HP Exam HPE7-A02 Topic 5 Question 10 Discussion

Actual exam question for HP's HPE7-A02 exam

Question #: 10
Topic #: 5

[All HPE7-A02 Questions]

Refer to the Exhibit.

All of the switches in the exhibit are AOS-CX switches.

What is the preferred configuration on Switch-2 for preventing rogue OSPF routers in this network?

ADisable OSPF entirely on VLANs 10-19.

BConfigure OSPF authentication on VLANs 10-19 in password mode.

CConfigure OSPF authentication on Lag 1 in MD5 mode.

DConfigure passive-interface as the OSPF default and disable OSPF passive on Lag 1.

Show Suggested Answer

Suggested Answer: C

To prevent rogue OSPF routers in the network shown in the exhibit, the preferred configuration on Switch-2 is to configure OSPF authentication on Lag 1 in MD5 mode. This setup enhances security by ensuring that only routers with the correct MD5 authentication credentials can participate in the OSPF routing process. This method protects the OSPF sessions against unauthorized devices that might attempt to introduce rogue routing information into the network.

1. OSPF Authentication: Implementing MD5 authentication on Lag 1 ensures that OSPF updates are secured with a cryptographic hash. This prevents unauthorized OSPF routers from establishing peering sessions and injecting potentially malicious routing information.

2. Secure Communication: MD5 authentication provides a higher level of security compared to simple password authentication, as it uses a more robust hashing algorithm.

3. Applicability: Lag 1 is the primary link between Switch-1 and Switch-2, and securing this link helps protect the integrity of the OSPF routing domain.

by Edwin at May 01, 2025, 05:21 PM

Limited Time Offer

25%

Off

Get Premium HPE7-A02 Questions as Interactive Web-Based Practice Test or PDF