New Year Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: 70percent

HP HPE6-A46 Delta - Implementing Aruba Campus Switching Solutions Exam Practice Test

Demo: 25 questions
Total 169 questions

Delta - Implementing Aruba Campus Switching Solutions Questions and Answers

Question 1

A company has a mixed wireless and wired Aruba solution. It wants to encrypt messages used to send configurations and other important messages to the APs carried outside the GRE tunnels. What can the company do to meet these goals?

Options:

A.

Deploy Aruba Meridian and integrate the AOS-Switches with it.

B.

Configure extended IP ACLs on the AOS-Switches to filter the traffic.

C.

Use PAPI enhanced security.

D.

Use tunneled node to send traffic through an Aruba Mobility Controller.

Question 2

Network administrators need to inspect all traffic that arrives on an AOS-Switch in VLAN 2 and is destined to TCP ports 50000-50010. They want to send the traffic to a protocol analyzer connected to the switch for deeper inspection.

What else must they create to achieve their goal?

Options:

A.

an extended IP ACL that selects the TCP traffic, apply the ACL to interfaces VLAN 2, and specify interfaces in VLAN 2 as monitor ports

B.

a traffic class that selects the TCP traffic, map the class to the mirror session in a policy to VLAN 2

C.

a traffic class that selects the TCP traffic, and apply the traffic class directly to the interface that connects to the protocol analyzer

D.

a traffic class that selects the TCP traffic, and apply the traffic class directly to the interface that connects to the protocol analyzer

E.

an extended IP ACL that selects the TCP traffic, apply the ACL to the mirror session, and specify interfaces in VLAN 2 as monitor ports

Question 3

A company deploys AOS-Switches at sites with inexperienced IT staff. The main office network administrators want to monitor thresholds to generate alerts on branch switches. What should be set up for this purpose?

Options:

A.

an SNMP trap

B.

an RMON alarm

C.

an auto-config server

D.

an sFlow instance

Question 4

Which switches can be deployed in a mesh topology for backplane stacking?

Options:

A.

Aruba 2920 switches

B.

Aruba 2930F switches

C.

Aruba 2930M switches

D.

Aruba 3810 switches

Question 5

A network administrator needs to create a QoS policy on an AOS-Switch. What is one component that the administrator must create before the policy?

Options:

A.

an extended IPv4 ACL

B.

a traffic behavior

C.

an extended MAC ACL

D.

a traffic class

Question 6

Refer to the exhibit.

Switch-1 runs BGP. What should the network administrator do to permit Switch-1 to establish a neighbor relationship with Router-1?

Options:

A.

Configure 192.168.1.2 as a neighbor manually within the BGP context.

B.

Specify 192.168.1.0/30 with the network command in the BGP context.

C.

Enable BGP on VLAN 100.

D.

Set the BGP AS number to 46501.

Question 7

A network administrator enters this command:

Switch(config)# aaa authorization user-role enable

How does this affect device authentication?

Options:

A.

The local manager and operator accounts will no longer work unless they are associated with a user role on the switch.

B.

Authenticated devices must receive their dynamic settings, such as VLAN ID and ACLs, from the RADIUS server Access-Accept.

C.

Authenticated devices will be defined proper access if the RADIUS server sends any VSA except the user-role VSA

D.

Role-based mode will no longer be available with tunneled node to prevent conflicts with the AAA user roles.

Question 8

A network administrator enters this command on an AOS-Switch:

Switch(config)# radius-server host 10.1.3.3 time-window 60

Which behavior will the switch show?

Options:

A.

It will wait one minute for a response from the RADIUS server before it sends another message

B.

It will reject RADIUS server change of authorization (CoA) messages with timestamps that are more than one minute old

C.

It will maintain idle user sessions for one minute before it re-authenticates the user to the RADIUS server

D.

It will give supplicants up to one minute to respond to RADIUS challenges before it considers authentication failed

Question 9

A company has AOS-Switches deployed at sites with inexperienced IT staff. The main office network administrators want to track if configurations change on branch switches.

What should be set up for this purpose?

Options:

A.

an SNMP trap

B.

an RMON alarm

C.

an IP SLA profile

D.

an auto-config server

Question 10

Refer to the exhibit.

A network administrator wants to add the protections of root guard to the network. Based on the spanning tree topology, on which ports should the network administrator implement root guard?

Options:

A.

3-24

B.

1 and 2

C.

A1 and A2

D.

2 and A3

Question 11

A company wants to implement role-based tunneled node on AOS-Switches. Which solution should be included in the plan to help apply the roles?

Options:

A.

a RADIUS server, such as Aruba ClearPass

B.

an SNMP server, such as Aruba AirWave

C.

Aruba Mobility Manager (MM)

D.

Aruba Meridian

Question 12

Refer to the exhibit.

A network administrator applies the ACL shown in the exhibit. Which source IP address does the myList ACL deny?

Options:

A.

10.1.0.10

B.

10.1.1.10

C.

10.1.2.10

D.

10.2.1.10

Question 13

The implementation plan for AOS-Switches calls for them to implement port-based tunneled node. The Aruba Mobility Controllers that will support the AOS-Switches run software 8.1. The controllers will also support APs, are managed by Mobility Master, and use clustering.

Which issue with this plan needs to be addressed?

Options:

A.

The controllers cannot support tunneled node with AOS-Switches when they are managed by the Mobility Master.

B.

The switches cannot connect to controllers that also support APs.

C.

The controllers must have their software updated before they can support the switches.

D.

The switches must use role-based tunneled node to work with clustering controllers.

Question 14

OSPF Area 1 has two ABRs. One ABR is configured with this range for Area 1: 10.10.0.0/16. The other ABR is not configured with a range for Area 1.

Which type of issue occurs due to this mismatch?

Options:

A.

The ABRs create a discontinuous area and disrupt intra-area routing between devices within Area 1.

B.

The ABR core would send Area 1 traffic destined to the other switch through an access switch.

C.

The ABRs lose adjacency entirely and cannot route traffic between each other at all.

D.

The ABRs lose adjacency in Area 1 and must route all traffic to each other through Area 0.

Question 15

Refer to the exhibits.

Exhibit 1

Exhibit 2

Switch-1 and Switch-2 lost IP connectivity with each other. They did not detect the issue for several seconds and caused a temporary traffic disruption. The administrations expected failover to the backup route through Switch-3 to occur in less than a second. The administrators restore the failed link and view the output on Switch-1, shown in the exhibit.

What should they do to create the expected behavior if connectivity is lost again?

Options:

A.

Lower the hello timer to a given range of times on each OSPF routing switch in VLAN 100

B.

Enable BFD in asynchronous mode on each OSPF routing switch in VLAN 100

C.

Manually configure the network type as point-to-point on each OPSF routing switch in VLAN 100

D.

Set a BFD echo source IP address on each OSPF routing switch in VLAN 100

Question 16

Refer to the exhibits.

Exhibit 1

Exhibit 2

The network administrator needs to set up BGP between the two company switches, Switch-1 and Switch-2. The BGP connection does not establish. Based on the exhibits, what does the administrator need to do to fix the issue?

Options:

A.

Set the update source for the neighbor to the local loopback interface on each switch.

B.

Enter the network command for 10.0.0.0/24 in the router BGP mode on each switch.

C.

Enable the multihop option for the neighbor on each of the switches.

D.

Enable BGP on the interfaces that the switches use to reach each other.

Question 17

Refer to the exhibit.

An AOS-Switch connects to an unmanaged switch in a meeting room. The exhibit shows security settings for this port. Users report that they sometimes lose connectivity and then get it back.

Which best practice should network administrators follow to avoid this issue?

Options:

A.

The loop protection and port security actions should be set to match.

B.

Eavesdrop prevention should be disabled when port security is in limited-continuous mode.

C.

Port security and loop protection should not be enabled on the same port.

D.

Loop protection should operate in VLAN mode, rather than port mode, when port security is enabled.

Question 18

OSPF Area 1 has two ABRs. One ABR is configured with this range for Area 1: 10.10.0.0/16. The other ABR is configured with this range for Area 1: 10.10.0.0/17.

Which type of issue occurs due to this mismatch?

Options:

A.

The ABRs lose adjacency entirely and cannot route traffic between each other at all.

B.

The ABRs create a discontiguous area and disrupt intra-area routing between devices within Area 1.

C.

The ABRs advertise routes inconsistently, and they could potentially introduce a routing loop.

D.

The ABRs lose adjacency in Area 1 and must route all traffic to each other through Area 0.

Question 19

Refer to the exhibits.

Exhibit 2

The network administrator configures the commands shown in Exhibit 2. Which mismatch will cause an issue?

Options:

A.

the mismatch between the key IDs specified in chain10 and chain11 on Switch-1

B.

the mismatch between the key-strings in the chains for VLAN 10 and VLAN 11 on Switch-1

C.

the mismatch between the chain names associated with VLAN 11 on Switch-1 and on Switch-3

D.

the mismatch between the key-strings associated with VLAN 10 on Switch-1 and on Switch-2

Question 20

A network administrator wants to use Aruba AirWave to audit an AOS-Switch configuration. What is one requirement?

Options:

A.

The switch defines the AirWave IP address in its zero touch provisioning (ZTP) profile.

B.

The switch specifies the AirWave IP address for the RADIUS server used for Telnet and SSH authentication.

C.

The switch is authorized in AirWave, which has the correct credentials to log in as a CLI manager.

D.

The switch is set to Manage Read-Write mode in AirWave but is not set to Monitor Only + Firmware Updates.

Question 21

Refer to the exhibit.

AOS-Switches will enforce 802.1X authentication on edge ports. The company has two RADIUS servers, which are meant to provide redundancy and load sharing of requests. The exhibit shows the planned RADIUS setting to deploy to the switches.

Which adjustment to the plan should administrators make in order to meet the customers’ requirements?

Options:

A.

Remove the dynamic authorization setting for both RADIUS servers.

B.

Specify a different RADIUS dynamic authorization port for each of the RADIUS servers.

C.

Specify one server on half of the switches and the other server on the other half of the switches.

D.

Change the order in which the RADIUS servers are specified on half of the switches.

Question 22

Refer to the exhibit.

Endpoints in VLAN 2 connect directly to this switch. These devices should only be able to send DHCP, DNS, HTTP, and HTTPS traffic. However, they are able to send any traffic. Based on the exhibit, what is the issue?

Options:

A.

The ACL lacks a deny ip any any statement at the end

B.

The switch does not have an IP address on VLAN 2

C.

The ACL is applied in the wrong direction

D.

The name of the ACL applied to VLAN 2 is incorrect

Question 23

What is a reason for hello packets between two OSPF routers?

Options:

A.

to permit an OSPF adjacency between two VSF fabrics

B.

to monitor connectivity with the neighbor, but not exchange the routing table

C.

to establish an area that is not directly connected to the backbone Area 0

D.

to permit OSPF to operate between two routers that also run VRRP

Question 24

Refer to the exhibits.

Exhibit 1

Exhibit 2

Switch-1 has a power issue that causes it to fail. When Switch-1 comes back up, endpoints lose connectivity for a few minutes. The network administrator decides to enter this command on Switch-1:

Switch-1 (config)# vlan 10 vrrp vrid 10 preempt-delay-time 120

Exhibit 2 shows the VRRP configuration just after the change. What is the effect of this change?

Options:

A.

Switch-1 and Switch-2 both become Master in their own VRRP virtual router due to the delay timer mismatch. The mismatch must be fixed.

B.

Switch-1 now waits to take over as Master if it fails and recovers. This should prevent the connectivity issue from occurring again.

C.

Switch-1 experiences an internal error in the VRRP process. This error causes Switch-2 to take over as Master for VLAN 2.

D.

Switch-1 continues to act as it did before the preempt delay time was set. Administrators must plan additional changes to fix the issue.

Question 25

Refer to the exhibits.

Exhibit 1.

Exhibit 2.

The exhibits show the current operational state for routes on Switch-3 to send all traffic to 172.16.0.0/16 through Switch-2 during normal operation.

Which single configuration change creates the desired behavior?

Options:

A.

Set a cost of 100 in the redistribute static command on Switch-2 to change the external LSA metric.

B.

Change the OSPF external metric type to 1 on Switch-1, and set a cost of 100 on Switch-3 VLAN 104.

C.

Change the OSPF external metric type to 1 on Switch-1, and set a cost of 100 on Switch-3 VLAN 108.

D.

Set a cost of 100 in the redistribute static command on Switch-1 to change the external LSA metric.

Demo: 25 questions
Total 169 questions