HPE Aruba Certified Associate (ACA) – Network Security — Question 42

A large multinational financial institution has contracted you to design a new full-stack wired and wireless network for their new 6-story regional office building. The bottom two floors of this facility will be retail space for a large banking branch. The upper floors will be carpeted office space for corporate users, each floor being approximately 100,000 sq ft (9290 sq m). Data centers are all offsite and will be out of scope for this project. The customer is underserved by its existing L2-based network infrastructure and would like to take advantage of modem best practices in the new design. The network should be fully resilient and fault-tolerant, with dynamic segmentation at the edge.
The retail space will include public guest Wi-Fi access. Retail associates will have corporate tablets for customer service, and there will be a mix of wired and wireless devices throughout the retail floors. The corporate users will primarily use wireless for connectivity, but several wired clients, printers, and hard VoIP phones will be in use.
The customer is also planning on renovating the corporate office space in order to take advantage of ‘smart office’ technology. These improvements will drive blue-dot wayfinding, presence analytics, and other location-based services.
The client decides that they would like for all of their exposed printer, conference room, and VoIP phone connections to be controlled by a stateful firewall.
What could be planned to ensure that these ports will meet the customer's requirements?

Answer options

Correct answer: B

Explanation

The correct answer is B, Multi-Zone, as it allows for the segmentation of different types of traffic and devices, which is essential for managing exposed connections like printers and VoIP phones securely through a stateful firewall. Options A (Tunneled Node), C (Web Portal), and D (Airgroup) do not provide the necessary capabilities for dynamic segmentation and access control required by the client.