HPE6-A73 Aruba Certified Switching Professional Exam Question and Answers

An administrator wants to use an existing Aruba gateway's firewall policies to filter both wireless and wired traffic. Which AOS-CX switch feature should a customer implement to ensure the gateway applies the same or similar firewall policies to users' wired and wireless traffic?

A network has two AOS-CX switches connected to two different service providers. The administrator is

concerned about bandwidth consumption on the service provider links and learned that the service providers were using the company as a transit AS.

Which feature should the administrator implement to prevent this situation?

What is correct regarding rate limiting and egress queue shaping on AOS-CX switches?

Examine the output from an AOS-CX switch implementing a dynamic segmentation solution involving

downloadable user roles:

Switch# show port-access role clearpass

Role information:

Name : icxarubadur_employee-3044-2

Type : clearpass

Status: failed, parsing_failed

Reauthentication Period :

Authentication Mode :

Session Timeout :

The downloadable user roles are not being downloaded to the AOS-CX switch. Based on the above output,

what is the problem?

Which concept is implemented using Aruba’s dynamic segmentation?

A company has implemented 802.1X authentication on AOS-CX access switches, where two ClearPass

servers are used to implement AAA. Each switch has the two servers defined. A network engineer notices the following command configured on the AOS-CX switches:

radius-server tracking user-name monitor password plaintext aruba123

What is the purpose of this configuration?

A network administrator is implementing a configuration plan in NetEdit. The administrator used NetEdit to push the configuration plan to the switch. Which option in the NetEdit planning section should the administrator select to save the configuration running on the switch to the startup-config?

A company uses NetEdit to manage a network of 700 AOS-CX switches and approximately 1,000 other SNMP-capable devices.

Which management solution should the company use to monitor all the devices, as well as see a topology picture of how all the devices are connected together?

An administrator has configured the following on an AOS-CX switch:

What is the correct ACL rule configuration that would allow traffic from anywhere to reach the web ports on the

two specified servers?

Examine the attached diagram

Two AOS-CX switches are configured for VSX at the access layer, where servers attached to them. An SVI interface is configured for VLAN 10 and serves as the default gateway for VLAN 10. The ISL link between the switches fails, but the keepalive interface functions. Active gateway has been configured on the switches.

What is correct about access from the servers to the Core?

Examine the network exhibit.

A network administrator is implementing OSPF on a VSX pair of aggregation switches: Agg1 and Agg2. VLANs 10 and 20 are connected to layer-2 access switches. Agg-1 and Agg-2 are configured as the default gateway for VLANs 10 and 20, with active gateway enabled.

What is the best practice for configuring OSPF on the aggregation switches and their connection to the Core switch?

What must a network administrator implement in order to run an NAE script on an AOS-CX switch?

How is voice traffic prioritized correctly on AOS-CX switches?

A network engineer for a company with 896 users across a multi-building campus wants to gather statistics on an important switch uplink and create actions based on issues that occur on the uplink. How often does an NAE agent gather information from the current state database in regard to the uplink interfaces?

A network administrator is implementing BGP for a larger network. The network has over 20 exit points across 15 different BGP routers. The administrator does not want to implement a fully-meshed iBGP peering between all BGP routers.

Which feature should the administrator implement to reduce the number of peers the administrator needs to define?

An administrator is managing a network comprised of AOS-CX switches deployed at the aggregation layer. The switches are paired in a VSX stack and run the OSPF routing protocol. The administrator is concerned about how long it takes for OSPF to converge when one of the VSX switches has to reboot.

What should the administrator to do speed up the OSPF convergence of the switch that is rebooting?

What is the correct way of associating a VRF instance to either a VLAN or an interface?

A customer has twenty AOS-CX switches that will be managed by NetEdit and would like support for NetEdit these switches will exist in the network for at least five years.

Which type of licensing should be used by this customer?

Which protocols are used by NetEdit to interact with third-party devices? (Choose two.)

An administrator wants to leverage the Network Analysis Engine (NAE) feature on AOS-CX switches to perform rootcause analysis and to assist in quicklyidentifying problems. Which two AOS-CX databases does the administrator have access to when implementing scripts? (Select two.)

When comparing PIM-DM and PIM-SM, which multicast components are only found with PIM-SM in multicast routing? (Choose two.)

A network engineer is setting up BGP on AOS-CX switches. The engineer is establishing two different eBGP peering’s to two different service providers. The engineer has dozens of contiguous C-class public networks that need to be advertised to the two service providers. The engineer manually defines the networks to be advertised individually with the "network" command.

How can an administrator advertise only a summarized route to the two service providers?

An administrator is supporting a network with the access layer consisting of AOS-CX 6300 and 6400 switches. The administrator needs to quickly deploy Aruba IAPs and security cameras in the network, ensuring that the correct QoS and VLAN settings are dynamically applied to the switch ports. Currently, switches are not configured to do device authentication, and no authentication server exists in the network.

Which AOS-CX feature should the administrator use to dynamically assign the policy settings to the correct switch ports?

Examine the network exhibit.

A company has a guest implementation for wireless and wired access. Wireless access is implemented

through a third-party vendor. The company is concerned about wired guest traffic traversing the same network as the employee traffic. The network administrator has established a GRE tunnel between AOS-CX switches where guests are connected to a routing switch in the DMZ.

Which feature should the administrator implement to ensure that the guest traffic is tunneled to the DMZ while the employee traffic is forwarded using OSPF?

An administrator is managing a VSX pair of AOS-CX switches An administrator configures the following on the primary AOS-CX switch:

The AOS-CX mobile app allows a network engineer or technician to perform which tasks? (Choose two.)

What is a best practice concerning voice traffic and dynamic segmentation on AOS-CX switches?

What would prevent two OSPF routers from forming an adjacency? (Select two.)

Examine the attached diagram.

The two PCs are located in VLAN 11 (10.1.11.0/24). Which example defines how to implement active gateway

on the VSX core for VLAN 11?

A network administrator is tasked to set up BGP in the company's network. The administrator is defining an eBGP peering between an AOS-CX switch and a directly-connected service provider. The administrator has configured the following on the AOS-CX switch:

However, when using the "show bgp all summary" command, the state does not display "Established" for the eBGP peer. What must the administrator configure to fix this issue?

How is NetEdit installed at a customer location?

A network administrator is attempting to troubleshoot a connectivity issue between a group of users and a

particular server. The administrator needs to examine the packets over a period of time from their desktop;

however, the administrator is not directly connected to the AOS-CX switch involved with the traffic flow.

What is correct regarding the ERSPAN session that needs to be established on an AOS-CX switch? (Choose two.)

A company is implementing AOS-CX switches at the access layer. The company wants to implement access control for employees and guests.

Which security features will require a ClearPass server to be installed and used by the company?

An administrator implements interim accounting for guest users so that ClearPass can track the amount of bandwidth that guests upload and download. Guests that abuse bandwidth consumption should be disconnected from the network. The administrator configures the following on the AOS-CX access switches:

After performing this configuration, the administrator notices that guest users that have exceeded the guest bandwidth limit are not being disconnected. Upon further investigation, Access Tracker in ClearPass indicates a disconnect CoA message is being sent to the AOS-CX switch.

What is causing this issue?

When implementing user-based tunneling on an AOS-CX switch, which component defines the primary and backup Aruba gateways?