Winter Sale - Special Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: dpt65

HPE6-A73 Questions and Answers

Question # 6

When implementing deficit weighted round robin queuing, what importance does the weight value have?

A.

Prioritizing latency-sensitive traffic

B.

Queue priority in processing traffic

C.

Strict priority queue

D.

Percentage of interface bandwidth

Full Access
Question # 7

The company has just upgraded their access layer switches with AOS-CX switches and implemented an AAA solution with ClearPass. The company has become concerned about what actually connects to the user ports on the access layer switch, Therefore, the company is implementing 802.1X authentication on the AOS-CX switches. An administrator has globally enabled 802.1X, and has enabled it on all the access ports connected to user devices, including VoIP phones, security cameras, and wireless Aruba IAPs. Wireless users are complaining that they successfully authenticate to the IAPs; however, they do not have access to network resources. Previously, this worked before 802.1X was implemented on the AOS-CX switches.

What should the company do to solve this problem?

A.

Implement device-based mode on the lAP-connected AOS-CX switch ports.

B.

Implement local user roles and local forwarding on the AOS-CX switches.

C.

Implement downloadable user roles and user-based tunneling (UBT) on the AOS-CX switches.

D.

Implement AAA RADIUS change of authorization on the AOS-CX switches.

Full Access
Question # 8

An administrator will be replacing a campus switching infrastructure with AOS-CX switches that support VSX capabilities. The campus involves a core, as well as multiple access layers. Which feature should the

administrator implement to allow both VSX-capable core switches to process traffic sent to the default gateway in the campus VLANs?

A.

VRF

B.

VRRP

C.

IP helper

D.

Active gateway

Full Access
Question # 9

Examine the network topology.

Company XYZ has two connections to a service provider (ISP1). Here is the configuration of Router1:

Here is the configuration of Router2:

Based on configuration of Router1 and Router2, which BGP metric is being manipulated?

A.

Weight

B.

Multiple exit discriminator

C.

Local preference

D.

AS path length

Full Access
Question # 10

A network has an ABR that connects area 0 and 1. A network engineer configures a summarized route for area 0. The ABR is a designated router (DR) for the segment it uses to connect to area 1.

Which LSA type is assigned to this route when the summarized route is advertised into area 1 by the ABR?

A.

LSA1

B.

LSA4

C.

LSA3

D.

LSA2

Full Access
Question # 11

Examine the network exhibit:

The ACL configuration defined on Core-1 is as follows:

If telnet was being used, which device connection would be permitted and functional in both directions?

(Choose two.)

A.

Client 3 to Client 2

B.

Client 1 to Client 2

C.

Server 2 to Client 2

D.

Server 1 to Client 1

E.

Client 1 to Client 3

Full Access
Question # 12

Examine the commands entered on an AOS-CX switch:

What is true regarding this configuration for traffic received on interface 100?

A.

The default next-hop address supersedes the two preceding next-hop addresses

B.

The traffic is always dropped is the next-hop addresses are unreachable

C.

The traffic will be routed with the IP routing table entries if the next-hop addresses are unreachable

D.

The next-hop address of 1.1.1.1 is overwritten by the next-hop address of 2.2.2.2

Full Access
Question # 13

A company is implementing AOS-CX switches at the access layer. The company wants to implement access control for employees and guests.

Which security features will require a ClearPass server to be installed and used by the company?

A.

Downloadable user roles

B.

Dynamic segmentation

C.

User-based tunneling (UBT)

D.

Change of authorization (CoA)

Full Access
Question # 14

When implementing user-based tunneling on an AOS-CX switch, which component defines the primary and backup Aruba gateways?

A.

Transit VLAN

B.

Gateway role

C.

Server group

D.

Zone

Full Access
Question # 15

Examine the attached exhibit.

The network administrators is trying to add a remote location as area 3 to the network shown in the diagram.

Based on current connection restrictions, the administrator cannot connect area 3 directly to area 0. The

network is using AOS-CX switches.

Which feature should the administrator implement to provide connectivity to the remote location?

A.

Not-so-stubby areas

B.

Bidirectional forward detection (BFD)

C.

OSPFv3

D.

Virtual links

Full Access
Question # 16

Which concept is implemented using Aruba’s dynamic segmentation?

A.

Root of trust

B.

Device fingerprinting

C.

Zero Touch Provisioning

D.

Colorless port

Full Access
Question # 17

An administrator wants to implement a virtual switching technology that implements a single control-plane solution. Which S-CX switches would meet these criteria?

A.

All AOS-CX switching platforms

B.

AOS-CX 6300 and 6400 switches

C.

AOS-CX 6300, 6400, and 83xx switches

D.

AOS-CX 6300 switches

Full Access
Question # 18

A company has just purchased AOS-CX switches. The company has a free and open-source AAA solution.

The company wants to implement access control on the Ethernet ports of the AOS-CX switches.

Which security features can the company implement given the equipment that they are using?

A.

Port-based tunneling

B.

Device fingerprinting

C.

Local user roles

D.

Downloadable user roles

Full Access
Question # 19

How does PIM build the IP multicast routing table to route traffic between a multicast source and one or more receivers?

A.

It uses the unicast routing table and reverse path forwarding (RPF)

B.

It uses IGMP and calculates a shortest path tree (SPT)

C.

It uses the shortest path first (SPF) algorithm derived from link state protocols

D.

It uses the Bellman-Ford algorithm derived from distance vector protocols

Full Access
Question # 20

Which protocol should be configured to allow NetEdit to discover third-party devices?

A.

SNMP

B.

SSH

C.

HTTPS

D.

HTTP

Full Access
Question # 21

Examine the network exhibit.

A network administrator is implementing OSPF on a VSX pair of aggregation switches: Agg1 and Agg2. VLANs 10 and 20 are connected to layer-2 access switches. Agg-1 and Agg-2 are configured as the default gateway for VLANs 10 and 20, with active gateway enabled.

What is the best practice for configuring OSPF on the aggregation switches and their connection to the Core switch?

A.

Define a layer-2 VSX LAG associated with a layer-3 VLAN interface. Enable active gateway for the Layer-3 VLAN.

B.

Define separate layer-3 VLAN interfaces between the aggregation and core switches. Enable active forwarding for the Layer-3 VLAN.

C.

Define separate layer-3 VLAN interfaces between the aggregation and core switches. Enable active gateway for the Layer-3 VLAN.

D.

Define a layer-2 VSX LAG associated with a layer-3 VLAN interface. Enable active forwarding for the Layer-3 VLAN.

Full Access
Question # 22

Examine the network exhibit.

A company has a guest implementation for wireless and wired access. Wireless access is implemented

through a third-party vendor. The company is concerned about wired guest traffic traversing the same network as the employee traffic. The network administrator has established a GRE tunnel between AOS-CX switches where guests are connected to a routing switch in the DMZ.

Which feature should the administrator implement to ensure that the guest traffic is tunneled to the DMZ while the employee traffic is forwarded using OSPF?

A.

OSPF route maps using the “set metric” command

B.

Policy-based routing (PBR)

C.

User-based tunneling (UBT)

D.

Classifier policies

Full Access
Question # 23

A network administrator wants to centralize the management of AOS-CX switches by implementing NetEdit.

How should the administrator purchase and/or install the NetEdit solution?

A.

Install as a hardware appliance

B.

Installed on a supported version of RedHat Enterprise Linux

C.

Installed in a virtualized solution by using the Aruba-supplied OVA file

D.

Installed on a supported version of Debian Linux

Full Access
Question # 24

A network engineer for a company with 896 users across a multi-building campus wants to gather statistics on an important switch uplink and create actions based on issues that occur on the uplink. How often does an NAE agent gather information from the current state database in regard to the uplink interfaces?

A.

Once every 60 seconds

B.

Once every 1 second

C.

Once every 30 seconds

D.

Once every 5 seconds

Full Access
Question # 25

A company has recently purchased a ClearPass AAA solution. Their network consists of AOS-CX switches at the access layer. The company is implementing a rollout of IoT devices for smart building management to control the lighting and HVAC systems. The network administrator is concerned about allowing secure access to these devices since they only support MAC-Auth.

Which ClearPass feature should the administrator leverage to help determine that MAC address spoofing is not occurring for this group of devices?

A.

User-based tunneling

B.

Device fingerprinting

C.

RADIUS change of authorization

D.

Downloadable user roles

Full Access
Question # 26

An administrator is managing a pair of core AOS-CX switches configured for VSX. Connected to this core are pairs of aggregation layer AOS-CX switches configured for VSX. OSPF is running between the aggregation and core layers. To speed up OSPF convergence, the administrator has configured BFD between the core and aggregation switches.

What is a best practice the administrator should implement to reduce CPU processing on the switches if a BFD neighbor fails?

A.

Disable ICMP redirects

B.

Implement graceful restart

C.

Increase the BFD echo timers

D.

Increase the VSX keepalive timer

Full Access
Question # 27

An administrator is managing a VSX pair of AOS-CX switches An administrator configures the following on the primary AOS-CX switch:

A.

The primary switch will erase VLAN 200 from the VSX pair

B.

The VLAN is only created on the secondary switch.

C.

The operation is not allowed by the switch and a CLI error is displayed

D.

The VLAN is created on both the primary and secondary switches

Full Access
Question # 28

Examine the AOS-CS switch output:

Based on this output, what is correct?

A.

802.1X authentication was successful, but MAC authentication is yet to start

B.

802.1X authentication occurred and downloadable user roles are deployed

C.

A local user role was deployed using a ClearPass solution

D.

Only 802.1X authentication is configured on the port

Full Access
Question # 29

A company is implementing a new wireless design and needs it to support high availability, even during times of switch system upgrades. The solution will involve Aruba Mobility Controller (MC) and Aruba AP connections requiring POE. Which campus AOS-CX switch solution and virtual switching should the company implement at the campus access layer?

A.

AOS-CX 6400 and VSX

B.

AOS-CX 6300 and VSF

C.

AOS-CX 8325 and VSF

D.

AOS-CX 8400 and VSX

Full Access
Question # 30

Examine the attached diagram.

The two PCs are located in VLAN 11 (10.1.11.0/24). Which example defines how to implement active gateway

on the VSX core for VLAN 11?

A.

interface vlan 11

active-gateway ip 10.1.11.1

active-gateway mac 02:02:00:00:01:00

B.

interface lag 254

active-gateway vlan 11 ip 10.1.11.1

active-gateway vlan 11 mac 02:02:00:00:01:00

C.

interface lag 254

active-gateway ip 10.1.11.1

active-gateway mac 02:02:00:00:01:00

D.

vsx

vrrp group 1

Full Access
Question # 31

Which AOS-CX switches support weighted fair queuing (WFQ)?

A.

Both 8320 and 8325

B.

Both 6300 and 6400

C.

8400 only

D.

6300 only

Full Access
Question # 32

Examine the configuration of Core-1 and Core-2. AOS-CX switches configured as a VSX stack:

Core1: Interlace lag 256

no shutdown

no routing

vlan trunk allowed all

lacp mode active Interface 1/1/46

no shutdown

lag 256 Interface 1/1/47

no shutdown

lag 256

VSX

Inter-switch-link lag 256

vsx-sync vsx-global

exit

Cofe2: interlace lag 250

no shutdown

no routing

vlan trunk allowed all

lacp mode active

Interlace 1/1/46

no shutdown

lag 256 Interface 1/1/47

no shutdown

lag 256 vsx

inter-switch-link lag 256

exit

When using the "show vsx status" command, the two switches fall to connect and successfully synchronize. What should the administrator do to fix this issue?

A.

Define a larger MTU on the ISL link of the two switches.

B.

Define the VSX roles on the two switches.

C.

Enable active-active forwarding on the two switches.

Full Access
Question # 33

An administrator is managing a network comprised of AOS-CX switches deployed at the aggregation layer. The switches are paired in a VSX stack and run the OSPF routing protocol. The administrator is concerned about how long it takes for OSPF to converge when one of the VSX switches has to reboot.

What should the administrator to do speed up the OSPF convergence of the switch that is rebooting?

A.

Change the VSXISL link from an OSPF broadcast link point-to-point.

B.

Implement graceful restart on the VSX switches and their neighboring OSPF switches.

C.

Decrease the VSX initial synchronization timer on the two VSX switches.

D.

Define non-backbone areas on the VSX switches as totally stubby areas.

Full Access
Question # 34

How does an administrator install a script and create an agent and actions for the Network Analysis Engine running on AOS-CX switches?

A.

Access the switches' command-line interface.

B.

Access the switches' web user interface

C.

Use Aruba Central's web user interface

D.

Use the NetEdit web user interface

Full Access
Question # 35

Examine the AOS-CX configuration:

The switches have a default factory password setting NetEdit fails to access the configuration of the AOS-CX switches. What should the administrator do to solve this problem?

A.

Set a password for the default admin user account.

B.

Disable telnet globally.

C.

Use the default VRF instead of the mgmt VRF

D.

Enable IP routing globally

Full Access
Question # 36

What is correct regarding rate limiting and egress queue shaping on AOS-CX switches?

A.

Only a traffic rate and burst size can be defined for a queue

B.

Limits can be defined only for broadcast and multicast traffic

C.

Rate limiting and egress queue shaping can be used to restrict inbound traffic

D.

Rate limiting and egress queue shaping can be applied globally

Full Access
Question # 37

What is correct regarding the configuration of ACLs on AOS-CX switches?

A.

Statements with the log keyword are always processed by the switch CPU.

B.

Standard ACLs are used to match on routes when performing route distribution.

C.

Wildcard masks are used to match on a range of IP addresses.

D.

Numbers 100 through 199 and 2000 through 2999 are used when creating extended ACLs.

Full Access
Question # 38

Examine the network topology.

The network is configured for OSPF with the following attributes:

Core1 and Core2 and ABRs

Area 1 has 20 networks in the 10.1.0.0/16 range

Area 0 has 10 networks in the 10.0.0.0/16 range

Area 2 has 50 networks in the 10.2.0.0/16 range

The ASBR is importing a static route into Area 1

Core2 has a summary for Area 2: area 0.0.0.2 range 10.2.0.0/16 type inter-area

Here is the OSPF configuration performed on Core1:

Based on the above information, what is correct?

A.

ISP 1 is not reachable from any area.

B.

Corel has received one type 5 LSA from the ASBR.

C.

Area 0 has 81 routes

D.

Area 1 has 23 routes

Full Access