of AOS-CX and Aruba gateways.

Which type of forwarding should the administrator implement for users that already connect via wireless, but will also be connecting on Ethernet switch ports?

Options:

A.

User-based tunneling (UBT)

B.

Port-based tunneling (PBT)

C.

Switch-to-switch tunneling (SST)

D.

Local switching

Question 5

Examine the AOS-CS switch output:

as

Based on this output, what is correct?

Options:

A.

802.1X authentication was successful, but MAC authentication is yet to start

B.

802.1X authentication occurred and downloadable user roles are deployed

C.

A local user role was deployed using a ClearPass solution

D.

Only 802.1X authentication is configured on the port

Question 6

A company has a few servers in a secure, remote location storing highly-confidential documents connected to two AOS-CX 6400 switches configured in a VSX pair The AOS-CX switches perform access control with 802 1X and will be implementing user-based tunneling (UBT) so that Aruba gateway application inspection and stateful firewall policies can be applied to the traffic. The gateways are running version 84 and implement the AP, PEF, and RFP licenses

Which licensing is needed for the two AOS-CX switches?

Options:

A.

2 AP and 2 PEF licenses only

B.

1 AP license only

C.

2 AP, 2 PEF, and 2 RFP licenses only

D.

1 AP, 1 PEF, and 1 RFP licenses only

Question 7

A company uses NetEdit to manage a network of 700 AOS-CX switches and approximately 1,000 other SNMP-capable devices.

Which management solution should the company use to monitor all the devices, as well as see a topology picture of how all the devices are connected together?

Options:

A.

NetEdit

B.

Aruba AirWave

C.

Aruba Activate

D.

Network Analysis Engine (NAE)

Question 8

An administrator is supporting a network with the access layer consisting of AOS-CX 6300 and 6400 switches. The administrator needs to quickly deploy Aruba IAPs and security cameras in the network, ensuring that the correct QoS and VLAN settings are dynamically applied to the switch ports. Currently, switches are not configured to do device authentication, and no authentication server exists in the network.

Which AOS-CX feature should the administrator use to dynamically assign the policy settings to the correct switch ports?

Options:

A.

Device profiles

B.

Change of authorization

C.

Dynamic segmentation

D.

Voice VLANs

Question 9

Examine the commands entered on an AOS-CX switch:

What is true regarding this configuration for traffic received on interface 100?

Options:

A.

The default next-hop address supersedes the two preceding next-hop addresses

B.

The traffic is always dropped is the next-hop addresses are unreachable

C.

The traffic will be routed with the IP routing table entries if the next-hop addresses are unreachable

D.

The next-hop address of 1.1.1.1 is overwritten by the next-hop address of 2.2.2.2

Question 10

An administrator will be deploying NetEdit to manage an Aruba solution. What does NetEdit support?

Options:

A.

Manages AOS-CX switches and Aruba gateways

B.

Support for Aruba-supplied security updates

C.

Tracks configuration and hardware information

D.

Can be purchased as a VM and/or hardware appliance

Question 11

An administrator wants to drop traffic from VLAN 6 (10.1.6.0/24) to VLAN 5 (10.1.5.0/24), but allow all other traffic. What is correct configuration to accomplish this?

as

as

Options:

A.

Option A

B.

Option B

C.

Option C

D.

Option D

Question 12

What is required when implementing captive portal an AOS-CX switches?

Options:

A.

Certificate installed on the switch

B.

Web server running on the switch

C.

Device fingerprinting

D.

AAA server

Question 13

Examine the configuration of Core-1 and Core-2. AOS-CX switches configured as a VSX stack:

Core1: Interlace lag 256

no shutdown

no routing

vlan trunk allowed all

lacp mode active Interface 1/1/46

no shutdown

lag 256 Interface 1/1/47

no shutdown

lag 256

VSX

Inter-switch-link lag 256

vsx-sync vsx-global

exit

Cofe2: interlace lag 250

no shutdown

no routing

vlan trunk allowed all

lacp mode active

Interlace 1/1/46

no shutdown

lag 256 Interface 1/1/47

no shutdown

lag 256 vsx

inter-switch-link lag 256

exit

When using the "show vsx status" command, the two switches fall to connect and successfully synchronize. What should the administrator do to fix this issue?

Options:

A.

Define a larger MTU on the ISL link of the two switches.

B.

Define the VSX roles on the two switches.

C.

Enable active-active forwarding on the two switches.

Question 14

A network administrator is managing a network that deploys a multicast service. The administrator has

multiple streams successfully being routed by PIM-DM in the network. The administrator then adds a new stream with a destination address of 239.0.0.1. However, clients who have not joined the stream are receiving it.

What should the administrator do to fix this problem?

Options:

A.

Verify that IGMP is enabled between the switches connecting the multicast source and receivers

B.

Change the destination multicast address to 239.1.1.1

C.

Define the 239.0.0.1 stream on the rendezvous point (RP)

D.

Define the 239.0.0.1 stream on the PIM candidate bootstrap router

Question 15

A company has an existing wireless solution involving Aruba APs and Mobility controllers running 8.4 code.

The solution leverages a third-party AAA solution. The company is replacing existing access switches with AOS-CX 6300 and 6400 switches. The company wants to leverage the same security and firewall policies for both wired and wireless traffic.

Which solution should the company implement?

Options:

A.

RADIUS dynamic authorization

B.

Downloadable user roles

C.

IPSec

D.

User-based tunneling

Question 16

A network administrator is implementing OSPF, where there are two exit points. Each exit point has a stateful, application inspection firewall to implement company policies.

What would the best practice be to ensure that one firewall will see both directions of the traffic, preventing asynchronous connections in the network?

Options:

A.

Both ASBRs should define External Type 1 routes for the

B.

Both ASBRs should define External Type 1 routes for the

C.

Both ASBRs should define External Type 2 routes for the

D.

Both ASBRs should define External Type 2 routes for the

Question 17

MAC authentication is enabled on port 1/1/27 of an AOS-CX switch. The following MAC addresses are defined on the AAA server:

* 88:3a:30:97:b6:00

* 00:50:56:b1:fc:9b

Examine the AOS-CX switch output:

as

Based on this information, what is true concerning port 1/1/27?

Options:

A.

Device-mode is enabled with a client limit of 1.

B.

Device-mode is enabled with a client limit of 2.

C.

Client-mode is enabled with a client limit of 1.

D.

Client-mode is enabled with a client limit of 2.

Question 18

What is correct regarding the operation of VSX and multicasting with PIM-SM routing configured?

Options:

A.

Each VSX peers runs PIM and builds its own group database. One of the VSX peers is elected as the

designated router (DR) to forward multicast streams to a receiver VLAN

B.

Each VSX peers runs PIM and creates a shared group database. Both VSX peers can forward multicast

streams to receivers in a VLAN, achieving load sharing

C.

Each VSX peers runs PIM and builds its own group database. Both VSX peers can forward multicast

streams to receivers in a VLAN, achieving load sharing

D.

Each VSX peers runs PIM and creates a shared group database. One of the VSX peers is elected as the

designated router (DR) to forward multicast streams to a receiver VLAN

Question 19

Examine the VSX-related configuration of the core layer AOS-CX switch:

as

A network administrator is troubleshooting a connectivity issue involving the VSX LAG (link aggregation) between the core and access layer switch, during HW replacement of one of the core switches.

Which configuration should the administrator add to the core switch to fix this issue?

Options:

A.

ICX-Tx-Core1(config)# vsx

ICX-Tx-Core1(config-vsx)# system-mac 02:01:00:00:01:00

B.

ICX-Tx-Core1(config)# interface lag 1 multi-chassis

ICX-Tx-Core1(config-if-lag-if)# mtu 9198

C.

ICX-Tx-Core1(config)# interface 1/1/46-1/1/47

ICX-Tx-Core1(config-if-vlan)# active-gateway ip 10.1.11.1 mac 02:02:00:00:01:00

D.

ICX-Tx-Core1(config)# interface 1/1/45

ICX-Tx-Core1(config-if-vlan)# active-gateway ip 192.168.0.0 mac 02:02:00:00:01:00

Question 20

An administrator is managing a network comprised of AOS-CX switches deployed at the aggregation layer. The switches are paired in a VSX stack and run the OSPF routing protocol. The administrator is concerned about how long it takes for OSPF to converge when one of the VSX switches has to reboot.

What should the administrator to do speed up the OSPF convergence of the switch that is rebooting?

Options:

A.

Change the VSXISL link from an OSPF broadcast link point-to-point.

B.

Implement graceful restart on the VSX switches and their neighboring OSPF switches.

C.

Decrease the VSX initial synchronization timer on the two VSX switches.

D.

Define non-backbone areas on the VSX switches as totally stubby areas.

Question 21

What is correct regarding rate limiting and egress queue shaping on AOS-CX switches?

Options:

A.

Only a traffic rate and burst size can be defined for a queue

B.

Limits can be defined only for broadcast and multicast traffic

C.

Rate limiting and egress queue shaping can be used to restrict inbound traffic

D.

Rate limiting and egress queue shaping can be applied globally

Question 22

What is correct regarding rate limiting and egress queue shaping on AOS-CX switches?

Options:

A.

Rate limiting and egress queue shaping can be used to restrict inbound traffic

B.

Limits can be defined only for broadcast and multicast traffic

C.

Rate limiting and egress queue shaping can be applied globally

D.

Traffic rate limit is configured on queue level

Question 23

A network administrator needs to replace an antiquated access layer solution with a modular solution involving AOS-CX switches. The administrator wants to leverage virtual switching technologies. The solution needs to support high-availability with dual-control planes.

Which solution should the administrator implement?

Options:

A.

AOS-CX 8325

B.

AOS-CX 6300

C.

AOS-CX 6400

D.

AOS-CX 8400

Question 24

Examine the following AOS-CX switch configuration:

as

Which access control entries would allow web traffic to the web servers 10.1.0.100 and 10.1.1.100?

Options:

A.

permit tcp servers eq 80

B.

permit tcp any 10.1.0.100 0.0.1.0 eq 80

C.

permit tcp any 10.1.0.100/10.1.1.100 eq 80

D.

permit tcp any 10.1.0.100/255.255.254.255 eq 80

Question 25

An access layer AOS-CX has no OoS configuration on it. The switch receives an 802.1Q tagged VoIP frame on a port. The frame has an 802.1p value of 6. The IP header has a DSCP value of EF46 How will the switch forward this frame?

Options:

A.

Forwards it as a normal frame

B.

Places it in the high priority queue

C.

Forwards It based on the DSCP value in the frame

D.

Forwards It based on the 802.1p value in the frame

Question 26

Examine the AOS-CX configuration:

as

The switches have a default factory password setting NetEdit fails to access the configuration of the AOS-CX switches. What should the administrator do to solve this problem?

Options:

A.

Set a password for the default admin user account.

B.

Disable telnet globally.

C.

Use the default VRF instead of the mgmt VRF

D.

Enable IP routing globally

Question 27

Examine the following ACL rule policies:

Permit traffic from 10.2.2.1 through 10.2.2.30 to anywhere

Permit traffic from 10.2.2.40 through 10.2.2.55 to anywhere

Deny all others

Based on this policy, place the following ACL rule statements in the correct order to accomplish the above

filtering policy.

Options:

A.

deny ip 10.2.2.31 255.255.255.255 any

permit ip 10.2.2.40 255.255.255.248 any

permit ip 10.2.2.48 255.255.255.248 any

deny ip 10.2.2.32 255.255.255.224 any

permit ip 10.2.2.0 255.255.255.192 any

B.

permit ip 10.2.2.40 255.255.255.248 any

permit ip 10.2.2.48 255.255.255.248 any

permit ip 10.2.2.0 255.255.255.192 any

deny ip 10.2.2.31 255.255.255.255 any

deny ip 10.2.2.32 255.255.255.224 any

C.

deny ip 10.2.2.31 255.255.255.255 any

deny ip 10.2.2.32 255.255.255.224 any

permit ip 10.2.2.40 255.255.255.248 any

permit ip 10.2.2.48 255.255.255.248 any

permit ip 10.2.2.0 255.255.255.192 any

D.

deny ip 10.2.2.31 255.255.255.255 any

permit ip 10.2.2.40 255.255.255.248 any

deny ip 10.2.2.32 255.255.255.224 any

permit ip 10.2.2.48 255.255.255.248 any

permit ip 10.2.2.0 255.255.255.192 any

Question 28

What is the purpose of the transit VLAN when implementing dynamic segmentation policies involving AOS-CX switches and an Aruba gateway solution?

Options:

A.

It identifies the VLAN that the user traffic will be assigned to when it comes out of the tunnel and is forwarded by the gateway.

B.

It identifies the VLAN that the user traffic will be assigned to, whether the traffic is tunneled or locally switched

C.

It defines the VXLAN identifier to identified UBT traffic between the AOS-CX switches and the gateway solution

D.

It identifies the VLAN that the switch will use when tunneling the traffic to the gateway

Question 29

An administrator of a company has concerns about upgrading the access layer switches. The users rely

heavily on wireless and VoIP telephony. Which is the best recommendation to ensure a short downtime for the users during upgrading the access layer switches?

Options:

A.

Install the in-service software upgrade (ISSU) feature with clustering enabled

B.

Install AOS-CX 6300 or 6400 switches with always-on POE

C.

Implement VSF on the AOS-CX access switches

D.

Implement VSX on the AOS-CX access switches

Question 30

An administrator wants to use an existing Aruba gateway's firewall policies to filter both wireless and wired traffic. Which AOS-CX switch feature should a customer implement to ensure the gateway applies the same or similar firewall policies to users' wired and wireless traffic?

Options:

A.

GRE tunneling

B.

User-based tunneling

C.

Port-based tunneling

D.

IPSec tunneling

Question 31

An administrator has an aggregation layer of 8325CX switches configured as a VSX pair. The administrator is

concerned that when OSPF network changes occur, the aggregation switches will respond to the changes

slowly, and this will affect network connectivity, especially VoIP calls, in the connected access layer switches.

What should the administrator do on the aggregation layer switches to alleviate this issue?D18912E1457D5D1DDCBD40AB3BF70D5D

Options:

A.

Implement route aggregation

B.

Implement bidirectional forwarding detection (BFD)

C.

Reduce the hello and dead interval timers

D.

Implement graceful restart

Question 32

An administrator creates an ACL rule with both the “count” and “log” option enabled. What is correct about the

action taken by an AOS-CX switch when there is a match on this rule?

Options:

A.

By default, a summarized log is created every minute with a count of the number of matches

B.

Logging will not include certificate and TLS events, but counting will

C.

The “count” and “log” options are processed by the AOS-CX switch’s hardware ASIC

D.

The total in the “log” record and the count could contain different rule matching statistics

Question 33

An administrator is replacing the current access switches with AOS-CX switches. The access layer switches

must authenticate user and networking devices connecting to them. Some devices support no form of

authentication, and some support 802.1X. Some ports have a VoIP phone and a PC connected to the same

port, where the PC is connected to the data port of the phone and the phone’s LAN port is connected to the switch.

Which statement is correct about this situation?

Options:

A.

802.1X must be configured to work in fallback mode

B.

Device fingerprinting is required for authentication

C.

The client-limit setting for port access needs to be changed

D.

Device mode should be implemented

Question 34

Examine the network exhibit.

as

A company has a guest implementation for wireless and wired access. Wireless access is implemented

through a third-party vendor. The company is concerned about wired guest traffic traversing the same network as the employee traffic. The network administrator has established a GRE tunnel between AOS-CX switches where guests are connected to a routing switch in the DMZ.

Which feature should the administrator implement to ensure that the guest traffic is tunneled to the DMZ while the employee traffic is forwarded using OSPF?

Options:

A.

OSPF route maps using the “set metric” command

B.

Policy-based routing (PBR)

C.

User-based tunneling (UBT)

D.

Classifier policies

Question 35

The AOS-CX mobile app allows a network engineer or technician to perform which tasks? (Choose two.)

Options:

A.

Use NetEdit to manage switch configuration.

B.

Create a stack of AOS-CX switches.

C.

Transfer files between the switch and your mobile device.

D.

Securely access the switch using SSH.

E.

Schedule an operating system upgrade.

Question 36

What is correct regarding policy-based routing?

Options:

A.

Policies can only be applied to routed interfaces.

B.

Policies can be applied inbound and outbound.

C.

Monitoring of policy interfaces occurs every 60 seconds.

D.

Policy actions include routing permitting or dropping traffic.

Question 37

A network has an ABR that connects area 0 and 1. A network engineer configures a summarized route for area 0. The ABR is a designated router (DR) for the segment it uses to connect to area 1.

Which LSA type is assigned to this route when the summarized route is advertised into area 1 by the ABR?

Options:

A.

LSA1

B.

LSA4

C.

LSA3

D.

LSA2

Question 38

An administrator implements interim accounting for guest users so that ClearPass can track the amount of bandwidth that guests upload and download. Guests that abuse bandwidth consumption should be disconnected from the network. The administrator configures the following on the AOS-CX access switches:

as

After performing this configuration, the administrator notices that guest users that have exceeded the guest bandwidth limit are not being disconnected. Upon further investigation, Access Tracker in ClearPass indicates a disconnect CoA message is being sent to the AOS-CX switch.

What is causing this issue?

Options:

A.

RADIUS change of authorization is not enabled on the AOS-CX switch.

B.

Bandwidth consumption of the guests is not being reported by the AOS-CX switch.

C.

NTP is not configured on the AOS-CX switch.

D.

There is a time discrepancy between the AOS-CX switch and ClearPass.

Load More HPE6-A73 Questions
Page: 1 / 13
Total 127 questions
Get HPE6-A73 Full Access Download HPE6-A73 PDF