HP HPE6-A85 Exam Practice Test Instant Access

Question 1

You are working with a pair of 6300M switches in a VSF stack. The switch has 48 SmartRate 5G ports, 2 SFP28 ports, and 2 SFP56 ports. Both SFP56 ports are used for stacking.

You need to provide an LACP connection to another identical stack with the maximum available bandwidth possible. What should you configure?

Aa 16-member LAG using 2 SFP28 ports and 6 SR5 ports on each switch

Ban eight-member LAG using 4 SR5 ports on each switch

Can eight-member LAG using 2 SFP28 ports and 2 SR5 ports on each switch

Da four-member LAG using 2 SFP28 ports on each switch

Answer : A

To provide an LACP connection with the maximum available bandwidth, one should configure a link aggregation group (LAG) using all available ports that can be used for data transfer. Since the SFP56 ports are used for stacking, the next best option is to use the 2 SFP28 ports and as many SmartRate 5G (SR5) ports as possible on each switch, which would allow for a 16-member LAG, with 2 SFP28 and 6 SR5 ports on each switch contributing to the LAG.

Question 2

You have been asked to troubleshoot failed connectivity between a local subnet in the HQ Office and a remote subnet in the Branch Office. PC1 is unable to ping PC2.

Use the provided topology and show command output to identify the reason for the failure:

AOn Branch Office - L3-SW-2- There is no Layer 3 SVI configured in the correct subnet.

BOn HQ Office L3-SW-1 - There is no route to the Branch Office.

COn HQ Office L3-SW-1 - The switch does not have a static default route to the internet.

DOn Branch Office L3-SW-2- The switch does not have a static route to the HQ Office Local Subnet.

Answer : D

Using the provided topology and show command output, it can be determined that L3-SW-2 in the Branch Office does not have a route to reach the subnet where PC1 resides (192.168.1.0/24 in the HQ Office). L3-SW-1 in the HQ Office has a route to the Branch Office subnet (172.16.1.0/24), but without the reciprocal route on L3-SW-2, traffic from the Branch Office will not be able to reach the HQ Office subnet, hence PC1 cannot ping PC2.

Question 3

When does the 802.1x authentication process begin when connecting to a secured enterprise mode WLAN?

AAfter the firewall policies are applied to the session

BAfter the client completes 802.11 association

CAfter the captive portal authentication completes

DAfter the WPA 4-Way Handshake is completed

Answer : B

The 802.1x authentication process begins after the client device completes the 802.11 association with the access point but before the WPA 4-Way Handshake. This is part of the EAP (Extensible Authentication Protocol) process, which authenticates the device before allowing full network access.

Question 4

A network technician is testing a new SSID for a branch office. They are able to connect, get an IP address, and resolve DNS names. However, they are not able to browse the internet.

On the existing SSID at the branch, connectivity to the internet works as expected on the same VLAN as the new SSID. The wireless client should have received a new role to allow internet access.

What should the network technician verify to ensure both SSIDs function in a similar way?

AVerify each SSID's authentication and encryption parameters are enabled and the same.

BVerify that the implicit 'deny all' is the last entry in the firewall policies.

CVerify the new SSID is broadcasting on all the APs at the branch office.

DVerify the firewall policies assigned, making sure the rules are correct and ordered properly.

Answer : D

When a network technician encounters an issue where a new SSID does not allow internet access despite successful connectivity and DNS resolution, they should verify the firewall policies associated with the new SSID. The firewall policies must include rules that permit traffic to and from the internet and should be correctly ordered to ensure that they are applied as intended. Since the existing SSID functions correctly, comparing the firewall rules between the two can be a useful method of troubleshooting.

Question 5

How does a single Aruba CX 6300M switch configuration use L3 connectivity to establish routing traffic between switch virtual interfaces 120 and 130?

ARouting is enabled by default with Aruba 6300M.

BRoute leaking must be configured in default VRF.

CDelete 'no routing' from the SVI interfaces.

DCreate static routes between SVI 120 and 130.

Answer : A

On an Aruba CX 6300M switch, routing between Switch Virtual Interfaces (SVIs) is enabled by default. Therefore, traffic between SVIs, like 120 and 130, can be routed internally without the need for additional configuration such as route leaking or static routes, as long as there is no 'no routing' configuration present on the SVIs.

Question 6

You are in a meeting with a customer where you are asked to explain how the network redundancy feature VRRP works. What is the correct statement for this feature?

AVRRP uses BPDUs for messaging

BVRRP uses multicast for messaging

CVRRP uses unicast for messaging

DVRRP uses broadcast for messaging

Answer : B

Virtual Router Redundancy Protocol (VRRP) is a network protocol that provides automatic assignment of available Internet Protocol (IP) routers to participating hosts. VRRP sends its messages over multicast for communication among routers for the election process of the master and advertisement of the virtual IP address.

Question 7

What information is required when using the ClearPass self-service registration page to generate a Multiple Pre-Shared Key (MPSK) for headless devices?

AThe device's model number

BThe device's MAC address

CThe device's IP address

DThe device's OS type

Answer : B

When generating a Multiple Pre-Shared Key (MPSK) for headless devices using the ClearPass self-service registration page, the MAC address of the device is required. MPSK associates a unique PSK with the MAC address of a device, providing a way to authenticate devices that may not have a user interface.

HPE6-A85 Aruba Certified Campus Access Associate Exam Practice Test