A customer needs a solution to terminate VPN tunnels for Aruba RAPs. The customer has a single site and a single public IP address for this purpose. Network address translation (NAT) will forward the IPsec traffic to the correct device to terminate the VPN tunnel. The customer also requires N+1 redundancy for the solution. Which solution meets the customer requirements?
The solution that meets the customer requirements of terminating VPN tunnels for Aruba RAPs with a single public IP address and N+1 redundancy is to use two Aruba MCs on the same subnet that use VRRP without clustering. This setup avoids the need for each controller in a cluster to have a unique public IP, which the customer does not have. VRRP provides the necessary redundancy while allowing the IPsec traffic to be forwarded to the correct device.
Answer A is correct - Cluster requires public IP for each node.. 8.4 feature consists of adding the unique public IP (one per cluster node) to each controller configuration in the cluster group profile
Clustering is not recommended for MCs that terminate RAP connections because clustering would require each cluster member to have a public IP address to provide to the RAPs. VRRP-based redundancy will serve the needs for a single site (LMS backup would serve the needs if the customer had a second data center connected at Layer 3 and wanted to deploy the backup controller there)