HPE Aruba Certified ClearPass Expert (ACCX) — Question 28

A customer is migrating from a Cisco VSS system to an ArubaOS-CX VSX cluster. In order to provide default gateway functionality, the local network administrator creates VLAN interfaces. The network administrator then migrates successfully from Cisco to Aruba.
The next day a manager asks if the solution is redundant. The network administrator realizes that there is no redundancy on the default gateway functionality.
What is the preferred solution with the least amount of configuration and disturbance?

Answer options

• A. For every VLAN interface, configure an active gateway IP with the same IP address as already present in the first VSX node. Configure this on both switches.
• B. Remove the IP address on every VLAN interface, and replace it with another one in the same subnet. Configure active gateway IP with the default gateway address on every VLAN interface on both switches.
• C. For every VLAN interface, configure a VRRP IP address with the same IP address as already present in the first VSX node. Configure this on both switches.
• D. Remove the IP address on every VLAN interface, and replace it with another one in the same subnet. Configure VRRP with the default gateway address as virtual IP-address per VLAN.

Correct answer: D

Explanation

Option D is the correct answer because it establishes redundancy by implementing VRRP, allowing for a virtual IP address to serve as the default gateway, thus ensuring failover capabilities. The other options either lack redundancy or require unnecessary IP address changes, which could lead to additional configuration complexity and potential network disruption.