Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

HP Exam HPE7-A01 Topic 5 Question 22 Discussion

Actual exam question for HP's HPE7-A01 exam
Question #: 22
Topic #: 5
[All HPE7-A01 Questions]

What is one advantage of using OCSP vs CRLs for certificate validation?

Show Suggested Answer Hide Answer
Suggested Answer: A

Active gateway is a first hop redundancy protocol that eliminates a single point of failure. The active gateway feature is used to increase the availability of the default gateway servicing hosts on the same subnet. An active gateway improves the reliability and performance of the host network by enabling a virtual router to act as the default gateway for that network.If you have enabled active gateway, VRRP is not required3. Active gateway is similar to VRRP in that routed traffic from the VSX node is sourced from the switch interface MAC and not the virtual MAC address (VMAC). Each active gateway sends a periodic broadcast hello packet to avoid VMAC aging on the access switches.The switch views the active gateway IP as a self IP address3.Active gateway is preferable over VRRP because with VRRP traffic is still pushed over the ISL link, resulting in latency in the network3. Therefore, VRRP and active gateway are mutually exclusive on a VLAN, and answer A is correct.


by Ronny at Jul 09, 2024, 07:58 AM

Limited Time Offer

25%

Off

Get Premium HPE7-A01 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Georgene
3 months ago
Wait, we're supposed to use OCSP instead of CRLs? I thought we were supposed to use both to really confuse the bad guys.
upvoted 0 times
Jesus
2 months ago
C) higher availability for certificate validation
upvoted 0 times
...
Herminia
2 months ago
B) less complex to implement
upvoted 0 times
...
Aide
2 months ago
A) reduces latency between the time a certificate is revoked and validation reflects this status
upvoted 0 times
...
...
Mike
3 months ago
Longer validity periods? Awesome, I can just set it and forget it. No need to worry about all that pesky revocation stuff.
upvoted 0 times
...
Elenore
3 months ago
High availability for certificate validation? Sign me up! I need my certificates to be as reliable as my morning coffee.
upvoted 0 times
Mariko
3 months ago
C) higher availability for certificate validation
upvoted 0 times
...
Lezlie
3 months ago
B) less complex to implement
upvoted 0 times
...
Nicolette
3 months ago
A) reduces latency between the time a certificate is revoked and validation reflects this status
upvoted 0 times
...
...
Rose
3 months ago
B is the clear winner here. Keepin' it simple, you know? I'm not trying to be a rocket scientist, just a security pro.
upvoted 0 times
Elmer
2 months ago
A) reduces latency between the time a certificate is revoked and validation reflects this status
upvoted 0 times
...
Norah
2 months ago
C) higher availability for certificate validation
upvoted 0 times
...
Wilda
2 months ago
I agree, simplicity is key when it comes to security measures.
upvoted 0 times
...
Venita
2 months ago
A) reduces latency between the time a certificate is revoked and validation reflects this status
upvoted 0 times
...
Lenny
3 months ago
B) less complex to implement
upvoted 0 times
...
Aron
3 months ago
B) less complex to implement
upvoted 0 times
...
...
Kent
3 months ago
Option A seems like the way to go. Who wants to wait forever for their certificate validation to catch up with reality?
upvoted 0 times
...
Reta
4 months ago
But CRLs are easier to implement, so that could be an advantage too.
upvoted 0 times
...
Lorean
4 months ago
I agree with Romana, it's important to have real-time certificate validation.
upvoted 0 times
...
Romana
4 months ago
I think one advantage of using OCSP is that it reduces latency between revocation and validation.
upvoted 0 times
...

Save Cancel