Aruba Certified Mobility Professional 6.4 ACMP_6.4 Dumps in PDF

Free Aruba ACMP_6.4 Real Questions (page: 18)

Which netdestination aliases are built into the controller? (Choose three)

  1. logon
  2. any
  3. user
  4. guest
  5. localip

Answer(s): B,C,E



What are aliases used for?

  1. improve controller performance
  2. simplify the configuration process
  3. tie IP addresses to ports
  4. assign rules to policies
  5. assign policies to roles

Answer(s): B



Which of the following firewall rules allows a user to initiate an ICMP session to other devices?(Choose two)

  1. localip any svc-icmp permit
  2. user any svc-icmp permit
  3. user user svc-icmp permit
  4. any any svc-icmp permit
  5. mswitch any svc-icmp permit

Answer(s): B,D



What is true about Global Session ACL? (Choose two)

  1. Any rules will apply to all users in the AP-group
  2. Any rules will apply to all users in the Network
  3. Any rules will apply to all users in the controller
  4. Is in the first position in all roles
  5. When added it is in the first position in selected Role

Answer(s): B,D



When creating a firewall rule what are valid choices for the Service/Application field? (Choose three)

  1. Applications
  2. Applications Category
  3. Internet Protocol
  4. Internet Category
  5. Protocol

Answer(s): A,B,E

Explanation:

2-4 - NAT



The Aruba Policy Enforcement Firewall (PEF-NG) module supports destination network address translation (dst-nat).
Which is the default use of this statement in an Aruba controller configuration?

  1. source the IP addresses of users to specific IP address
  2. redirect HTTP sessions to Captive Portal
  3. redirect Access Points to another Aruba controller
  4. provide a telnet connection to the controller
  5. redirect a SSH session to terminate on the controller

Answer(s): B



The Aruba Policy Enforcement Firewall (PEF) module supports source network address translation

(src-nat).
Which is a use of this statement in an Aruba configuration?

  1. provide a single source IP address for users in a role
  2. redirect Captive Portal HTTP sessions
  3. redirect Access Points to another Aruba controller
  4. provide IP addresses to clients
  5. redirects clients to Aruba Firewall

Answer(s): A

Explanation:

2-5 - Policy Interpretation



Review the following truncated output from an Aruba controller for this item.
(example) #show rights logon access-list List
----------------
Position Name Location
-------- ---- --------
1 logon-control
2 captiveportal logon-control
-------------
Priority Source Destination Service Action
-------- ------ ----------- ------- ------
1 user any udp 68 deny
2 any any svc-icmp permit
3 any any svc-dns permit
4 any any svc-dhcp permit
5 any any svc-natt permit captiveportal
-------------
Priority Source Destination Service Action
-------- ------ ----------- ------- ------
1 user controller svc-https dst-nat 8081
2 user any svc-http dst-nat 8080
3 user any svc-https dst-nat 8081
4 user any svc-http-proxy1 dst-nat 8088
5 user any svc-http-proxy2 dst-nat 8088
6 user any svc-http-proxy3 dst-nat 8088
Based on the above output from an Aruba controller, an unauthenticated user assigned to the logon role attempts to start an http session to IP address 172.16.43.170.
What will happen?

  1. the user's traffic will be passed to the IP address because of the policy statement:user any svc-http dst-nat 8080
  2. the user's traffic will be passed to the IP address because of the policy statement:user any svc- https dst-nat 8081
  3. the user's traffic will be passed to the IP address because of the policy statement:user any svc- http-proxy1 dst-nat 8088
  4. the user will not reach the IP address because of the policy statement:user any svc-http dst-nat
  5. the user will not reach the IP address because of the implicit deny any any at the end of the policy.

Answer(s): D



Share your comments for Aruba ACMP_6.4 exam with other users:

S
Sneha
8/17/2023 6:29:00 PM

this is useful

S
sachin
12/27/2023 2:45:00 PM

question 232 answer should be perimeter not netowrk layer. wrong answer selected

T
tomAws
7/18/2023 5:05:00 AM

nice questions

R
Rahul
6/11/2023 2:07:00 AM

hi team, could you please provide this dump ?

T
TeamOraTech
12/5/2023 9:49:00 AM

very helpful to clear the exam and understand the concept.

C
Curtis
7/12/2023 8:20:00 PM

i think it is great that you are helping people when they need it. thanks.

S
sam
7/17/2023 6:22:00 PM

cannot evaluate yet

N
nutz
7/20/2023 1:54:00 AM

a laptops wireless antenna is most likely located in the bezel of the lid

R
rajesh soni
1/17/2024 6:53:00 AM

good examplae to learn basic

T
Tanya
10/25/2023 7:07:00 AM

this is useful information

N
Nasir Mahmood
12/11/2023 7:32:00 AM

looks usefull

J
Jason
9/30/2023 1:07:00 PM

question 81 should be c.

T
TestPD1
8/10/2023 12:22:00 PM

question 18 : response isnt a ?

A
ally
8/19/2023 5:31:00 PM

plaese add questions

D
DIA
10/7/2023 5:59:00 AM

is dumps still valid ?

A
Annie
7/7/2023 8:33:00 AM

thanks for this

A
arnie
9/17/2023 6:38:00 AM

please upload questions

T
Tanuj Rana
7/22/2023 2:33:00 AM

please upload the question dump for professional machinelearning

F
Future practitioner
8/10/2023 1:26:00 PM

question 4 answer is c. this site shows the correct answer as b. "adopt a consumption model" is clearly a cost optimization design principle. looks like im done using this site to study!!!

A
Ace
8/3/2023 10:37:00 AM

number 52 answer is d

N
Nathan
12/17/2023 12:04:00 PM

just started preparing for my exam , and this site is so much help

C
Corey
12/29/2023 5:06:00 PM

question 35 is incorrect, the correct answer is c, it even states so: explanation: when a vm is infected with ransomware, you should not restore the vm to the infected vm. this is because the ransomware will still be present on the vm, and it will encrypt the files again. you should also not restore the vm to any vm within the companys subscription. this is because the ransomware could spread to other vms in the subscription. the best way to restore a vm that is infected with ransomware is to restore it to a new azure vm. this will ensure that the ransomware is not present on the new vm.

R
Rajender
10/18/2023 3:54:00 AM

i would like to take psm1 exam.

B
Blessious Phiri
8/14/2023 9:53:00 AM

cbd and pdb are key to the database

A
Alkaed
10/19/2022 10:41:00 AM

the purchase and download process is very much streamlined. the xengine application is very nice and user-friendly but there is always room for improvement.

D
Dave Gregen
9/4/2023 3:17:00 PM

please upload p_sapea_2023

S
Sarah
6/13/2023 1:42:00 PM

anyone use this? the question dont seem to follow other formats and terminology i have been studying im getting worried

S
Shuv
10/3/2023 8:19:00 AM

good questions

R
Reb974
8/5/2023 1:44:00 AM

hello are these questions valid for ms-102

M
Mchal
7/20/2023 3:38:00 AM

some questions are wrongly answered but its good nonetheless

S
Sonbir
8/8/2023 1:04:00 PM

how to get system serial number using intune

M
Manju
10/19/2023 1:19:00 PM

is it really helpful to pass the exam

L
LeAnne Hair
8/24/2023 12:47:00 PM

#229 in incorrect - all the customers require an annual review

A
Abdul SK
9/28/2023 11:42:00 PM

kindy upload

AI Tutor 👋 I’m here to help!