Professional Documents
Culture Documents
Aruba Certified Switching Associate Official Certification Study Guide (EXAM HPE6-A72)
Aruba Certified Switching Associate Official Certification Study Guide (EXAM HPE6-A72)
Aruba Certified Switching Associate Official Certification Study Guide (EXAM HPE6-A72)
First Edition
HPE Press
660 4th Street, #802
San Francisco, CA 94107
ii
Published by:
Hewlett Packard Enterprise Press
660 4th Street, #802
San Francisco, CA 94107
All rights reserved. No part of this book may be reproduced or transmitted in any form or by any means, elec-
tronic or mechanical, including photocopying, recording, or by any information storage and retrieval system,
without written permission from the publisher, except for the inclusion of brief quotations in a review.
ISBN: 978-1-7346275-5-8
FEEDBACK INFORMATION
At HPE Press, our goal is to create in-depth reference books of the best quality and value. Each book
is crafted with care and precision, undergoing rigorous development that involves the expertise of
members from the professional technical community.
Readers’ feedback is a continuation of the process. If you have any comments regarding how we could
improve the quality of this book, or otherwise alter it to better suit your needs, you can contact us
through email at hpepress@epac.com. Please make sure to include the book title and ISBN in your
message.
We appreciate your feedback.
Publisher: Hewlett Packard Enterprise Press
HPE Press Program Manager: Michael Bishop
iii
Introduction
This book is based on the Aruba OS-CX Switching Fundamentals, Rev. 20.21 five-day course. The
material covers the fundamental skills to configure and manage modern, open standards-based wired
networking solutions for small-to-midsized businesses (SMBs) and campus networks. Topics include
VLANs, secure access, redundancy technologies, Aruba’s Virtual Switching Framework (VSF), and
more.
Audience
This book is designed for network administrators tasked with implementing Aruba OS-CX switch
networks. Ideal candidates for this course are networking IT professionals with an introductory level
of experience in deploying small-to-medium scale network solutions.
Assumed Knowledge
This is an entry-level book and certification. Any basic knowledge of switch networking will serve to
aid in your understanding of the material but is not required.
Minimum Qualifications
There are no prerequisite qualifications for the ACSA certification.
Relevant Certifications
After you pass the exam, your achievement may be applicable toward more than one certification. To
determine which certifications can be credited with this achievement, log in to The Learning Center
and view the certifications listed on the exam’s More Details tab. You might be on your way to achiev-
ing additional certifications.
Exam Registration
To register for an exam, go to
https://certification-learning.hpe.com/tr/learn_more_about_exams.html
v
CONTENTS
1 Networking Fundamentals.............................................................1
Basic Network Concepts...........................................................................1
What is a Computing Network?..........................................................1
Network Classifications......................................................................2
What is a Protocol?............................................................................4
OSI Reference Model.........................................................................4
Layer-1: Physical Layer.......................................................................6
Layer-2: Data Link Layer.....................................................................7
Layer-3: Network Layer......................................................................8
Layer-4: Transport Layer.....................................................................9
Layer-5: Session Layer......................................................................10
Layer-6: Presentation Layer...............................................................10
Layer-7: Application Layer................................................................11
Layer Headers.................................................................................12
Protocol Data Units (PDUs)................................................................13
Physical Media......................................................................................14
Physical Media—Copper..................................................................14
Physical Media—Fiber Optic............................................................15
Full Duplex and Half Duplex.............................................................17
Types of Traffic.......................................................................................17
Unicast, Multicast, Broadcast............................................................17
Numerical Systems.................................................................................19
Binary Numerical System.................................................................19
Converting Binary to Decimal...........................................................20
Converting Decimal to Binary...........................................................21
Converting Decimal to Binary—Alternate Method...............................23
Converting Decimal to Binary—Compare and Add............................23
Converting Decimal to Binary—Patterns for Speed.............................24
Hexadecimal Numerical System........................................................25
Converting Binary to Hexadecimal....................................................26
Converting Binary to Hexadecimal....................................................26
Converting Hexadecimal to Binary....................................................27
Converting Decimal to Hexadecimal..................................................28
Converting Hexadecimal to Decimal..................................................29
vi
2 TCP/IP........................................................................................43
Basic Network Concepts.........................................................................43
TCP/IP Stack...................................................................................43
Ethernet..........................................................................................44
Ethernet Frame................................................................................45
IPv4 Header....................................................................................47
TCP Header—Three-way Handshake.................................................48
TCP Header—Sequence Numbers.....................................................49
TCP Header—Port Numbers.............................................................51
TCP Header.....................................................................................51
UDP Header....................................................................................53
Networking Devices...............................................................................54
Switches..........................................................................................54
Routers............................................................................................55
Multi-Layer Switch............................................................................56
Wireless Access Points.....................................................................57
Firewalls.........................................................................................58
Servers...........................................................................................59
Operational Planes: Control, Management, and Data.........................60
Common Networking Services................................................................61
DHCP.............................................................................................61
DNS...............................................................................................62
HTTP...............................................................................................63
Telnet and SSH................................................................................63
FTP.................................................................................................65
vii
Wi-Fi Frames.........................................................................................66
802.11 Frame.................................................................................66
Understanding the Wi-Fi Header.......................................................67
Lab 2.1: Packet Exploration....................................................................68
Overview........................................................................................68
Task 1: Discover Headers and Encapsulation......................................69
Task 2: UDP Header.........................................................................78
Chapter 2 Questions..............................................................................82
The OSI Model................................................................................82
Networking Devices.........................................................................82
4 VLANs......................................................................................151
Overview............................................................................................151
Domains..............................................................................................152
Collision Domains..........................................................................152
Collision Domains and Performance................................................153
Broadcast Domains........................................................................155
Virtual LAN.........................................................................................156
LANs and VLANs...........................................................................156
VLAN Creation..............................................................................157
Access Ports..................................................................................159
802.1Q..............................................................................................161
Extending VLAN Across Multiple Switches.......................................161
Solution: 802.1Q Tagging..............................................................162
802.1Q Tagging............................................................................163
Configure VLAN Trunks: Allowed VLANs.........................................163
Configure VLAN Trunks—Native VLAN...........................................164
MAC Address Table.......................................................................165
Address Resolution Protocol (ARP)...................................................166
ix
Frame Delivery....................................................................................167
Frame Delivery Overview...............................................................167
Lab 4.1: Configure a VLAN..................................................................169
Overview......................................................................................169
Task 1: Explore the AOS-CX Switch CLI...........................................170
Task 2: Explore MAC Address Table................................................174
Task 3: Save Your Configurations....................................................185
Lab 4.2: Add a Second Switch to the Topology.......................................185
Overview......................................................................................185
Task 1: Configure Initial Settings on T11-Access-2............................186
Task 2: Enable Link Between Access Switches...................................195
Task 3: Extend Connectivity for VLAN 1111.....................................204
Task 4: Save Your Configurations....................................................208
Lab 4.3: Add a Core Switch to the Topology..........................................208
Overview......................................................................................208
Task 1: Add Core-1 to the Topology................................................210
Task 2: Adding a Second VLAN......................................................217
Task 3: Save Your Configurations....................................................226
Chapter 4 Questions............................................................................227
Domains.......................................................................................227
VLANs..........................................................................................227
802.1Q........................................................................................228
MAC Address and ARP Tables........................................................228
Frame Delivery..............................................................................228
5 Spanning-Tree Protocol..............................................................229
Overview............................................................................................229
Redundancy........................................................................................230
Redundant Network.......................................................................230
Layer-2 Loops................................................................................230
Broadcast Storms...........................................................................231
Multiple Frame Copies...................................................................232
Spanning-Tree Protocol.........................................................................233
Operation Overview......................................................................233
Spanning-Tree Protocol (STP)..........................................................234
Overview of Spanning-Tree Protocol................................................235
Rapid Spanning-Tree Protocol Elements..................................................236
Overview......................................................................................236
Bridge Identifier.............................................................................236
Bridge Protocol Data Unit...............................................................237
x
Port States.....................................................................................237
Path Cost.......................................................................................238
Port Roles: Designated and Root......................................................239
Port Roles: Alternate and Backup....................................................240
RSTP Operation...................................................................................241
Operational Overview...................................................................241
Root Switch Election.......................................................................241
Select Root Ports in Non-Root Switches............................................243
Selecting Designated Ports and Alternate Ports.................................244
Edge Ports.....................................................................................247
Topology Change Mechanism.........................................................247
Lab 5.1: Configuring Rapid Spanning-Tree Protocol................................249
Task 1: Add the Redundant Core Switch and Redundant Links...........250
Task 2: Verify the Topology.............................................................256
Task 3: Test Link Failure..................................................................268
Task 4: Save Your Configurations....................................................272
Lab 5.2: Deploying MSTP.....................................................................273
Task 1: Inspect MST Region Configuration........................................274
Task 3: Save Your Configurations....................................................287
Chapter 5 Questions............................................................................288
Redundancy..................................................................................288
Spanning-Tree Protocol..................................................................288
RSTP Operation.............................................................................289
6 Link Aggregation.......................................................................291
Overview............................................................................................291
Link Aggregation Overview............................................................291
Link Aggregation—Interface Requirements.......................................293
Static and Dynamic LAG.......................................................................294
Static LAG.....................................................................................295
Configuring Layer-2 Static Link Aggregation Group..........................296
Dynamic LAG or LACP...................................................................297
LACP Operational Modes...............................................................297
Configuring Layer-2: Dynamic Aggregation Group..........................298
Verifying the LAG Interface.............................................................299
Load Sharing.......................................................................................299
Load Balancing Algorithm..............................................................299
Link Aggregation Load Balancing....................................................300
Lab 6.1: Link Aggregation between Core Switches..................................301
Overview......................................................................................301
Task 1: Pre-Lab Setup.....................................................................302
xi
8 VRRP........................................................................................375
Overview......................................................................................375
Need for Layer-3 Redundancy........................................................375
First Hop Redundancy Protocol........................................................376
Virtual Router Redundancy Protocol.................................................377
VRRP Instances..............................................................................378
VRRP Instances Validate Capacity....................................................379
Master Election..............................................................................379
Virtual IP Address..........................................................................379
VRRP Failover Operation................................................................381
VRRP Preemption...........................................................................381
VRRP and MSTP Coordination.........................................................382
Lab 8: Deploying VRRP.........................................................................383
Overview......................................................................................383
Task 1: Enable IP Settings in Core-2.................................................384
Task 2: Deploying VRRP..................................................................385
Task 3: Test VRRP Failover...............................................................391
Task 4: VRRP and MST Coordination...............................................397
Task 4: Save Your Configurations....................................................398
Chapter 8 Questions............................................................................399
VRRP Master Election.....................................................................399
VRRP Preemption...........................................................................399
Subnetting.....................................................................................405
Subnet Masking Using Binary.........................................................407
Class B Subnet Mask Example.........................................................408
Class C Subnet Mask Example........................................................409
Finding the Network, Subnet, and Host Portion................................410
Subnetting and Network Design......................................................411
Subnetting Design Example............................................................412
Subnetting Tasks............................................................................413
Subnet Analysis Introduction.................................................................414
Determining the Subnet address......................................................414
Determining the Best Mask..............................................................420
VLSM and CIDR...................................................................................422
Fixed vs Variable Length Subnet Mask.............................................422
VSLM Example..............................................................................423
Classless Inter-Domain Routing Introduction.....................................427
CIDR Example...............................................................................428
Lab 9: Subnetting and VLSM.................................................................429
Overview......................................................................................429
Task 1: Class A Subnetting..............................................................429
Task 2: Class B Subnetting..............................................................430
Task 3a: Class C Subnetting Part 1..................................................431
Task 4a: VLSM Prefixes...................................................................432
Task 4b: VLSM — Point to Point Segments........................................433
Chapter 9 Questions............................................................................434
IPv4 Address Classes, Reserved Addresses, Private, and Public IPv4
Addressing....................................................................................434
Class B Subnet Masking Example....................................................434
VLSM Example, CIDR Example........................................................434
12 Stacking...................................................................................517
Overview......................................................................................517
Stacking Technologies...........................................................................517
Operational Planes: Control, Management, and Data.......................517
Introduction to Stacking Technologies...............................................519
Distributed Data Plane and Distributed Link Aggregation..................520
Aruba VSF Stacking Solution and Platforms.....................................521
VSF Member Roles and Links..........................................................521
VSF Open Virtual Switch Database.................................................522
VSF Topologies..............................................................................524
VSF Requirements..........................................................................524
VSF Member ID and Port Numbers..................................................525
VSF Configuration Example............................................................526
VSF Pre-Provisioning......................................................................526
Tracing Layer-2 Unicast Traffic........................................................527
VSF Failover and OSPF Graceful-Restart..........................................528
VSF Link Failure.............................................................................530
Split Detection Using Multi-Active Detection......................................531
VSX Introduction............................................................................532
Lab 12: Static Routes���������������������������������������������������������������������������532
Overview�������������������������������������������������������������������������������������532
Lab 12.1: Create a Virtual Switching Framework Stack...........................533
Overview......................................................................................533
Task 1: Deploy a VSF Stack............................................................534
Task 2: Configure Distributed Link Aggregation................................541
Task 3: Save Your Configurations....................................................548
Lab 12.2: Maintaining the VSF Stack.....................................................548
Overview......................................................................................548
Task 1: Secondary Member............................................................550
Task 2: Split-Brain Detection............................................................555
Task 3: Save Your Configurations....................................................565
xvi
Chapter 12 Questions..........................................................................566
Operational Planes – Control, Management, and Data.....................566
Aruba VSF Stacking Solution and Platforms, VSF Member
Roles and Links..............................................................................566
VSF Topologies, VSF Requirements, VSF Configuration.....................566
13 Secure Management
and Maintenance......................................................................567
Overview......................................................................................567
Management and Maintenance.............................................................568
Out-Of-Band Management Port......................................................568
Management VRF..........................................................................568
Ping and Traceroute in the Management VRF...................................569
SSH for AOS-CX...........................................................................570
HTTPS for AOS-CX........................................................................571
Web Interface................................................................................572
Authentication, Authorization, and Accounting................................573
Role-Based Access Control (RBAC)..................................................573
RBAC Configuration.......................................................................574
RADIUS-Based Management Authentication.....................................575
Simple Network Management Protocol (SNMP)................................576
SNMP Versions..............................................................................578
Configuration File Management......................................................578
Checkpoint Overview.....................................................................580
Checkpoint Configuration...............................................................581
Checkpoint Auto Mode...................................................................581
Operating System Image Management Introduction..........................582
Operating System Image Management Access.................................583
Password Recovery Process............................................................584
Reset to Factory Default..................................................................584
Lab 13: Secure Management Access.....................................................585
Overview......................................................................................585
Task 1: Management Port...............................................................586
Task 2: RBAC.................................................................................588
Task 3: RADIUS-Based Management...............................................594
Task 4: Explore AOS-CX Web UI....................................................596
Task 5: Save Your Configurations....................................................611
Chapter 13 Questions..........................................................................614
OOBM Port, Management VRF, Ping, and Traceroute
in the Management VRF.................................................................614
SSH for Aruba OS-CX, HTTPS for Aruba OS-CX, Web Interface........615
xvii
Practice Test....................................................................................651
Minimum Qualifications........................................................................651
HPE6-A72 Exam Details.......................................................................651
HPE6-A72 Testing Objectives................................................................652
Test Preparation Questions and Answers................................................654
Questions......................................................................................654
Answers........................................................................................663
Physical Media..............................................................................673
Binary to Decimal Conversion.........................................................673
Chapter 2 Answers..............................................................................674
The OSI Model..............................................................................674
Networking Devices.......................................................................674
Chapter 3 Answers..............................................................................675
Network Design.............................................................................675
Switch Platforms............................................................................675
Console Port..................................................................................675
Getting Switch Information.............................................................675
Network Discovery.........................................................................675
Chapter 4 Answers..............................................................................675
Domains.......................................................................................675
VLANs..........................................................................................676
802.1Q........................................................................................676
MAC Address and ARP Tables........................................................676
Frame Delivery..............................................................................676
Chapter 5 Answers..............................................................................676
Redundancy..................................................................................676
Spanning-Tree Protocol..................................................................677
RSTP Operation.............................................................................677
Chapter 6 Answers..............................................................................677
Static and Dynamic LAG................................................................677
Load Sharing.................................................................................678
Deploying LACP.............................................................................678
Chapter 7 Answers..............................................................................678
IP Network Mask...........................................................................678
IP Routing Table.............................................................................678
Packet Delivery..............................................................................679
Chapter 8 Answers..............................................................................679
VRRP Master Election.....................................................................679
VRRP Preemption...........................................................................679
Chapter 9 Answers..............................................................................679
IPv4 Address Classes, Reserved Addresses, Private, and Public IPv4
Addressing....................................................................................679
Class B Subnet Masking Example....................................................679
VLSM Example, CIDR Example........................................................680
Chapter 10 Answers............................................................................680
Administrative Distance..................................................................680
Routing Protocols...........................................................................680
xix
Chapter 12 Answers............................................................................680
Operational Planes – Control, Management, and Data.....................680
Aruba VSF Stacking Solution and Platforms, VSF
Member Roles and Links.................................................................680
VSF Topologies, VSF Requirements, VSF Configuration.....................681
Chapter 13 Answers............................................................................681
OOBM Port, Management VRF, Ping, and Traceroute in
the Management VRF.....................................................................681
SSH for Aruba OS-CX, HTTPS for Aruba OS-CX, Web Interface........681
AAA, RBAC, RADIUS-based Management Authentication.................681
Configuration File Management, Checkpoint Overview,
Password Recovery........................................................................681
Chapter 14 Answers............................................................................682
Introduction to Aruba NetEdit.........................................................682
NetEdit Installation, NetEdit Initial Configuration – Licensing,
NetEdit GUI Login, Configure Switches to Support NetEdit................682
Aruba CX Mobile App Overview, Aruba CX Mobile
App Features.................................................................................682
Index..............................................................................................683
1 Networking
Fundamentals
EXAM OBJECTIVES
� Describe computing networks
Network Classifications
Based on the geographical coverage a computing network can be categorized as a Local Area Network
(LAN) or a Wide Area Network (WAN). A LAN is a group of computer devices that are geographi-
cally co-located in the same place. For example, a group of devices within a building can be consid-
ered a LAN.
LANs are used in several settings:
Small Office/Home Office (SOHO)
Office LANs
Building LANs
Campus LANs
OFFICIAL CERTIFICATION STUDY GUIDE (EXAM HPE6-A72) 3
Aruba Certified Switching Associate
A WAN on the other hand is a group of computer resources that can communicate over large geo-
graphical distances—typically a few kilometers or miles, and perhaps thousands of miles, such as the
Internet. The Internet is considered a WAN since it permits communication across countries and
continents (Figure 1-2).
Typically, WANs are deployed by Internet Service Providers (ISP) since those companies have the
economic resources to interconnect long distances. Examples of WAN technologies include the
following:
Internet