HP Aruba Certified Campus Access Professional Exam HPE7-A01 Question # 18 Topic 2 Discussion
HPE7-A01 Exam Topic 2 Question 18 Discussion:
Question #: 18
Topic #: 2
Your customer is having connectivity issues with a newly-deployed Microbranch group The access points in this group are online in Aruba Central, but no VPN tunnels are forming.
What is the most likely cause of this issue?
A.
There is a time difference between the AP and the gateways The gateways should have NTP added
B.
The SSL certificate on the gateway used to encrypt the connection has not been added to the APs trust list
C.
There may be a firewall blocking GRE tunneling between the AP and the gateway
D.
The gateway group is running in automatic cluster mode and should be in manual cluster mode
This is the most likely cause of the issue where the access points in a Microbranch group are online in Aruba Central, but no VPN tunnels are forming. A Microbranch group is a group that contains both APs and Gateways and allows them to form VPN tunnels for secure communication. The VPN tunnels use GRE (Generic Routing Encapsulation) as the encapsulation protocol and IPSec as the encryption protocol. If there is a firewall blocking GRE traffic between the AP and the gateway, the VPN tunnels cannot be established. The other options are incorrect because they either do not affect the VPN tunnel formation or do not apply to a Microbranch group. References: https://www.arubanetworks.com/techdocs/ArubaOS_86_Web_Help/Content/arubaos-solutions/gateways/microbranch.htm https://www.arubanetworks.com/assets/tg/TB_ArubaGateway.pdf
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit