HP HPE6-A85 Exam Practice Test Instant Access

Question 1

You are working with a pair of 6300M switches in a VSF stack. The switch has 48 SmartRate 5G ports, 2 SFP28 ports, and 2 SFP56 ports. Both SFP56 ports are used for stacking.

You need to provide an LACP connection to another identical stack with the maximum available bandwidth possible. What should you configure?

Aa 16-member LAG using 2 SFP28 ports and 6 SR5 ports on each switch

Ban eight-member LAG using 4 SR5 ports on each switch

Can eight-member LAG using 2 SFP28 ports and 2 SR5 ports on each switch

Da four-member LAG using 2 SFP28 ports on each switch

Answer : A

To provide an LACP connection with the maximum available bandwidth, one should configure a link aggregation group (LAG) using all available ports that can be used for data transfer. Since the SFP56 ports are used for stacking, the next best option is to use the 2 SFP28 ports and as many SmartRate 5G (SR5) ports as possible on each switch, which would allow for a 16-member LAG, with 2 SFP28 and 6 SR5 ports on each switch contributing to the LAG.

Question 2

What is indicated by a flashing amber global status indicator LED on an Aruba CX6200M?

AThe switch has a recoverable fault.

BSelf-test is in progress.

CThe firmware image is corrupt.

DThe switch is booting the firmware image.

Answer : A

A flashing amber global status indicator LED on an Aruba CX6200M switch typically indicates that the switch has encountered a fault, but it is recoverable. This LED behavior serves as an alert to the network administrator that an issue needs to be addressed, but it does not necessarily mean that the switch is inoperable.

Question 3

You have been asked to troubleshoot failed connectivity between a local subnet in the HQ Office and a remote subnet in the Branch Office. PC1 is unable to ping PC2.

Use the provided topology and show command output to identify the reason for the failure:

AOn Branch Office - L3-SW-2- There is no Layer 3 SVI configured in the correct subnet.

BOn HQ Office L3-SW-1 - There is no route to the Branch Office.

COn HQ Office L3-SW-1 - The switch does not have a static default route to the internet.

DOn Branch Office L3-SW-2- The switch does not have a static route to the HQ Office Local Subnet.

Answer : D

Using the provided topology and show command output, it can be determined that L3-SW-2 in the Branch Office does not have a route to reach the subnet where PC1 resides (192.168.1.0/24 in the HQ Office). L3-SW-1 in the HQ Office has a route to the Branch Office subnet (172.16.1.0/24), but without the reciprocal route on L3-SW-2, traffic from the Branch Office will not be able to reach the HQ Office subnet, hence PC1 cannot ping PC2.

Question 4

When does the 802.1x authentication process begin when connecting to a secured enterprise mode WLAN?

AAfter the firewall policies are applied to the session

BAfter the client completes 802.11 association

CAfter the captive portal authentication completes

DAfter the WPA 4-Way Handshake is completed

Answer : B

The 802.1x authentication process begins after the client device completes the 802.11 association with the access point but before the WPA 4-Way Handshake. This is part of the EAP (Extensible Authentication Protocol) process, which authenticates the device before allowing full network access.

Question 5

A network technician is testing a new SSID for a branch office. They are able to connect, get an IP address, and resolve DNS names. However, they are not able to browse the internet.

On the existing SSID at the branch, connectivity to the internet works as expected on the same VLAN as the new SSID. The wireless client should have received a new role to allow internet access.

What should the network technician verify to ensure both SSIDs function in a similar way?

AVerify each SSID's authentication and encryption parameters are enabled and the same.

BVerify that the implicit 'deny all' is the last entry in the firewall policies.

CVerify the new SSID is broadcasting on all the APs at the branch office.

DVerify the firewall policies assigned, making sure the rules are correct and ordered properly.

Answer : D

When a network technician encounters an issue where a new SSID does not allow internet access despite successful connectivity and DNS resolution, they should verify the firewall policies associated with the new SSID. The firewall policies must include rules that permit traffic to and from the internet and should be correctly ordered to ensure that they are applied as intended. Since the existing SSID functions correctly, comparing the firewall rules between the two can be a useful method of troubleshooting.

Question 6

Which statement is true for a device with a MAC address of B8-31-B5-80-41-4F?

AThe device OUI is B8-31-B5 and the device NIC serial number is 80-41-4F

BThe device OUI is B8-31 and the device NIC serial number is B5-80-41-4F

CThe device OUI is 80-41-4F and the device NIC serial number is B8-31-B5

DThe device OUI is B8-31-B5 and the device serial number is MD5 hash is 80-41-4F

Answer : A

A MAC address is divided into two parts: the Organizationally Unique Identifier (OUI) and the Network Interface Controller (NIC) serial number. The OUI is the first three octets of the MAC address and is unique to the manufacturer. The NIC serial number is the last three octets and is unique to the device itself. Therefore, for the MAC address B8-31-B5-80-41-4F, the OUI is B8-31-B5, and the NIC serial number is 80-41-4F.

Question 7

After having configured the edge switch uplink as requested your colleague says that they have failed to ping the core You ask your colleague to verify the connection is plugged in and the switch is powered on They confirm that both are correct You attempt to ping the core switch and confirm that the ping is failing.

Knowing the nature of this deployment, what commands might you use to troubleshoot this issued

APing 10.11 1 - ping the core to attempt to verify connectivity Show trunk - to verify if the LAG interface was correctly added to the switch Show spanning tree - to check for spanning-tree blocked states Show port-access clients interface all - to view any port-access blocking states or failed authentication attempts on all interfaces Show run interface vlan20 - to double check the layer 3 svi configuration is correct for l_3 connectivity Show lldp neighors - to verify whether you are able to see the Core as an L2 neighbor to verify if the correct links are plugged in to the correct ports

Bdiagnostic diag cable-diag 1/1/51 diag cable-diag 1/1/52 - to view diagnostic information for the physical link to get a status on any interruptions to Layer 1 connectivity, show ip route - to verify that the default gateway is present in the routing table show ip ospf - to check whether there is a layer 3 routing protocol enabled show ip dns - to view whether there is a valid dns source

CPing 10.1.1.1 - ping the core to attempt to verify connectivity show lacp agg - to verify which link aggregations are currently configured using which physical ports show lacp int - to verify the LACP status and whether any links are blocking in your topology show lldp neighors - to verify whether you are able to see the Core as an L2 neighbor to verify if the correct links are plugged in to the correct ports show run interface 1/1/51.1/1/52-to ensure the physical interfaces are no-shut and members of the lag show run interface lag 1 - to ensure the correct vlan trunking configuration is applied to the logical interface show run int vlan 20 - to ensure you have the L3 SVI no shut and configured in the correct subnet

DShow run - to view the running configuration of the switch Show run | begin 20 'vlan 20' - to ensure VLAN 20 was correctly added to the database show run | begin 20 'interface vlan 20' - to view the L3 SVI configuration Show run interface 1/1/51.1/1/52 - to ensure the physical interfaces are no shut and were added as members of LAG 1 Show run int lag 1 - to verify LACP mode active was configured to eliminate LACP blocking states

Answer : C

These commands might help troubleshoot this issue as they check various aspects of the connectivity between the edge switch and the core switch, such as Layer 3 reachability, Layer 2 adjacency, LACP configuration and status, VLAN trunking configuration, and interface status. Reference: https://www.arubanetworks.com/techdocs/AOS-CX_10_04/CLI/GUID-8F0E7E8B-0F4B-4A3C-AE7F-0F1B5A7F9C5D.html

HPE6-A85 Aruba Certified Campus Access Associate Exam Practice Test