HP Aruba-ACNSA HPE6-A78 Question # 24 Topic 3 Discussion
HPE6-A78 Exam Topic 3 Question 24 Discussion:
Question #: 24
Topic #: 3
A company has an ArubaOS solution. The company wants to prevent users assigned to the "user_group1" role from using gaming and peer-to-peer applications.
What is the recommended approach for these requirements?
A.
Make sure DPI is enabled, and add application rules that deny gaming and peer-to-peer applications to the "user_groupr role.
B.
Create ALGs for the gaming and peer-to-peer applications, and deny the "user_group1" role on the ALGs.
C.
Add access control rules to the "user_group1" role, which deny HTTP/HTTPS traffic to IP addresses associated with gaming and peer-to-peer applications.
D.
Create service aliases for the TCP ports associated with gaming and peer-to-per applications, and use those aliases in access control rules for the "user_group" rules.
The recommended approach for preventing users in the "user_group1" role from using gaming and peer-to-peer applications in an ArubaOS environment is to enable Deep Packet Inspection (DPI) and add application rules that specifically deny access to these types of applications for the role. DPI allows the network system to analyze the content of network traffic in real time and apply policies based on what it detects, including blocking specific applications like gaming and peer-to-peer sharing. This capability is essential for effectively managing application usage on the network and ensuring compliance with organizational policies. Application-specific rules provide precise control over the network traffic by identifying the application regardless of the network port used, making it a more effective method than blocking based on ports or IP addresses.
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit