HPE Aruba Certified Network Security Expert (ACNSX) — Question 102

What is the purpose of the transit VLAN when implementing dynamic segmentation policies involving AOS-CX switches and an Aruba gateway solution?

Answer options

• A. It identifies the VLAN that the switch will use when tunneling the traffic to the gateway.
• B. It identifies the VLAN that the user traffic will be assigned to, whether the traffic is tunneled or locally switched.
• C. It defines the VXLAN identifier to identified UBT traffic between the AOS-CX switches and the gateway solution.
• D. It identifies the VLAN that the user traffic will be assigned to when it comes out of the tunnel and is forwarded by the gateway.

Correct answer: A

Explanation

The correct answer is A because the transit VLAN is specifically the VLAN used for tunneling traffic to the gateway, which is critical in dynamic segmentation. Option B is incorrect as it refers to user traffic assignment rather than tunneling. Option C is also wrong because it discusses VXLAN identifiers, which are unrelated to the transit VLAN's purpose. Option D misinterprets the role of the transit VLAN, which is not about traffic exiting the tunnel.