Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

HPE7-A02 Exam - Topic 5 Question 10 Discussion

Actual exam question for HP's HPE7-A02 exam
Question #: 10
Topic #: 5
[All HPE7-A02 Questions]

Refer to the Exhibit.

All of the switches in the exhibit are AOS-CX switches.

What is the preferred configuration on Switch-2 for preventing rogue OSPF routers in this network?

Show Suggested Answer Hide Answer
Suggested Answer: C

To prevent rogue OSPF routers in the network shown in the exhibit, the preferred configuration on Switch-2 is to configure OSPF authentication on Lag 1 in MD5 mode. This setup enhances security by ensuring that only routers with the correct MD5 authentication credentials can participate in the OSPF routing process. This method protects the OSPF sessions against unauthorized devices that might attempt to introduce rogue routing information into the network.

1. OSPF Authentication: Implementing MD5 authentication on Lag 1 ensures that OSPF updates are secured with a cryptographic hash. This prevents unauthorized OSPF routers from establishing peering sessions and injecting potentially malicious routing information.

2. Secure Communication: MD5 authentication provides a higher level of security compared to simple password authentication, as it uses a more robust hashing algorithm.

3. Applicability: Lag 1 is the primary link between Switch-1 and Switch-2, and securing this link helps protect the integrity of the OSPF routing domain.


by Edwin at May 01, 2025, 05:21 PM

Limited Time Offer

25%

Off

Get Premium HPE7-A02 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Alison
4 months ago
MD5 mode for authentication? Sounds solid!
upvoted 0 times
...
Margarett
4 months ago
Disabling OSPF entirely seems too extreme.
upvoted 0 times
...
Brice
4 months ago
Wait, can passive-interface really prevent rogue routers?
upvoted 0 times
...
Elena
5 months ago
I think option B is the best choice here.
upvoted 0 times
...
Sage
5 months ago
OSPF authentication is key for security!
upvoted 0 times
...
Karl
5 months ago
I feel like configuring OSPF authentication in password mode is a safer option, but I’m not entirely confident about the specifics.
upvoted 0 times
...
Ramonita
5 months ago
I practiced a similar question where configuring passive-interface was the right answer, but I can't recall if it applies here too.
upvoted 0 times
...
Dana
6 months ago
I think disabling OSPF entirely on VLANs 10-19 could be too extreme, but it might prevent rogue routers.
upvoted 0 times
...
Dorcas
6 months ago
I remember discussing OSPF authentication in class, but I'm not sure if it should be on VLANs or LAG.
upvoted 0 times
...
Dorathy
6 months ago
Ah, I see. Configuring passive-interface as the default and disabling it on the LAG interface is an interesting approach. That could help prevent rogue OSPF routers from participating in the network. I'll make sure I understand how that works.
upvoted 0 times
...
Cory
6 months ago
Disabling OSPF entirely on those VLANs seems a bit heavy-handed. I think the OSPF authentication options are more targeted solutions. I'll focus on understanding the differences between password mode and MD5 mode.
upvoted 0 times
...
Lettie
6 months ago
Hmm, I'm a bit unsure about this one. OSPF authentication is important, but I'm not sure which option is the best approach here. I'll need to think it through carefully.
upvoted 0 times
...
Patti
6 months ago
This seems like a straightforward OSPF security question. I'll carefully review the options and think through the implications of each one.
upvoted 0 times
...
Bernardine
10 months ago
OSPF authentication, huh? Better make sure it's not the same password I use for my Netflix account. Option B for the win!
upvoted 0 times
Stefania
9 months ago
User4: Sounds good to me. Option B it is!
upvoted 0 times
...
Asha
9 months ago
User3: Agreed, better safe than sorry. Let's go with Option B.
upvoted 0 times
...
Alease
9 months ago
User2: Definitely, authentication is key. Option B sounds like a good choice.
upvoted 0 times
...
Lauran
10 months ago
User1: Yeah, can't be too careful with those rogue OSPF routers.
upvoted 0 times
...
...
Lili
10 months ago
Passive-interface? Sounds like a snooze-fest. But hey, if it works, it works. Option D it is!
upvoted 0 times
Oneida
9 months ago
Brynn: Option D it is then!
upvoted 0 times
...
Brynn
10 months ago
User 2: Yeah, but it's the preferred configuration for preventing rogue OSPF routers.
upvoted 0 times
...
Alita
10 months ago
User 1: I agree, passive-interface does sound boring.
upvoted 0 times
...
...
Linwood
10 months ago
I believe disabling OSPF entirely on VLANs 10-19 could also be a valid option to prevent rogue routers.
upvoted 0 times
...
Precious
10 months ago
I agree with Virgie. Using MD5 mode for OSPF authentication on Lag 1 is a secure way to prevent rogue routers.
upvoted 0 times
...
Dawne
11 months ago
Disable OSPF entirely? That's a bit drastic, don't you think? I'd go with option D to keep things tidy.
upvoted 0 times
Curt
10 months ago
Yeah, option D is a good compromise to prevent rogue OSPF routers without going too far.
upvoted 0 times
...
Adelina
10 months ago
I agree, disabling OSPF entirely seems like overkill. Option D sounds like a better choice.
upvoted 0 times
...
...
Virgie
11 months ago
I think the preferred configuration on Switch-2 should be to Configure OSPF authentication on Lag 1 in MD5 mode.
upvoted 0 times
...
Devon
11 months ago
Password mode? That's so old-school. MD5 is where it's at, baby! Option C for the win!
upvoted 0 times
Amber
10 months ago
User 3: I'm going with option C as well. MD5 all the way!
upvoted 0 times
...
Staci
10 months ago
User 2: Yeah, I think option C is the best choice for preventing rogue OSPF routers.
upvoted 0 times
...
Janessa
10 months ago
User 1: I agree, MD5 is definitely more secure than password mode.
upvoted 0 times
...
...
Ezekiel
11 months ago
Hmm, I think option B is the way to go. Gotta keep those rogue OSPF routers in check, you know?
upvoted 0 times
Latrice
11 months ago
User 3: Definitely, we need to make sure our network is secure from any unauthorized OSPF routers.
upvoted 0 times
...
Micheline
11 months ago
User 2: Yeah, configuring OSPF authentication in password mode on VLANs 10-19 is a good security measure.
upvoted 0 times
...
Chan
11 months ago
User 1: I agree, option B seems like the best choice to prevent rogue OSPF routers.
upvoted 0 times
...
...

Save Cancel