303 Exam Dumps - BIG-IP ASM Specialist

A pool with a default connection limit is configured to use Round Robin as the load balancing method. An LTM Specialist needs to ensure that the LTM device selects a serverwith the fewest number of connections when new clients connect. Another pool is using the same set of backend servers.

Which load balancing-method should the pool be changed to?

Which Virtual Server type prevents the use of a default pool?

An LTM Specialist needs to deploy a virtual server that will load balance traffic targeting https://register.example.com to a set of three web servers. Persistence needs to be ensured. No persistence mirroring is allowed SSL offloading is required.

A fourth web server with fewer resources will be used to handle requests from engine bots to https://register.example.comvrobots.txt by an iRule. The (Rule will use the HTTP_REQUEST event. .

What are the required profile and persistence settings to implement this

A device on the network is configured with the same IP address as the management address of the active LTM device, causing the management GUI to be inaccessible.

Which two methods should the LTM Specialist use to access the LTM device in order to change the management IP address? (Choose two.)

-- Exhibit –

-- Exhibit --

Refer to the exhibit.

An LTM Specialist sets up AVR alerts and notifications for a specific virtual server if the server latency exceeds 50ms. The LTM Specialist simulates a fault so that the server latency is consistently exceeding the 50ms threshold; however, no alerts are being received.

Which configuration should the LTM Specialist modify to achieve the expected results?

An LTM Specialist configures a new virtual server with a single pool member. The LTM Specialist has NOT defined a health monitor for the pool, pool member or node.

What is the status of the virtual server?

An LTM Specialist needs to create a pool with a set of monitor that checks both the pool members and corresponding application service ports. The pool members have services on port 80. The application service is on port 8009.

The LTM device should load balance traffic to the pool member when the pool member and corresponding application service pass monitor.

Which monitor and parameter set meets this requirement?

Which file should the BIG-IP Administrator check to determine when a Virtual Server changed its status

An LTM Specialist needs to configures virtual server that uses PVA or OPVA Which virtual server type should be used?

An TLM Specialist has an Exchange that must use the LTM device to route traffic to the internet.

Which SNAT/NAT configure allows the Exchange server’s traffic access the internet through the LTM device?

An LTM device is deployed in a one-armed topology. The virtual server, clients, and web servers are connected on the LTM device internal VLAN. A client tries to connect to the virtual server and is unable to establish a connection. A packet capture from the LTM device internal VLAN shows that the HTTP request is being forwarded to the web server.

From which two additional locations should protocol analyzer data be collected? (Choose two.)

-- Exhibit –

-- Exhibit --

Refer to the exhibit.

A server administrator notices that one server is intermittently NOT being sent any HTTP requests. The server logs display no issues. The LTM Specialist notices log entries stating the node (172.16.20.1) status cycling between down and up. The pool associated with the virtual server (10.10.1.100) has a custom HTTP monitor applied.

Which tcpdump filter will help trace the monitor?

Refer to the exhibit.

How many nodes are represented on the network map shown?

-- Exhibit –

-- Exhibit --

Refer to the exhibit.

An LTM Specialist is working on an LTM 11.0.0 installation and has identified a security vulnerability as shown in the exhibit. The LTM Specialist is tasked with applying the latest available hotfix to resolve the problem.

Which procedure resolves the problem?

Which command will identify the active LTM device currently handling client traffic?

The BIG-IP Administrator needs to ensure the correct health monitor is being used lor a new HTTP pool

named P_example.

Where should the BIG-IP Administrator validate these settings in the Configuration Utility?

A BIG-IP Administrator remotely connects to the appliance via out-of-band management using https://mybigip mycompany net. The management portal has been working all week. When the administrator attempts to login today, the connection times out. Which two aspects should the administrator verify? (Choose two)

An LTM Specialist needs to rewrite text within an HTML response from a web server. A client is sending the HTTP request below:

GET / HTTP/1.1

Host: www.f5.com

User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:16.0) Gecko/20100101 Firefox/16.0

Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8

Accept-LanguagE. en-US,en;q=0.5

Accept-EncodinG. gzip, deflate

Cache-Control: no-cache

Connection: keep-alive

CookiE. somecookie=1

Although a stream profile has been added to the virtual server, the content within the HTTP response is NOT being matched, and therefore NOT modified.

Which HTTP header should the LTM Specialist remove from the request to ensure the content can be matched and modified?

-- Exhibit –

-- Exhibit --

Refer to the exhibits.

An LTM Specialist is reconfiguring a virtual server to redirect all clients to HTTPS. Testing reveals that the redirect is functioning incorrectly. As part of the troubleshooting process, the LTM Specialist performs a packet capture.

What is the issue?

An LTM Specialist is troubleshooting a problem on an eCommerce website. The user browses the online store using port 80, adding items to the shopping cart. The user then clicks the "Checkout" button on the site, which redirects the user to port 443 for the checkout process. Suddenly, the user's shopping cart is shown as empty. The shopping cart data is stored in memory on the server, and the default source address persistence profile is used on both virtual servers.

How should the LTM Specialist resolve this issue?

An LTM Administrator receives an email from the NOC stating that the switch connected to the backend server was shut down for maintenance. The BIG-IP device handles only UDP traffic. The BIG IP device did not fail over to a DR location when no pool members were available.

When theLTM Administrator checks the pool, it confirms that the monitor is still marking UP the pool member.

A tcpdump of the traffic shows the following output:

A list of the monitor configuration shows the following:

Which two modifications to the LTMconfiguration will mark this pool member down, when the switch is down? (Choose two.)

The end users of a web application need to verify that their browsers received the complete message-body from the web server.

Which HTTP header will accomplish this?

The picture belongs to static content, you can configure static content cache in FS to meet this demand

An LTM Specialist must configure session persistence for a highly available, highly utilized web-based application.

* The following requirements are provided:

* http proxy setup for security

persistence information available to the HA peer in case of failover

The LTM Specialist needs to minimize additional burden on the LTM device to the greatest extent possible.

Which persistence profile should be used?

A BIGJP Administrator needs to load a UCS file but must exclude the license file. How should the administrator perform this task?

-- Exhibit –

-- Exhibit --

Refer to the exhibits.

After upgrading LTM from v10 to v11, users are unable to connect to an application. The virtual server is using a client SSL profile for re-terminating SSL for payload inspection, but a server SSL profile is being used to re-encrypt the request.

A client side ssldump did NOT show any differences between the traffic going directly to the server and the traffic being processed by the LTM device. However, packet capture was done on the server, and differences were noted.

Which modification will allow the LTM device to process the traffic correctly?

-- Exhibit –

-- Exhibit --

Refer to the exhibit.

An LTM Specialist is investigating reports that users are unable to perform some commands through an FTP virtual server. The users are receiving the FTP error "500 Illegal PORT command." The virtual server is configured to SNAT using automap. The LTM Specialist performs a capture on the server side of the LTM device.

Why is the server returning this error?

A web developer has created a custom HTTP call to a backend application. The HTTP headers being sent by the HTTP call are:

GET / HTTP/1.1

User-Agent: MyCustomApp (v1.0)

Accept: text/html

Cache-Control: no-cache

Connection: keep-alive

CookiE. somecookie=1

The backend server is responding with the following:

HTTP/1.1 400 Bad Request

DatE. Wed, 20 Jul 2012 17:22:41 GMT

Connection: close

Why is the HTTP web server responding with a HTTP 400 Bad Request?

The BIG-IP Administrator generates QKView using tmsh command "qkview -SO". In which directory does the BIG-IP appliance save the QKView?

-- Exhibit –

-- Exhibit --

Refer to the exhibits.

Which two servers are missing two frequently used URLs? (Choose two.)

An LTM HTTP pool has an associated monitor that sends a string equal to 'GET /test.html'.

Which two configurations could an LTM Specialist implement to allow server administrators to disable their pool member servers without logging into the LTM device? (Choose two.)

An LTM device has a virtual server mapped to www5f.com with a pool assigned. The objects are defined

as follows:

Virtual server. Destination 192.168.245.100.443 netmask 255.255.255.0

Persistence: Source address persistence netmask 255.0.0.0

SNAT:AutoMap

Profiles: HnP/TCP

How should the BIG-IP Administrator modify the persistence profile so that each unique IP address

creates a persistence record?

Users are experiencing low throughput when downloading large files over a high-speed WAN connection. Extensive packet loss was found to be an issue but CANNOT be eliminated.

Which two TCP profile settings should be modified to compensate for the packet loss in the network? (Choose two.)

Exhibit.

- The ITM devices LTM 1 and LTM2 are configured in Device Group X (Sync-Failover)

- LTM3 and LTM4 are configured in Device Group Y (Sync-Only)

- An LTM specialist configures Device Group Z (Sync-Only) to keep several profiles in (sync-Only) to keep several profiles in sync across all devices.

- Device GROUP X has four Traffic Groups A.B.C and D configured.

- Device Group Y has four Traffic Groups E, F. G, and H configured

- Auto Fallback IS NOT Enabled.

- Each Device group is healthy and able to pass traffic for any traffic groupassigned to that Device

Group.

The data center that contains LTM2 and LTM4 loses power. After 10 minutes; power is restored and all devices are up and healthy.

What is the state of each Traffic Group on each ITM device after power is restored?

A)

B)

C)

D)

Given a tcpdump on an LTM device from both sides of a connection on the External and Internal VLANs, how should an LTM Specialist determine if SNAT is enabled for a particular pool?

An LTM Specialist has just captured trace /var/tmp/trace.cap for site www.example.com while listening on virtual address 10.0.0.1:443 configured on partition ApplicationA. The data payload being captured is SSL encrypted.

Which command should the LTM Specialist execute to decrypt the data payload?

An LTM Specialist wants to allow access to the Always On Management (AOM) from the network.

Which two methods should the LTM Specialist use to configure the AOM interface? (Choose two.)

A BIG-IP Administrator is creating a new Trunk on the BIG-IP device. What objects should be added to the new Trunk being created?

Six servers have a varying number of connections that change based on the user load.

Which load balancing method should an LTM Specialist apply to divided the web application traffic to the servers on therelative performance trend?

An application is sensitive to packet loss and unexpected session termination. A pair of LTM devices is configured in an Active/Standby high availability configuration. SNATS are NOT used and the virtual server contains a Universal Persistence profile.

which two actions must an LTM Specialist take to ensure the sessions are maintained between the client and server during an LTM device failover event while maintaining maximum uptime? (Choose two.)

An LTM Specialist reports that an application si no longer reachable after it has beenupgraded.

Nothing has been changed in the configuration on the LTM device.

The logs indicates that health monitors to all servers have failed as shown:

What should the LTM Specialist verify next?

What is the recommended procedure for upgrading a major TMOS release on a BIG-IP platform?

-- Exhibit –

-- Exhibit --

Refer to the exhibit.

A client attempts to connect from a Google Chrome browser to a virtual server on a BIG-IP LTM. The virtual server is SSL Offloaded. When the client connects, the client receives an SSL error. The client receives the same errors when trying Mozilla Firefox and Internet Explorer browsers.

The LTM Specialist does an ssldump on the virtual server and receives the results as per the exhibit.

How should this be resolved?

The LTM Specialist is in the process of creating a USB boot drive for the purpose of restoring the BIG-IP software to an LTM device. A separate LTM device has been selected for the purpose of creating the USB boot drive. The BIG-IP software ISO has already been uploaded and mounted on the separate LTM device.

Which command should the LTM Specialist use to trigger the LTM device to install the BIG-IP software to the USB boot drive?

An LTM specialist needs to upgrade a VCMP quest in an HA Setup with minimum interruption for all VCMP guestinstances.

In which should the LTM Specialist perform this upgrade?

A BIG-IP device sends out the following SNMP trap:

big-ipo.f5.com - bigipExternalLinkChange Link: 1.0 is DOWN

Where in the BIG-IP Configuration utility should the BIG-IP Administrator verify the current status of Link

1.0?

Refer to the exhibit.

A pool member fails the monitor checks for about 30 minutes and then starts passing the monitor

checks. New traffic is Not being sent to the pool member.

What is the likely reason for this problem?

A BIG-IP Administrator needs to apply a license to the BIG-IP system to increase the user count from the

base license.

Which steps should the BIG-IP Administrator?

Refer to the exhibit.

The BIG-IP Administrator has modified an iRule on one device of an HA pair. The BIG-IP Administrator

notices there is NO traffic on the BIG-IP device in which they are logged into.

What should the BIG-IP Administrator do to verify if the iRule works correctly?

An application owner claims an LTM device is delaying delivery of an HTTP application. The LTM device has two VLANs, an internal and an external. The application servers reside on the internal VLAN. The virtual server and clients reside on the external VLAN.

With appropriate filters applied, which solution is most efficient for obtaining packet captures in order to investigate the claim of delayed delivery?

Which two alerting capabilities can be enabled from within an application visibility reporting (AVR) analytics profile? (Choose two.)

One of the two members of a device group has been decommissioned. The BIG-IP Administrator tries to

delete the device group, but is unsuccessful.

Prior to removing the device group, which action should be performed?

A BIG-IP Administrator must configure the BIG-IP device to send system log messages to a remote syslog server In addition, the log messages need to be sent over TCP for guaranteed delivery. What should the BIG-IP Administrator configure?

An LTM Specialist has a single HTTPS virtual server doing SSL termination. No server SSL profile is defined. The pool members are on the internal VLAN answering on HTTP port 80. Users with certain browsers are experiencing issues.

Which two locations are most appropriate to gather packets needed to determine the SSL issue? (Choose two.)

An LTM Specialist is running the following packet capture on an LTM device:

ssldump -Aed -ni vlan301 'port 443'

Which two SSL record message details will the ssldump utility display by default? (Choose two.)

A BIG-IP Administrator finds the following log entry after a report of user issues connecting to a virtual server:

01010201: 2: Inet port exhaustion on 10.70.110.112 to 192.28.123.250:80 (proto 6)

How should the BIG-IP Administrator modify the SNAT pool that is associated with the virtual server?

To increase available bandwidth of an existing Trunk, the BIG-IP Administrator is adding additional

interfaces.

Which command should the BIG-IP Administrator run from within bosh shell?

An LTM device is running BIG-IP v10.2.0 software. The LTM Specialist is tasked with upgrading the LTM device to BIG-IP v11.2.0 HF1. The LTM Specialist starts the upgrade process by selecting the uploaded Hotfix and installing to an unused volume. After 10 minutes, the LTM Specialist checks the status of the upgrade process and notices that the process is stalled at 0%.

What should the LTM Specialist verify?

What should the 816-IP Administrator provide when opening a new ticket with F5 Support?

DNS queries from two internal DNS servers are being load balanced to external DNS Servers via a Virtual

Server on a BIG-P device. The DNS queries originate from 192.168.101.100 and 192.168.101.200 and

target 192.168.21.50

All DNS queries destined for the external DNS Servers fail

Which property change should the BIG-IP Administrator make in the Virtual Server to resolve this issue?

A device group is made up of four members: LTM-A, LTM-B, LTM-C, and LTM-D. An LTM Specialist makes a configuration change on LTM-B. Later, a different LTM Specialist notices a "changes pending" message on all devices. When logged into LTM-D, the LTM Specialist attempts to config-sync to the device group. The sync operation fails.

Why is the LTM Specialist on LTM-D unable to synchronize the configuration to the group?

An LTM Specialist is working with an LTM device configured with 10 virtual servers on the same domain with a different key/cert pair per virtual. For examplE. www.example.com; ftp.example.com; ssh.example.com; ftps.example.com.

What should the LTM Specialist do to reduce the number of objects on the LTM device?

Which three HTTP headers allow an application server to determine the client's language compatibility, browser, operating system type, and compression compatibility? (Choose three.)

A BIG-IP Administrator needs to make sure that the automatic update check feature works properly.

What must the administrator configure on the BIG-IP system?

A BIG-IP Administrator notices that one of the servers that runs an application is NOT receiving any traffic. The BIG-IP Administrator examines the configuration status of the application and observes the displayed monitor configuration and affected Pool Member status. What is the possible cause of this issue?

AN LTM Specialist needs to determine the delay between anLTM device and the internal web server for a specific client.

Which two AVR reporting options should the LTM Specialist enable to measure the delay? (Choose two.)

An active/standby pair of LTM devices deployed with network failover are working as desired. After external personnel perform maintenance on the network, the LTM devices are active/active rather than active/standby. No changes were made on the LTM devices during the network maintenance.

Which two actions would help determine the cause of the malfunction? (Choose two.)

A BIG-IP Administrator is configuring a pool with members who have differing capabilities. Connections

to pool members must be load balanced appropriately.

Which load balancing method should the BIG-IP Administrator use?

An LTM Specialist needs to terminate client SSL traffic and based on the cookie presented by client.

Which set of profiles should the LTM Specialist use?

Given LTM device ltm log:

Sep 26 20:51:08 local/lb-d-1 notice promptstatusd[3695]: 01460006:5: semaphore mcpd.running(1) held

Sep 26 20:51:08 local/lb-d-1 notice promptstatusd[3695]: 01460006:5:

Sep 26 20:51:08 local/lb-d-1 warning promptstatusd[3695]: 01460005:4: mcpd.running(1) held, wait for mcpd

Sep 26 20:51:08 local/lb-d-1 info sod[3925]: 010c0009:6: Lost connection to mcpd - reestablishing.

Sep 26 20:51:08 local/lb-d-1 err bcm56xxd[3847]: 012c0004:3: Lost connection with MCP: 16908291 ... Exiting bsx_connect.cpp(174)

Sep 26 20:51:08 local/lb-d-1 info bcm56xxd[3847]: 012c0012:6: MCP Exit Status

Sep 26 20:51:08 local/lb-d-1 info bcm56xxd[3847]: 012c0012:6: Info: LACP stats (time now:1348717868) : no traffic

Sep 26 20:51:08 local/lb-d-1 info bcm56xxd[3847]: 012c0014:6: Exiting...

Sep 26 20:51:08 local/lb-d-1 err lind[3842]: 013c0004:3: IO error on recv from mcpd - connection lost

Sep 26 20:51:08 local/lb-d-1 notice bigd[3837]: 01060110:5: Lost connection to mcpd with error 16908291, will reinit connection.

Sep 26 20:51:08 local/lb-d-1 err statsd[3857]: 011b0004:3: Initial subscription for system configuration failed with error ''

Sep 26 20:51:08 local/lb-d-1 err statsd[3857]: 011b0001:3: Connection to mcpd failed with error '011b0004:3: Initial subscription for system configuration failed with error '''

Sep 26 20:51:08 local/lb-d-1 err csyncd[3851]: 013b0004:3: IO error on recv from mcpd - connection lost

.............skipping more logs.....

Sep 26 20:51:30 local/lb-d-1 notice sod[3925]: 01140030:5: HA proc_running bcm56xxd is now responding.

Sep 26 20:51:34 local/lb-d-1 notice sod[3925]: 01140030:5: HA proc_running mcpd is now responding.

Sep 26 20:51:34 local/lb-d-1 notice sod[3925]: 010c0018:5: Standby

Which daemon failed?

-- Exhibit –

-- Exhibit --

Refer to the exhibit.

The decoded TCPDump capture is a trace of a failing health monitor. The health monitor is sending the string shown in the capture; however, the server response is NOT as expected. The receive string is set to 'SERVER IS UP'.

What is the solution?

An LTM Specialist connects to an LTM device via the serial console cable and receives unreadable output. The LTM Specialist is using the appropriate cable and connecting it to the correct serial port.

Which command should the LTM Specialist run through ssh to verify that the baud rate settings for the serial port are correct on the LTM device?

An LTM device load balances a pool of routers. The LTM device needs to verify pathavailability to an HTTP server with the IP address 192 168.10 10. located beyond the routers.

Which monitor type and parameters arc required?

A user is having issues with connectivity to an HTTPS virtual server. The virtual server is on the LTM device's external vlan, and the pools associated with the virtual server are on the internal vlan. An LTM Specialist does a tcpdump on the external interface and notices that the host header is incomplete.

In which location should the LTM Specialist put a traffic analyzer to gather the most pertinent data?

The owner of a web application asks the 8IG-IP Administrator to change the port that the BIG-IP device sends traffic to. This change must be made for each member in the server pool named app_pool for their Virtual Server named app_vs. In which area of the BIG-IP Configuration Utility should the BIG-P Administrator make this change?

TWO LTM devices are in the same Device Group and configured for Ac live/Standby Failover. The LTM Specialist observes that the HA Active and Standby device constantly changes state. All network links use the default route domain A dedicated fiber ink is used for the HA connection with a latency of 250 ms but no packet loss.

What is causing the change in failover state to occur?