Weekend Sale Limited Time Flat 70% Discount offer - Ends in 0d 00h 00m 00s - Coupon code: 70spcl

Activedumpsnet Logo
  1. Home
  2. F5
  3. BIG-IP ASM
  4. 303
  5. 303 - BIG-IP ASM Specialist

F5 303 BIG-IP ASM Specialist Exam Practice Test

Page: 1 / 52
Total 520 questions
Get 303 Full Access Download 303 PDF

BIG-IP ASM Specialist Questions and Answers

Question 1

AN LTM Specialist receives reports that an external company application is having reliability issues. The F5 Administrator finds the following in /vat/log/ltm file.

Question # 1

The LTM Specialist determines that the F5 LTMdevice is entering into Aggressive Mode Adaptive Reaping, which is causing the site reliability issues.

What is the most likely reason that the LTM device has entered into Aggressive Mode Adaptive Reaping?

Options:

A.

The LTM device exceeds licensed traffic limits.

B.

The site has too many licensed modules.

C.

The LTM device has not provisioned AVR.

D.

The site is under DDOS attack

Question 2

There are three servers in the pool: 172.16.20.1, 172.16.20.2, and 172.16.20.3, with the virtual IP address 10.0.20.88.

A user CANNOT connect to an HTTP application. To understand the problem and find a solution, the LTM Specialist runs two concurrent traces on the LTM device, with the following results:

Trace on client side:

tcpdump: verbose output suppressed, use -v or -vv for full protocol decode

listening on 0.0, link-type EN10MB (Ethernet), capture size 96 bytes

22:22:07.423759 IP 172.16.20.100.53875 > 10.0.20.88.80: S 998346084:998346084(0) win 5840

22:22:07.424056 IP 10.0.20.88.80 > 172.16.20.100.53875: S 4671780:4671780(0) ack 998346085 win 4380

22:22:07.424776 IP 172.16.20.100.53875 > 10.0.20.88.80: . ack 1 win 365

22:22:07.424790 IP 172.16.20.100.53875 > 10.0.20.88.80: P 1:149(148) ack 1 win 365

22:22:07.424891 IP 10.0.20.88.80 > 172.16.20.100.53875: . ack 149 win 4528

22:22:12.024850 IP 10.0.20.88.80 > 172.16.20.100.53875: R 1:1(0) ack 149 win 4528

6 packets captured

6 packets received by filter

0 packets dropped by kernel

Trace on server side:

tcpdump: verbose output suppressed, use -v or -vv for full protocol decode

listening on internal, link-type EN10MB (Ethernet), capture size 96 bytes

22:22:07.424881 IP 172.16.20.100.53875 > 172.16.20.2.80: S 51116678:51116678(0) win 4380

22:22:08.424893 IP 172.16.20.100.53875 > 172.16.20.2.80: S 51116678:51116678(0) win 4380

22:22:09.625082 IP 172.16.20.100.53875 > 172.16.20.2.80: S 51116678:51116678(0) win 4380

22:22:10.825194 IP 172.16.20.100.53875 > 172.16.20.2.80: S 51116678:51116678(0) win 4380

4 packets captured

4 packets received by filter

0 packets dropped by kernel

What should the LTM Specialist do to solve the problem?

Options:

A.

Edit the packet filter rules.

B.

Modify the monitor of the pool.

C.

Enable the virtual server.

D.

Configure the virtual server to use SNAT.

Question 3

An SSL application is being migrated to the LTM device. Both encrypted and unencrypted traffic are accepted by the server. The virtual server configuration is as follows:

Question # 3

Which LTM device profile should be used on the LTM device to reduce the CPU load on the current.

Options:

A.

Protocol

B.

serverssl

C.

clientsssl

D.

stream

Question 4

A BIG-IP Administrator needs to restore an encrypted UCS archive from the command line using the

TMSH utility.

Which TMSH command should the BIG-IP Administrator use to accomplish this?

Options:

A.

load/sys ucs passphrase

B.

load/sys config file passphrase

C.

load/sys config file

D.

load/sys ucs no-license

Question 5

One of the two members of a device group has been decommissioned. The BIG-IP Administrator tries to

delete the device group, but is unsuccessful.

Prior to removing the device group, which action should be performed?

Options:

A.

Disable the device group

B.

Remove all members from the device group

C.

Remove the decommissioned device from the device group

D.

Make sure all members of the device group are in sync

Question 6

Refer to the exhibit.

Question # 6

A BIG-IP Administrator creates a new Virtual Server. The end user is unable to access the page. During

troubleshooting, the administrator learns that the connection between the BIG-IP system and server is

NOT set up correctly.

What should the administrator do to solve this issue?

Options:

A.

Disable Address Translation

B.

Set Address Translation to Auto Map, configure a SNAT pool, and have pool members in the same subnet of the servers

C.

Set Address Translation to SNAT and configure a specific translation address

D.

Set Address Translation to SNAT and have self-IP configured in the same subnet of servers

Question 7

-- Exhibit –

Question # 7

-- Exhibit --

Refer to the exhibit.

An LTM Specialist is troubleshooting a new HTTP monitor on a pool. The pool member is functioning correctly when accessed directly through a browser, although the monitor is marking the member as down. As part of the troubleshooting, the LTM Specialist has captured the monitor traffic via tcpdump.

How should the LTM Specialist resolve this issue?

Options:

A.

Add the 'http' monitor to the pool.

B.

Add the 'icmp' monitor to the node.

C.

Modify the receive string to valid content.

D.

Correct the firewall rules on the pool member.

Question 8

An LTMSpecialist must reconfigure a BIG-IP LTM system that load balances traffic to web application servers. The application developer inform the LTM Specialist that TLS must be used to communicate

with the application servers.

Which additional profile isrequired as part of virtual server configuration?

Options:

A.

SPDV profile

B.

Server SSL

C.

Client SSL

D.

Rewrite profile

Question 9

Refer to the exhibit.

Question # 9

An LTM device has a virtual server mapped to www.f5.com. Users report that when they connect to

/resources/201.1.2h.l_l.com they are unable to receive content.

What is the likely cause of the issue?

Options:

A.

The pool associated with the virtual server does not have priority group activation enabled.

B.

The virtual address does not have ARP enabled.

C.

The virtual address does not have route advertising enabled.

D.

The pool associated with the virtual server is falling its health check.

Question 10

A BIG-IP Administrator reviews the log files to determine the cause of a recent problem and finds the

following entry.

Mar 27.07.58.48 local/BIG-IP notice mcpd {5140} 010707275 Pool member 172.16.20.1.10029 monitor

status down.

What is the cause of this log message?

Options:

A.

The pool member has been disabled.

B.

The pool member has been marked as Down by the BIG-IP Administrator.

C.

The monitor attached to the pool member needs a higher timeout value.

D.

The monitor attached to the pool member has failed.

Question 11

A BIG-IP Administrator plans to upgrade a BIG-IP device to the latest TMOS version.

Which two tools could the administrator leverage to verify known issues for the target versions?

(Choose two.)

Options:

A.

F5 University

B.

F5 Downloads

C.

F5 End User Diagnostics (EUD)

D.

FSiHealth

E.

F5 Bug Tracker

Question 12

-- Exhibit –

Question # 12

-- Exhibit --

Refer to the exhibit.

An LTM Specialist has created a virtual server to load balance traffic to a pool of HTTPS servers. The servers use client certificates for user authentication. The virtual server has clientssl, serverssl, and http profiles enabled. Clients are unable to connect to the application through the virtual server. Clients are able to connect to the application servers directly.

What is the root cause of the problem?

Options:

A.

The application server does NOT support 2048-bit keys.

B.

The clientssl profile is NOT set to require a client certificate.

C.

The LTM device does NOT trust the issuing CA of the client certificate.

D.

The application server does NOT see the client certificate due to SSL offload.

Question 13

An organization’s development team creates an application to put behind the F5LTM device. The application can be quite load intensive at first, and then evens out over time. The team’s load balancing method needs to select a pool after taking into account the pool member’s response over the time to avoid landing on a busy pool member.

Which of the following load balancing methods meets this requirement?

Options:

A.

Fastest (application)

B.

Predictive (member)

C.

Dynamic (node)

D.

Observed (member)

Question 14

A BIG-IP Administrator finds the following log entry:

tnm tmm[7141]: 011e0002:4: sweeperjjpdate: aggressive mode activated.

Which action should the BIG-IP Administrator to mitigate this memory issue?

Options:

A.

Configure the redundant par to be active-active

B.

Decrease the TCP profile ide Timeout value

C.

increase the TCP profile ide Timeout value

D.

Configure the serve to use Connection Mirroring

Question 15

Refer to the Exhibit.

Question # 15

An LTM Specialist notices that two members in a pool are overloaded. To relive the existing members a fourth member (10.128.20.14) is brought up.

How many member will receive and process new connections?

Options:

A.

4

B.

3

C.

2

D.

1

Question 16

The BIG-IP Administrator needs to ensure the correct health monitor is being used lor a new HTTP pool

named P_example.

Where should the BIG-IP Administrator validate these settings in the Configuration Utility?

Options:

A.

Local Traffic > Nodes > Default Monitor

B.

Local Traffic > Profiles > Services > HTTP > http

C.

Local Traffic > Monitors > http

D.

Local Traffic > Pools > P_ example

Question 17

An LTM device is load balancing SIP traffic. An LTM Specialist notices that sometimes the SIP request is being load balanced to the same server as the initial connection.

Which setting in the UDP profile will make the LTM device more evenly distribute the SIP traffic?

Options:

A.

Enable Datagram LB

B.

Disable Datagram LB

C.

Set Timeout to Indefinite

D.

Set Timeout to Immediate

Question 18

-- Exhibit –

Question # 18

-- Exhibit --

Refer to the exhibit.

An LTM Specialist is investigating reports that users are unable to perform some commands through an FTP virtual server. The users are receiving the FTP error "500 Illegal PORT command." The virtual server is configured to SNAT using automap. The LTM Specialist performs a capture on the server side of the LTM device.

Why is the server returning this error?

Options:

A.

LIST command disallowed

B.

PORT command disallowed

C.

Active IP address in PORT command

D.

Active IP address in LOGIN command

Question 19

An LTM device an application that requires all connections to be secured via SSL The device must verify that request contain a specific cookie before allowing the request to be sent to the pool member.

Which virtual server type should an LTM Specialist configure on the LTM device?

Options:

A.

Stateless

B.

Performance (HTTP)

C.

Standard

D.

Performance (Layer 4)

E.

Forwarding (IP)

Question 20

A Client makes the request displayed below to the application server.

Which virtual server type should an LTM Specialist use to load balance based on the URI?

.A. Forwarding (Layer 2)

B. Stateless

C.Standard

D. Performance (Layer 4)

Options:

Question 21

Refer to the exhibit.

Question # 21

How are new connections load balanced?

Options:

A.

To the first two members listed with the same priority group

B.

To the pool member with the least number of connections

C.

To the pool member with a high priority group value defined

D.

To the pool member with a low priority group value defined

Question 22

Refer to the exhibit.

Question # 22

A pool is contoured with four members. A user has a currentconnection established with 10.18.1.40. The virtual server has a persistence Profile configured.

Options:

A.

10.18.1.10

B.

10.18.1.20

C.

10.18.1.40

D.

10.18.1.30

Question 23

Which log file should the BIG-IP Administrator check to determine if a specific user tried to log in to the 8IG-IP Configuration by utility?

Options:

A.

/var/log/pam/tally/log

B.

/ver/log/secure

C.

/var/log/trn

D.

/var/log/http.d

Question 24

Refer to the exhibit

Question # 24

Question # 24

The network team creates a new VLAN on the switches. The BIG-IP Administrator needs to create a

configuration on the BIG-IP device. The BIG-IP Administrator creates a new VLAN and Self IP, but the

servers on the new VLAN are NOT reachable from the BIG-IP device.

Which action should the BIG-IP Administrators to resolve this issue?

Options:

A.

Set Port Lockdown of Set IP to Allow All

B.

Change Auto Last Hop to enabled

C.

Assign a physical interface to the new VLAN

D.

Create a Floating Set IP Address

Question 25

An HA pair of LTM devices that load balance multiple HTTPS applications utilizes highly customized RAM Cache and compression profiles on each virtual server. The LTM Specialist who is administering the HA pair regularly observes entines in the log similar to the following:

tmm tmm I708S1 011e0002.4. sweeper_update: aggressive mode activated (117504/138240 pages)

No DoS attacks arc occurring. No user problems have been reported. Which step should the LTM Specialist take to help mitigate the issue?

Options:

A.

change the Adaptive Reaping High watermark

B.

change the Adaptive Reaping Low watermark

C.

allocate less memory to the RAM cache feature

D.

use a OneConnect profile

Question 26

A OneConnect profile is applied to a virtual server. The LTM Specialist would like the client source IP addresses within the 10.10.10.0/25 range to reuse an existing server side connection.

Which OneConnect profile source mask should the LTM Specialist use?

Options:

A.

0.0.0.0

B.

255.255.255.0

C.

255.255.255.128

D.

255.255.255.224

E.

255.255.255.255

Question 27

A node is a member of various pools and hosts different web applications. If a web application is unavailable, the BIG-IP appliance needs to mark the pool member down for that application pool. What should a BIG-IP Administrator deploy at the pool level to accomplish this?

Options:

A.

A UDP monitor with a custom interval/timeout

B.

A combination of ICMP + TCP monitor

C.

An HTTP monitor with custom send/receive strings

D.

A TCP monitor with a custom interval/timeout

Question 28

-- Exhibit –

Question # 28

-- Exhibit --

Refer to the exhibit.

An administrator created a monitor to a pool member web server, which resulted in a pool member that is marked red. The administrator knows the web server is working when it is accessed from another computer.

What should the administrator do to correct the problem?

Options:

A.

Change the default gateway on the server.

B.

Create a SNAT in the LTM device configuration.

C.

Change the route to the client in the LTM configuration.

D.

Change the username and/or password on the monitor.

Question 29

Which type of Virtual Server requires the use of a FastL4 profile?

Options:

A.

Performance (Layer 4)

B.

Stateless

C.

Performance (HTTP)

D.

Standard

Question 30

-- Exhibit –

Question # 30

-- Exhibit --

Refer to the exhibit.

Which two items can be consolidated to simplify the LTM configuration? (Choose two.)

Options:

A.

/Common/vs1-https-redirect

B.

/Common/vs2-https-redirect

C.

/Common/vs3-https-redirect

D.

/Common/vs4-https-redirect

E.

/Common/vs5-https-redirect

Question 31

Refer to the exhibit

Question # 31

A connection is being established to IP 1.1.1.1 on port 8080.

Which virtual server will handle the connection?

Options:

A.

fwd_8080_vs

B.

host_vs

C.

host_ 8080_VS

D.

fwdvs

Question 32

A high-availability (HA) pair configuration uses only the hardwire serial cable connection to determine device state. A power outage occurs to the PDU powering the active unit. The standby unit takes over the active role as expected.

How is the peer unit able to determine the active unit is unavailable?

Options:

A.

voltage loss on serial cable

B.

no data stream received on serial port

C.

no response on management interface

D.

no heartbeat packets received on self IPs

Question 33

A Standard Virtual Server for a web application is configured with Automap for the Source Address Translation option. The original source address of the client must be known by the backend servers. What should the BIG-IP Administrator configure to meet this requirement?

Options:

A.

The Virtual Server type as Performance (HTTP)

B.

An HTTP profile to insert the X-Forward-For header

C.

An HTTP Transparent profile

D.

A SNAT Pool with the client IP

Question 34

A BIG-IP Administrator creates an HTTP Virtual Server using an iApp template. After the Virtual Server is

created, the user requests to change the destination IP addresses. The BIG-IP Administrator tries to

change the destination IP address from 10.1.1.1 to 10.2.1.1 in Virtual Server settings, but receives the

following error:

The application service must be updated using an application management interface

What is causing this error?

Options:

A.

The Application Service was NOT deleted before making the IP address change.

B.

The IP addresses are already in use.

C.

The Application Services have Strict Updates enabled.

D.

The IP addresses used are NOT from the same subnet as the Self IP.

Question 35

-- Exhibit –

Question # 35

Question # 35

-- Exhibit --

Refer to the exhibits.

How should the LTM Specialist minimize the configuration?

Options:

A.

Remove the pool member level monitors.

B.

The configuration is as minimized as possible.

C.

Create a single monitor and apply it to each pool member.

D.

Create a single monitor, apply it to the pool, and remove the pool member level monitors.

Question 36

Exhibit.

Question # 36

The three VLANS shown provide connectivity to backend servers. The backend servers are being moved to unmanaged switches and require separate interfaces.

How should the F5 device interfaces be configured?

Options:

A.

Create a Trunk interface and combined interface 1.1.1.2 and 1.3.

B.

Create a Trunk interface and select VLAN„A, VLAN_B. and VLAN_C.

C.

Create VLAN named VLAN_A enter 100 under Tag and moveinterface 1.1 to tagged Create VLAN_B enter 200 and move interface 1.2 to tagged Create VLAN_C Center 300 and move interface 1.3 to tagged.

D.

Create VLAN_A move interface 1.1 to untagged. Create VLAN_B move interface 1.2 to untagged. Create VLAN_C move interface 1.3 to untagged.

Question 37

An LTM Specialist is troubleshooting an HTTP monitor. The pool member is accessible directly through a browser, but the HTTP monitor is marking the pool member as down.

GET / HTTP/1.1

HTTP/1.1 400 Bad Request

DatE. Tue, 23 Oct 2012 21:39:07 GTM

Server: Apache/2.2.22 (FreeBSD) PHP/5.4.4

mod_ssl/2.2.22 OpenSSL/0.9.8q DAV/2

Content-LengtH. 226

Connection: close

Content-TypE. text/html; charset=iso-8859-1

How should the LTM Specialist resolve this issue?

Options:

A.

Add '200 OK' to the monitor's receive string.

B.

Add 'Connection: close\r\n' to the monitor's send string.

C.

Change the interval on the monitor from 5 seconds to 30 seconds.

D.

Change the HTTP version in the send string from HTTP/1.1 to HTTP/1.0.

Question 38

An application requires load balancing functionality. The application must beencrypted to the client.

Certain content must be manipulated by the following IRule:

Question # 38

Which set of profiles must be applied to the virtual server?

Options:

A.

TCP, HTTP server SSL Stream

B.

TCP, HTTP, Client SSL, Stream

C.

TCP, HTTP, OnceConnect, Stream

D.

Fast L4, HTTP server SSL Stream

Question 39

An LTM device load balances a pool of routers. The LTM device needs to verify pathavailability to an HTTP server with the IP address 192 168.10 10. located beyond the routers.

Which monitor type and parameters arc required?

Options:

A.

HTTP monitor alias address 192 168.10 10. and set the alias to port 80

B.

TCP monitor, alias address 192.168.10.10. and set the alias to port 80

C.

TCP monitor change transparent option to Yes. set alias address 192.168.10.10. and set the alias to port 80

D.

TCP monitor, change transparent option to Yes, and sot the alias to port 80

Question 40

While investigating the cause of a device failover, an LTM Specialist discovers the following events in /var/log/ltm:

01010029:5: Clock advanced by 518 ticks

01010029:5: Clock advanced by 505 ticks

01010029:5: Clock advanced by 590 ticks

01010029:5: Clock advanced by 568 ticks

01010029:5: Clock advanced by 1681 ticks

01010029:5: Clock advanced by 6584 ticks

01140029:5: HA daemon_heartbeat tmm fails action is failover and restart.

010c0026:5: Failover condition, active attempting to go standby.

Which issue caused the failover?

Options:

A.

NTP being out of sync

B.

TMM being descheduled

C.

VLAN Fail-safe heartbeats

D.

HA missing heartbeat packets

Question 41

Traffic to a pool of SFTP servers that share storage must be balanced by an LTM device.

What are therequired profile and persistence settings for a standard virtual server?

Options:

A.

tcp, ctientsst, ftp serverssl persistence

B.

tcp, clientssl, serverssl persistence

C.

tcp, ftp - Source address persistence

D.

tcp - no persistence profile will be used

Question 42

Refer to the exhibit.

Question # 42

Which two pool members should be chosen for a new connection? (Choose two.)

Options:

A.

172.16.15.9.80

B.

172.16.15.4.80

C.

172.10.15.2.80

D.

172.16.15.1.80

E.

172.16.15.7.80

Question 43

-- Exhibit –

Question # 43

-- Exhibit --

Refer to the exhibit.

A pair of LTM devices are deployed in a high-availability (HA) pair as the diagram shows. After inserting a new rule on the firewalls, the LTM devices become Standby. The rule drops all outbound sessions to the Internet. Only inbound connections are allowed from the Internet. There are no other changes to the environment.

What triggered the LTM device failover?

Options:

A.

HA Group

B.

Auto Failback

C.

VLAN Failsafe

D.

Gateway Failsafe

Question 44

A failover event is recorded in the log messages:

Jan 01 00:00:50 BIG-IP notice sod[5855]: 01140029:5: HA proc_running tmm fails action is go offline and down links.

Jan 01 00:00:50 BIG-IP notice sod[5855]: 010c0050:5: Sod requests links down.

Jan 01 00:00:50 BIG-IP notice sod[5855]: 010c0054:5: Offline for traffic group /Common/traffic-group-1.

Jan 01 00:00:50 BIG-IP notice sod[5855]: 010c003e:5: Offline

Jan 01 00:00:50 BIG-IP notice logger: /usr/bin/tmipsecd --tmmcount 4 ==> /usr/bin/bigstart stop racoon

Jan 01 00:00:50 BIG-IP info lacpd[5502]: 01160016:6: Failover event detected. (Switchboard failsafe disabled while offline)

Jan 01 00:00:51 BIG-IP err bcm56xxd[5296]: 012c0010:3: Failover event detected. Marking external interfaces down. bsx.c(3633)

Jan 01 00:00:51 BIG-IP info bcm56xxd[5296]: 012c0015:6: Link: 1.1 is DOWN

Jan 01 00:00:56 BIG-IP notice mcpd[5318]: 0107143c:5: Connection to CMI peer 10.0.0.3 has been removed

Jan 01 00:00:56 BIG-IP notice mcpd[5318]: 0107143a:5: CMI reconnect timer: enabled

Jan 01 00:00:56 BIG-IP notice mcpd[5318]: 01071431:5: Attempting to connect to CMI peer 10.0.0.3 port 6699

What is the cause of the failover?

Options:

A.

TMM failed, and VLAN fail-safe initiated the failover.

B.

TMM failed, and system fail-safe initiated the failover.

C.

Loss of connection to CMI peer 10.0.0.3 initiated the failover.

D.

A switchboard failure caused system fail-safe to initiate the failover.

Question 45

An LTM Specialist needs to rewrite text within an HTML response from a web server. A client is sending the following HTTP request:

GET / HTTP/1.1

Host: www.example.com

User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:16.0) Gecko/20100101 Firefox/16.0

Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8

Accept-LanguagE. en-US,en;q=0.5

Accept-EncodinG. gzip, deflate

Cache-Control: no-cache

Connection: keep-alive

CookiE. somecookie=1

HTTP/1.1 200 OK

Server: Apache/2.2.15 (Unix)

Last-ModifieD. Wed, 12 Aug 2009 00:00:30 GMT

Accept-Ranges: bytes

Content-LengtH. 1063

X-Cnection: close

Content-TypE. text/html; charset=UTF-8

Vary: Accept-Encoding

Content-EncodinG. gzip

Connection: Keep-Alive

Although a stream profile has been added to the virtual server, the content within the HTTP response is NOT being matched and therefore NOT modified.

Which header field is contributing to the issue?

Options:

A.

HTTP Method

B.

Cookie content

C.

User-Agent Value

D.

Accept-Encoding header

Question 46

The 8IG-IP Administrator generates a qkview using "qkview -SO" and needs to transfer the output file via

SCP.

Which directory contains the output file?

Options:

A.

/var/log

B.

/var/tmp

C.

/var/local

D.

/var/config

Question 47

An LTM Specialist needs to use the tmsh command to create a pool named http_pool with member

10.10.101:80 on an LTM device.

Which expression should the LTM Specialist use?

Options:

A.

# tmsh create pool http_pool members {10.10.10.101:80}

B.

# tmsh create pool http_pool members add {10.10.10.101:80}

C.

# tmsh create it pool http_pool members {10.10.10.101:80}

D.

# tmsh create itm pool http_pool member {10.10.10.101:80}

Question 48

Exhibit.

Question # 48

An LTM Specialist needs to configure VS^HTTP and VS_DB for an online shopping site. The VS HTTP passes the client requests to the webservers. The webservers query the database serversthrough the VS_DB. Initially, the LTM Specialist finds the database servers directly return the packets to the webservers.

which setting must be enabled for the configuration to function correctly?

Options:

A.

VS_HTTP snat auto map

B.

VS.HTTP auto last hop

C.

VS DB auto last hop

D.

VS_DB snat auto map

Question 49

A BIG-IP Administrator creates a new VLAN on BIG-IP Cluster Member A and attaches an Interface to it. Although the Auto Config Sync is in place, the new VLAN does NOT show up on Cluster Member B. What should the BIG-IP Administrator do to ensure the new VLAN is configured on each Cluster Member?

Options:

A.

Configure the new VLAN manually on Cluster Member B.

B.

Reset the Device Trust of the BIG-IP Cluster on either Cluster Member.

C.

Configure a Default Route for the new VLAN on Cluster Member A.

D.

Enable the Interface that is attached to the new VLAN on Cluster Member A.

Question 50

An LTM Specialist with the Administrator role and terminal access of "tmsh" logs in via ssh and is in the Traffic Manager Shell. The LTM Specialist wants to enter the bash shell to review log files.

Which command does the LTM Specialist need to run to access the bash shell?

Options:

A.

exit

B.

quit

C.

run /cli bash

D.

run /util bash

Question 51

A virtual server with SNAT automap enabled selects pool member 10.20.0.10.443 for the server-side flow. The client side flow source IP is 192.168.0.10 .

Question # 51

Which source IP should be expected inthe server-side connection?

Options:

A.

10.20.0.1

B.

10.50.0.2

C.

10.20.0.2

D.

192.168.0.10

Question 52

An F5 LTM Specialist needs to perform an LTM device configuration backup prior to RMA swap.

Which command should be executed on the command line interface to create a backup?

Options:

A.

bigpipe config save /var/tmp/backup.ucs

B.

tmsh save /sys ucs /var/tmp/backup.ucs

C.

tmsh save /sys config /var/tmp/backup.ucs

D.

tmsh save /sys config ucs /var/tmp/backup.ucs

Question 53

-- Exhibit –

Question # 53

-- Exhibit --

Refer to the exhibit.

A pair of LTM devices are configured for HA. The LTM Specialist observes from a capture that there is a successful connection from a client directly to a web server and an unsuccessful connection from a client via the LTM device to the same web server.

Which two solutions will solve the configuration problem? (Choose two.)

Options:

A.

Configure SNAT on the pool.

B.

Configure SNAT on the virtual server.

C.

Change server default gateway to point at LTM internal self IP.

D.

Change server default gateway to point at LTM internal floating IP.

Question 54

-- Exhibit --

Question # 54

-- Exhibit --

Refer to the exhibit.

A company uses a complex piece of client software that connects to one or more virtual servers (VS) hosted on an LTM device. The client software is experiencing issues. An LTM Specialist must determine the cause of the problem. The LTM Specialist has the tcpdump extract. The client loses connection with the LTM device.

Where is the reset originating?

Options:

A.

the local switch

B.

the application server

C.

the device initiating the connection

D.

the destination device of the initial connection

Question 55

-- Exhibit –

Question # 55

-- Exhibit --

Refer to the exhibit.

An LTM Specialist has a virtual server set up on the LTM device as per the exhibit. The LTM Specialist receives reports of intermittent issues. Some clients are connecting fine while others are failing to connect.

The LTM Specialist does a tcpdump on the relevant interfaces, with the following results extracted:

What is causing the intermittent issues?

Options:

A.

The firewall is dropping the packets from WS1.

B.

The default gateway is inaccessible from WS1.

C.

The load balancing (LB) method is inappropriate.

D.

The pool members have been set up as an active/standby pair, with WS1 as the standby.

Question 56

-- Exhibit –

Question # 56

Question # 56

-- Exhibit --

Refer to the exhibits.

An LTM Specialist is reconfiguring a virtual server to redirect all clients to HTTPS. Testing reveals that the redirect is functioning incorrectly. As part of the troubleshooting process, the LTM Specialist performs a packet capture.

What is the issue?

Options:

A.

The redirect is causing an infinite loop.

B.

The virtual server is missing a clientssl profile.

C.

The redirect is sending the client to the incorrect location.

D.

The virtual server is incorrectly processing the HTTP request.

Question 57

What should an LTM Specialist configure on an LTM device to send AVR notification emails?

Options:

A.

Email notification to be sent via iControl from the LTM device

B.

Syslog on the LTM device to send to an SMTP server

C.

Custom SNMP traps on the LTM device for AVR notifications

D.

Email notification to be sent via SMTP from the LTM device

Question 58

An application is making heavy use of a large, high-quality JPEG image file. An LTM Specialist needs to enhance page load times without increasing server load.

Which profile should be applied to the virtual server to perform this task?

Options:

A.

Response Adapt

B.

OneConnect

C.

FastHTTP

D.

Web Acceleration

Question 59

An LTM Specialist needs to rewrite text within an HTML response from a web server. A client is sending the HTTP request below:

GET / HTTP/1.1

Host: www.f5.com

User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:16.0) Gecko/20100101 Firefox/16.0

Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8

Accept-LanguagE. en-US,en;q=0.5

Accept-EncodinG. gzip, deflate

Cache-Control: no-cache

Connection: keep-alive

CookiE. somecookie=1

Although a stream profile has been added to the virtual server, the content within the HTTP response is NOT being matched, and therefore NOT modified.

Which HTTP header should the LTM Specialist remove from the request to ensure the content can be matched and modified?

Options:

A.

Connection

B.

Accept

C.

Cache-Control

D.

Accept-Encoding

Question 60

Users are experiencing low throughput when downloading large files over a high-speed WAN connection. Extensive packet loss was found to be an issue but CANNOT be eliminated.

Which two TCP profile settings should be modified to compensate for the packet loss in the network? (Choose two.)

Options:

A.

slow start

B.

proxy options

C.

proxy buffer low

D.

proxy buffer high

E.

Nagle's algorithm

Question 61

Question # 61

A BIG-IP Administrator notices that one of the servers that runs an application is NOT receiving any traffic. The BIG-IP Administrator examines the configuration status of the application and observes the displayed monitor configuration and affected Pool Member status. What is the possible cause of this issue?

Options:

A.

The Node Health Monitor is NOT responding.

B.

The application is NOT responding with the expected Receive String.

C.

HTTP 1.1 is NOT appropriate for monitoring purposes.

D.

The BIG-IP device is NOT able to reach the Pool.

Question 62

A BIG-IP Administrator is setting up a new BIG-IP device. The network administrator reports that the interface has an incompatible media speed. The BIG-IP Administrator needs to change this setting

manually.

From which location should the BIG-IP Administrator perform this task?

Options:

A.

On the Front Console

B.

In the TMOS Shell Command line

C.

In the Configuration Utility, Network > Interface

D.

In the Configuration Utility, System > Configuration

Question 63

A BIG-IP Administrator uses backend servers to host multiple services per server. There are multiple virtual servers and pools defined, referencing the same backend servers.

Which load balancing algorithm is most appropriate to have an equal number of connections on each backend server?

Options:

A.

Least Connections (member)

B.

Least Connections (node)

C.

Predictive (member)

D.

Predictive (node)

Question 64

An application is configured on an LTM device:

Virtual server: 10.0.0.1:80 (VLAN vlan301)

SNAT IP: 10.0.0.1

Pool members: 10.0.1.1:8080, 10.0.1.2:8080, 10.0.1.3:8080 (VLAN vlan302)

Which packet capture should the LTM Specialist perform on the LTM device command line interface to capture only client traffic specifically for this virtual server?

Options:

A.

tcpdump -ni 0.0:nnn -s 0 'host 10.0.0.1' -w /var/tmp/trace.cap

B.

tcpdump -ni vlan301 -s 0 'port 80 and host 10.0.0.1' -w /var/tmp/trace.cap

C.

tcpdump -ni vlan301 -s 0 'port 8080 and host 10.0.1.1 or host 10.0.1.2 or host 10.0.1.3' -w /var/tmp/trace.cap

D.

tcpdump -ni vlan302 -s 0 'port 8080 and host 10.0.1.1 or host 10.0.1.2 or host 10.0.1.3' -w /var/tmp/trace.cap

E.

tcpdump -ni 0.0:nnn -s 0 '(port 80 and host 10.0.0.1) or (port 8080 and host 10.0.1.1 or host 10.0.1.2 or host 10.0.1.3)' -w /var/tmp/trace.cap

Question 65

-- Exhibit –

Question # 65

-- Exhibit --

Refer to the exhibit.

A company uses a complex piece of client software that connects to one or more virtual servers (VS) hosted on an LTM device. The client software is experiencing issues. An LTM Specialist is tasked with finding the cause of the problem.

The LTM Specialist has the tcpdump extract and knows the client software has at least one connection to a VS on port 1990. However, when a tcpdump runs on the internal VLAN, there is no record of port 1990 in the tcpdump.

Why is there no record of port 1990 in the tcpdump?

Options:

A.

The LTM device drops the connection.

B.

Port 1990 is a well-known port, so its use is restricted.

C.

The LTM device performs a Port Address Translation (PAT).

D.

The LTM device performs a Network Address Translation (NAT).

Question 66

Given:

Filesystem Size Used Avail Use% Mounted on

/dev/md11 248M 248M 0 100% /

/dev/md13 3.0G 76M 2.8G 3% /config

/dev/md12 1.7G 1.1G 476M 71% /usr

/dev/md14 3.0G 214M 2.6G 8% /var

/dev/md0 30G 2.2G 26G 8% /shared

/dev/md1 6.9G 288M 6.3G 5% /var/log

none 3.9G 452K 3.9G 1% /dev/shm

none 3.9G 19M 3.9G 1% /var/tmstat

none 3.9G 1.2M 3.9G 1% /var/run

prompt 4.0M 12K 4.0M 1% /var/prompt

/dev/md15 12G 8.3G 3.1G 74% /var/lib/mysql

Which command is used to produce this output?

Options:

A.

df

B.

du

C.

lsof

D.

ps

E.

vmstat

Question 67

Which file should the BIG-IP Administrator check to determine when a Virtual Server changed its status

Options:

A.

/var/log/audit

B.

/var/log/lastlog

C.

/var/log/tm

D.

/var/log/monitors

Question 68

An LTM Specialist needs to create an iRule that creates persistence records based on a JSESSIONID cookie. If a persistence record already exists, then the iRule must persist the client connection according to the existing record.

Which persistence profile enables the iRule to meet these requirements?

Options:

A.

Universal

B.

SSL

C.

Destination Address Affinity

D.

Cookie

E.

Source Address Affinity

Question 69

-- Exhibit –

Question # 69

-- Exhibit --

Refer to the exhibit.

A web application is configured to allow sessions to continue even after a user computer is shut down for the night. A new LTM device is configured to load balance the web application to several servers. The application owner reports that application users are logged out of the web application whenever their browser is restarted or computer is rebooted.

What is the problem?

Options:

A.

The virtual server does NOT have persistence configured.

B.

The virtual server does NOT have persistence mirroring configured.

C.

The cookie set by the LTM device does NOT have an "Expires" value.

D.

The cookie set by the server is NOT being passed to client by the LTM device.

Question 70

An HTTP 1.1 application utilizes chunking.

Which header should be used to notify the client's browser that there are additional HTTP headers at the end of the message?

Options:

A.

ETag

B.

From

C.

Trailer

D.

Expect

Question 71

An LTM device needs an additional traffic group.

Which configuration item is required?

Options:

A.

Default device

B.

Group name

C.

MAC Masquerade Address

D.

Auto Fallback Timeout

Question 72

An LTM Specialist needs to loadbalance an application using an LTM device to meet the requirements:

The application servers do NOT Support SSL, but client access to the application should be secured.

Multiple requests from the same client should be sent to the same pool member.

All pool members will have roughly the same processing power, and traffic should be distributed evenly.

The LTM device is NOT the pool members' default gateway.

which configuration should the LTM Specialist.

Options:

A.

a performance 14 virtual server with a SNAT and cookie persistence

B.

a performance L4 virtual server with a Client SSL profile and Source Address persistence

C.

A performance L4 virtual server with a SNAT, HTTP profile. Server SSL profile, and cookie persistence

D.

A standard virtual server with a SNAT, HTTP profile Server SSL profile, and cookie persistence

E.

A standard virtual server with a SNAT, HTTP profile, Client profile, andd cookie persistance.

Question 73

-- Exhibit –

Question # 73

Question # 73

-- Exhibit --

Refer to the exhibits.

Which URL on which server is causing the highest latency for users?

Options:

A.

/slow1.php on 172.16.20.3

B.

/slow2.php on 172.16.20.1

C.

/reflector.php on 172.16.20.2

D.

/Compress.HTML on 172.16.20.1

Question 74

-- Exhibit –

Question # 74

-- Exhibit --

Refer to the exhibit.

Which URL should be reported to the server/application team as getting user-visible errors?

Options:

A.

/env.cgi

B.

/page14.cgi

C.

/reflector.php

D.

/browserspecific.html

Question 75

A BIGJP Administrator needs to load a UCS file but must exclude the license file. How should the administrator perform this task?

Options:

A.

From the CLI with command U tmsh load /$ys ucs no-license

B.

From the GUI, select the UCS file, unchcck the license box, and click restore

C.

From the CLI with command(tmos)« tmsh load /sys ucs no-license

D.

From the GUI, select the UCS file and click restore

Question 76

An LTM Specialist uploaded new releases .iso and .md5 files titled "BIGIP-FILENAME" via the GUI.

Which commands are run via the command line from the root directory to verify the integrity of the new .iso file?

Options:

A.

cd /var/shared/images

md5sum --check BIGIP-FILENAME.iso

B.

cd /shared/images

md5sum --check BIGIP-FILENAME.iso

C.

cd /var/shared/images

md5sum --check BIGIP-FILENAME.iso.md5

D.

cd /shared/images

md5sum --check BIGIP-FILENAME.iso.md5

Question 77

A virtual server is using a TCP profile based on thetop-wan-optimized profile for a streaming application Users report videos are loading slowly.

Which setting should be modified in the TCP profile to optimize the application?

Options:

A.

Disable Slow Start

B.

Disable Selective ACKs

C.

Disable Nagle's Algorithm

D.

Disable Reset on Timeout

Question 78

-- Exhibit –

Question # 78

-- Exhibit --

Refer to the exhibit.

Which step should an LTM Specialist take to utilize AVR?

Options:

A.

provision AVR

B.

reboot the device

C.

install the AVR add-on

D.

license the device for AVR

Load More 303 Questions 
Page: 1 / 52
Total 520 questions
Get 303 Full Access Download 303 PDF