A company has AOS-CX switches. The company wants to make it simpler and faster for admins to detect denial of service (DoS) attacks, such as ping or ARP floods, launched against the switches.
What can you do to support this use case?
A . Deploy an NAE agent on the switches to monitor control plane policing (CoPP).
B . Implement ARP inspection on all VLANs that support end-user devices.
C . Configure the switches to implement RADIUS accounting to HPE Aruba Networking ClearPass and enable HPE Aruba Networking ClearPass Insight.
D . Enabling debugging of security functions on the switches.
Answer: A
Explanation:
To support the detection of denial of service (DoS) attacks on AOS-CX switches, deploying an NAE (Network Analytics Engine) agent to monitor control plane policing (CoPP) is the best approach.NAE agents provide real-time analytics and monitoring capabilities, allowing administrators to detect anomalies and potential DoS attacks, such as ping or ARP floods, more quickly and efficiently. Control plane policing helps protect the switch’s CPU from unnecessary or malicious traffic, and the NAE agent can alert administrators when thresholds are exceeded, providing a proactive measure to detect and mitigate DoS attacks.
Latest HPE7-A02 Dumps Valid Version with 450 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund