What is one change you must make to meet the scenario requirements?

Refer to the scenario.

A customer requires these rights for clients in the “medical-mobile” AOS firewall role on Aruba Mobility Controllers (MCs):

Permitted to receive IP addresses with DHCP

Permitted access to DNS services from 10.8.9.7 and no other server

Permitted access to all subnets in the 10.1.0.0/16 range except denied access to 10.1.12.0/22

Denied access to other 10.0.0.0/8 subnets

Permitted access to the Internet

Denied access to the WLAN for a period of time if they send any SSH traffic

Denied access to the WLAN for a period of time if they send any Telnet traffic

Denied access to all high-risk websites

External devices should not be permitted to initiate sessions with “medical-mobile” clients, only send return traffic.

The line below shows the effective configuration for the role.

There are multiple issues with this configuration.

What is one change you must make to meet the scenario requirements? (In the options, rules in a policy are referenced from top to bottom. For example, “medical-mobile” rule 1 is “ipv4 any any svc-dhcp permit,” and rule 6 is “ipv4 any any any permit’.)
A .  Apply the “apprf-medical-mobile-sacl" policy explicitly to the “medical-mobile” user-role under the “medical-mobile” policy.
B. In the “medical-mobile” policy, change the action for rules 2 and 3 to reject.
C. In the “medical-mobile” policy, move rule 5 under rule 6.
D. In the “medical-mobile” policy, change the subnet mask in rule 5 to 255.255.252.0.

Answer: D

Latest HPE6-A84 Dumps Valid Version with 60 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments