Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

HPE7-A02 Exam - Topic 5 Question 10 Discussion

Refer to the Exhibit.All of the switches in the exhibit are AOS-CX switches.What is the preferred configuration on Switch-2 for preventing rogue OSPF routers in this network?
C) Configure OSPF authentication on Lag 1 in MD5 mode.
A) Disable OSPF entirely on VLANs 10-19.
B) Configure OSPF authentication on VLANs 10-19 in password mode.
D) Configure passive-interface as the OSPF default and disable OSPF passive on Lag 1.

HPE7-A02 Exam - Topic 5 Question 10 Discussion

Actual exam question for HP's HPE7-A02 exam
Question #: 10
Topic #: 5
[All HPE7-A02 Questions]

Refer to the Exhibit.

All of the switches in the exhibit are AOS-CX switches.

What is the preferred configuration on Switch-2 for preventing rogue OSPF routers in this network?

Show Suggested Answer Hide Answer
Suggested Answer: C

To prevent rogue OSPF routers in the network shown in the exhibit, the preferred configuration on Switch-2 is to configure OSPF authentication on Lag 1 in MD5 mode. This setup enhances security by ensuring that only routers with the correct MD5 authentication credentials can participate in the OSPF routing process. This method protects the OSPF sessions against unauthorized devices that might attempt to introduce rogue routing information into the network.

1. OSPF Authentication: Implementing MD5 authentication on Lag 1 ensures that OSPF updates are secured with a cryptographic hash. This prevents unauthorized OSPF routers from establishing peering sessions and injecting potentially malicious routing information.

2. Secure Communication: MD5 authentication provides a higher level of security compared to simple password authentication, as it uses a more robust hashing algorithm.

3. Applicability: Lag 1 is the primary link between Switch-1 and Switch-2, and securing this link helps protect the integrity of the OSPF routing domain.


by Edwin at May 01, 2025, 05:21 PM

Limited Time Offer

25%

Off

Get Premium HPE7-A02 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Alison
6 months ago
MD5 mode for authentication? Sounds solid!
upvoted 0 times
...
Margarett
6 months ago
Disabling OSPF entirely seems too extreme.
upvoted 0 times
...
Brice
6 months ago
Wait, can passive-interface really prevent rogue routers?
upvoted 0 times
...
Elena
6 months ago
I think option B is the best choice here.
upvoted 0 times
...
Sage
7 months ago
OSPF authentication is key for security!
upvoted 0 times
...
Karl
7 months ago
I feel like configuring OSPF authentication in password mode is a safer option, but I’m not entirely confident about the specifics.
upvoted 0 times
...
Ramonita
7 months ago
I practiced a similar question where configuring passive-interface was the right answer, but I can't recall if it applies here too.
upvoted 0 times
...
Dana
7 months ago
I think disabling OSPF entirely on VLANs 10-19 could be too extreme, but it might prevent rogue routers.
upvoted 0 times
...
Dorcas
7 months ago
I remember discussing OSPF authentication in class, but I'm not sure if it should be on VLANs or LAG.
upvoted 0 times
...
Dorathy
8 months ago
Ah, I see. Configuring passive-interface as the default and disabling it on the LAG interface is an interesting approach. That could help prevent rogue OSPF routers from participating in the network. I'll make sure I understand how that works.
upvoted 0 times
...
Cory
8 months ago
Disabling OSPF entirely on those VLANs seems a bit heavy-handed. I think the OSPF authentication options are more targeted solutions. I'll focus on understanding the differences between password mode and MD5 mode.
upvoted 0 times
...
Lettie
8 months ago
Hmm, I'm a bit unsure about this one. OSPF authentication is important, but I'm not sure which option is the best approach here. I'll need to think it through carefully.
upvoted 0 times
...
Patti
8 months ago
This seems like a straightforward OSPF security question. I'll carefully review the options and think through the implications of each one.
upvoted 0 times
...
Bernardine
12 months ago
OSPF authentication, huh? Better make sure it's not the same password I use for my Netflix account. Option B for the win!
upvoted 0 times
Stefania
11 months ago
User4: Sounds good to me. Option B it is!
upvoted 0 times
...
Asha
11 months ago
User3: Agreed, better safe than sorry. Let's go with Option B.
upvoted 0 times
...
Alease
11 months ago
User2: Definitely, authentication is key. Option B sounds like a good choice.
upvoted 0 times
...
Lauran
11 months ago
User1: Yeah, can't be too careful with those rogue OSPF routers.
upvoted 0 times
...
...
Lili
12 months ago
Passive-interface? Sounds like a snooze-fest. But hey, if it works, it works. Option D it is!
upvoted 0 times
Oneida
11 months ago
Brynn: Option D it is then!
upvoted 0 times
...
Brynn
12 months ago
User 2: Yeah, but it's the preferred configuration for preventing rogue OSPF routers.
upvoted 0 times
...
Alita
12 months ago
User 1: I agree, passive-interface does sound boring.
upvoted 0 times
...
...
Linwood
1 year ago
I believe disabling OSPF entirely on VLANs 10-19 could also be a valid option to prevent rogue routers.
upvoted 0 times
...
Precious
1 year ago
I agree with Virgie. Using MD5 mode for OSPF authentication on Lag 1 is a secure way to prevent rogue routers.
upvoted 0 times
...
Dawne
1 year ago
Disable OSPF entirely? That's a bit drastic, don't you think? I'd go with option D to keep things tidy.
upvoted 0 times
Curt
11 months ago
Yeah, option D is a good compromise to prevent rogue OSPF routers without going too far.
upvoted 0 times
...
Adelina
12 months ago
I agree, disabling OSPF entirely seems like overkill. Option D sounds like a better choice.
upvoted 0 times
...
...
Virgie
1 year ago
I think the preferred configuration on Switch-2 should be to Configure OSPF authentication on Lag 1 in MD5 mode.
upvoted 0 times
...
Devon
1 year ago
Password mode? That's so old-school. MD5 is where it's at, baby! Option C for the win!
upvoted 0 times
Amber
12 months ago
User 3: I'm going with option C as well. MD5 all the way!
upvoted 0 times
...
Staci
12 months ago
User 2: Yeah, I think option C is the best choice for preventing rogue OSPF routers.
upvoted 0 times
...
Janessa
12 months ago
User 1: I agree, MD5 is definitely more secure than password mode.
upvoted 0 times
...
...
Ezekiel
1 year ago
Hmm, I think option B is the way to go. Gotta keep those rogue OSPF routers in check, you know?
upvoted 0 times
Latrice
1 year ago
User 3: Definitely, we need to make sure our network is secure from any unauthorized OSPF routers.
upvoted 0 times
...
Micheline
1 year ago
User 2: Yeah, configuring OSPF authentication in password mode on VLANs 10-19 is a good security measure.
upvoted 0 times
...
Chan
1 year ago
User 1: I agree, option B seems like the best choice to prevent rogue OSPF routers.
upvoted 0 times
...
...

Save Cancel