Login / Register   My Cart (0)

Here are all the actual test exam dumps for IT exams. Most people prepare for the actual exams with our test dumps to pass their exams. So it's critical to choose and actual test pdf to succeed.

All Products Contact now

Exam HPE7-A02 Topic 3 Question 113 Discussion

Actual exam question for HP's HPE7-A02 exam
Question #: 113
Topic #: 3
A company wants to enforce these controls on clients assigned to "role1":
DHCP permitted
DNS permitted
All other access to 10.0.0.0/8 denied
All other traffic permitted
You have so far configured these settings:
class ip class1
10 match udp any any eq 67
20 match udp any any eq 53
30 match tcp any any eq 53
class ip class2
10 match any any 10.0.0.0/255.0.0.0
port-access policy policy1
10 class ip class1
20 class ip class2 action drop
port-access role role1
associate policy policy1
What change should you make to fulfill the company's requirements?

Suggested Answer: A Vote an answer

The existing policy permits DHCP and DNS through class1, then drops traffic matching class2, which is traffic destined for 10.0.0.0/8. However, the requirement also says all other traffic must be permitted. To make that policy complete, a final catch-all permit class must be added after the deny rule. A class that matches "any any any" and is referenced at the end of policy1 permits all traffic that did not match the earlier DHCP/DNS or 10.0.0.0/8 rules. Changing class2 to ignore would remove the intended deny behavior.
Reversing source and destination would not meet the stated destination-based requirement. Adding action permit to class1 only affects DHCP and DNS, not all other traffic.

by Phyllis at May 07, 2026, 09:48 AM

Limited Time Offer

15%

Off

Get Premium HPE7-A02 Questions as Interactive Self Test Engine or PDF

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Nick name: Submit Cancel
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

Here are all the actual test exam dumps for IT exams. Most people prepare for the actual exams with our test dumps to pass their exams. So it's critical to choose and actual test pdf to succeed.

RECENT DISCUSSIONS

Useful Links

Contact Us

Our Working Time: ( GMT 0:00-15:00 )
From Monday to Saturday

Support: Contact now 

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Copyright © 2026 Actual4test NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy

Disclaimer:
Actual4test doesn't offer Real SANS and GIAC Exam Questions.
Oracle and Java are registered trademarks of Oracle and/or its affiliates
Actual4test material do not contain actual actual Oracle Exam Questions or material.
Actual4test doesn't offer Real Microsoft Exam Questions.
Microsoft®, Azure®, Windows®, Windows Vista®, and the Windows logo are registered trademarks of Microsoft Corporation
Actual4test Materials do not contain actual questions and answers from Cisco's Certification Exams. The brand Cisco is a registered trademark of CISCO, Inc
CFA Institute does not endorse, promote or warrant the accuracy or quality of these questions. CFA® and Chartered Financial Analyst® are registered trademarks owned by CFA Institute.
Actual4test does not offer exam dumps or questions from actual exams. We offer learning material and practice tests created by subject matter experts to assist and help learners prepare for those exams. All certification brands used on the website are owned by the respective brand owners. Actual4test does not own or claim any ownership on any of the brands.