CertsTopics Logo

Labour Day Special - Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: top65certs

F5 301b Dumps

Page: 1 / 8
Total 209 questions
Get 301b Full Access Download 301b PDF

LTM Specialist: Maintain & Troubleshoot Questions and Answers

Question 1

An LTM device pool has suddenly been marked down by a monitor. The pool consists of members 10.0.1.1:443 and 10.0.1.2:443 and are verified to be listening. The affected virtual server is 10.0.0.1:80.

Which two tools should the LTM Specialist use to troubleshoot the associated HTTPS pool monitor via the command line interface? (Choose two.)

Options:

A.

curl

B.

telnet

C.

ssldump

D.

tcpdump

Question 2

An LTM Specialist must perform a hot fix installation from the command line.

What is the correct procedure to ensure that the installation is successful?

Options:

A.

import the hot fix to the /var/shared/images directory

check the integrity of the file with an md5 checksum

tmsh apply sys software hotfix volume .iso

B.

import the hot fix to the /var/shared/images directory

check the integrity of the file with an md5 checksum

tmsh install sys software hotfix .iso volume

C.

import the hot fix to the /shared/images directory

check the integrity of the file with an md5 checksum

tmsh apply sys software hotfix volume .iso

D.

import the hot fix to the /shared/images directory

check the integrity of the file with an md5 checksum

tmsh install sys software hotfix .iso volume

Question 3

An LTM Specialist is creating a custom EAV monitor.

In which directory should the LTM Specialist upload the script?

Options:

A.

/usr/monitor

B.

/usr/monitors

C.

/config/monitors

D.

/usr/bin/monitors

E.

/config/templates

Question 4

A device on the network is configured with the same IP address as the management address of the active LTM device, causing the management GUI to be inaccessible.

Which two methods should the LTM Specialist use to access the LTM device in order to change the management IP address? (Choose two.)

Options:

A.

Connect via ssh to the AOM IP address.

B.

Connect via ssh to the management address.

C.

Connect to the LTM device via serial connection.

D.

Connect a monitor and keyboard to the LTM device.

E.

Connect via ssh to the standby unit and connect via ssh across the serial link between the devices.

Question 5

An FTP monitor is NOT working correctly.

Which three pieces of information does the LTM Specialist need to provide to ensure a properly working FTP monitor? (Choose three.)

Options:

A.

alias

B.

File path

C.

username

D.

password

E.

FTP server port

F.

FTP server IP address

Question 6

Windows PC clients are connecting to a virtual server over a high-speed, low-latency network with no packet loss.

Which built-in client-side TCP profile provides the highest throughput for HTTP downloads?

Options:

A.

tcp

B.

tcp-legacy

C.

tcp-lan-optimized

D.

tcp-wan-optimized

Question 7

-- Exhibit –

-- Exhibit --

Refer to the exhibit.

An LTM Specialist is troubleshooting a sync-failover group of three BIG-IP LTM devices. The command used is "tmsh run cm watch-devicegroup-device."

What does the output mean?

Options:

A.

Configuration is synchronized between all the devices.

B.

Configuration is not synchronized. Some modifications have been done on bigipA.

C.

Configuration is not synchronized. Some modifications have been done on bigipB.

D.

Configuration is not synchronized. Some modifications have been done on bigipC.

Question 8

An LTM Specialist has installed a hotfix that updated the SCCP firmware package.

Which command will ensure that the host subsystem and SCCP reboot?

Options:

A.

reboot

B.

full_box_reboot

C.

shutdown -r now

D.

The reboot should be initiated via the HTTPS administration GUI.

Question 9

An LTM Specialist is troubleshooting an issue with a new virtual server. When connecting through the virtual server, clients receive the message "Unable to connect" in the browser, although connections directly to the pool member show the application is functioning correctly. The LTM device configuration is:

ltm virtual /Common/vs_https {

destination /Common/10.10.1.110:443

ip-protocol udp

mask 255.255.255.255

pool /Common/pool_https

profiles {

/Common/udp { }

}

translate-address enabled

translate-port enabled

vlans-disabled

}

ltm pool /Common/pool_https {

members {

/Common/172.16.20.1:443 {

address 172.16.20.1

}

}

}

What issue is the LTM Specialist experiencing?

Options:

A.

The virtual server is disabled on all VLANs.

B.

The pool member is marked down by a monitor.

C.

The pool member is marked down administratively.

D.

The virtual server is configured for the incorrect protocol.

Question 10

An HTTP 1.1 application utilizes chunking.

Which header should be used to notify the client's browser that there are additional HTTP headers at the end of the message?

Options:

A.

ETag

B.

From

C.

Trailer

D.

Expect

Question 11

An LTM Specialist is troubleshooting an issue with a new virtual server. When connecting through the virtual server, clients receive the message "The connection was reset" in the browser, although connections directly to the pool member show the application is functioning correctly.

ltm pool srv1_https_pool {

members {

192.168.2.1:https{

address 192.168.2.1

}

}

}

ltm virtual https_example_vs {

destination 192.168.1.155:https

ip-protocol tcp

mask 255.255.255.255

pool srv1_https_pool

profiles {

http { }

tcp { }

}

snat automap

vlans-disabled

}

How should the LTM Specialist resolve this issue?

Options:

A.

Enable HTTP monitoring on the pool.

B.

Add a ClientSSL profile to the virtual server.

C.

Disable SNAT Automap on the virtual server.

D.

Remove the HTTP profile from the virtual server.

Question 12

Which command should an LTM Specialist use on the command line interface to show the health of RAID array hard drives?

Options:

A.

tmsh show /sys raid disk

B.

tmsh show /ltm raid disk

C.

tmsh show /sys raid status

D.

tmsh show /ltm disk status

Question 13

Given this as the first packet displayed of an ssldump:

2 2 1296947622.6313 (0.0001) S>CV3.1(74) Handshake

ServerHello

Version 3.1

random[32]=

19 21 d7 55 c1 14 65 63 54 23 62 b7 c4 30 a2 f0

b8 c4 20 06 86 ed 9c 1f 9e 46 0f 42 79 45 8a 29

session_id[32]=

c4 44 ea 86 e2 ba f5 40 4b 44 b4 c2 3a d8 b4 ad

4c dc 13 0d 6c 48 f2 70 19 c3 05 f4 06 e5 ab a9

cipherSuite TLS_RSA_WITH_RC4_128_SHA

compressionMethod NULL

In reviewing the rest of the ssldump, the application data is NOT being decrypted.

Why is ssldump failing to decrypt the application data?

Options:

A.

The application data is encrypted with SSLv3.

B.

The application data is encrypted with TLSv1.

C.

The data is contained within a resumed TLS session.

D.

The BigDB Key Log.Tcpdump.Level needs to be adjusted.

Question 14

-- Exhibit –

-- Exhibit --

Refer to the exhibit.

A user is unable to access a secure application via a virtual server.

What is the cause of the issue?

Options:

A.

The client authentication failed.

B.

The virtual server does NOT have a pool configured.

C.

The client and server CANNOT agree on a common cipher.

D.

The virtual server does NOT have a client SSL profile configured.

Question 15

-- Exhibit –

-- Exhibit --

Refer to the exhibits.

An LTM Specialist is reconfiguring a virtual server to redirect all clients to HTTPS. Testing reveals that the redirect is functioning incorrectly. As part of the troubleshooting process, the LTM Specialist performs a packet capture.

What is the issue?

Options:

A.

The redirect is causing an infinite loop.

B.

The virtual server is missing a clientssl profile.

C.

The redirect is sending the client to the incorrect location.

D.

The virtual server is incorrectly processing the HTTP request.

Question 16

A failover event is recorded in the log messages:

Jan 01 00:00:50 BIG-IP notice sod[5855]: 01140029:5: HA proc_running tmm fails action is go offline and down links.

Jan 01 00:00:50 BIG-IP notice sod[5855]: 010c0050:5: Sod requests links down.

Jan 01 00:00:50 BIG-IP notice sod[5855]: 010c0054:5: Offline for traffic group /Common/traffic-group-1.

Jan 01 00:00:50 BIG-IP notice sod[5855]: 010c003e:5: Offline

Jan 01 00:00:50 BIG-IP notice logger: /usr/bin/tmipsecd --tmmcount 4 ==> /usr/bin/bigstart stop racoon

Jan 01 00:00:50 BIG-IP info lacpd[5502]: 01160016:6: Failover event detected. (Switchboard failsafe disabled while offline)

Jan 01 00:00:51 BIG-IP err bcm56xxd[5296]: 012c0010:3: Failover event detected. Marking external interfaces down. bsx.c(3633)

Jan 01 00:00:51 BIG-IP info bcm56xxd[5296]: 012c0015:6: Link: 1.1 is DOWN

Jan 01 00:00:56 BIG-IP notice mcpd[5318]: 0107143c:5: Connection to CMI peer 10.0.0.3 has been removed

Jan 01 00:00:56 BIG-IP notice mcpd[5318]: 0107143a:5: CMI reconnect timer: enabled

Jan 01 00:00:56 BIG-IP notice mcpd[5318]: 01071431:5: Attempting to connect to CMI peer 10.0.0.3 port 6699

What is the cause of the failover?

Options:

A.

TMM failed, and VLAN fail-safe initiated the failover.

B.

TMM failed, and system fail-safe initiated the failover.

C.

Loss of connection to CMI peer 10.0.0.3 initiated the failover.

D.

A switchboard failure caused system fail-safe to initiate the failover.

Question 17

An LTM Specialist defines a receive string in the HTTP monitor and then assigns it to the HTTP pool. The monitor has an interval of 5 seconds and a timeout of 16 seconds.

If the receive string is NOT seen in the the HTTP payload after 20 seconds, how does the LTM device mark the monitor status?

Options:

A.

offline

B.

unknown

C.

available

D.

unavailable

E.

forced offline

Question 18

-- Exhibit –

-- Exhibit --

Refer to the exhibits.

An LTM Specialist is troubleshooting an issue with one of the virtual servers on an LTM device, and all requests are receiving errors. Testing directly against the server generates no errors. The LTM Specialist has captured the request and response on both client and server sides of the LTM device.

What should the LTM Specialist do to fix this issue?

Options:

A.

Remove "header-erase Host" in http profile.

B.

Configure SNAT Automap on the virtual server.

C.

Assign OneConnect profile to the virtual server.

D.

Set "redirect-rewrite" to "selective" in http profile.

Question 19

An LTM device is load balancing telnet and ssh applications in a client/server environment experiencing significant packet delay.

Which setting in the TCP profile should reduce the amount of packet delay?

Options:

A.

disable Bandwidth Delay

B.

disable Nagle's Algorithm

C.

enable Proxy Maximum Segment

D.

increase Maximum Segment Retransmissions

Question 20

Which command should the LTM Specialist use to determine the current system time?

Options:

A.

date

B.

time

C.

uname -a

D.

ntpq -p

Question 21

Which two items can be logged by the Application Visibility Reporting analytics profile? (Choose two.)

Options:

A.

User Agent

B.

HTTP version

C.

HTTP Response Codes

D.

Per Virtual Server CPU Utilization

Question 22

The LTM Specialist is writing a custom HTTP monitor for a web application and has viewed the content by accessing the site directly via their browser. The monitor continually fails. The monitor configuration is:

ltm monitor http /Common/exampleComMonitor {

defaults-from /Common/http

destination *:*

interval 5

recv "Recent Searches"

send "GET /app/feed/current\?uid=20145 HTTP/1.1\\r\\nHost: gzip, deflate\\r\\nConnection: close\\r\\n\\r\\n"

time-until-up 0

timeout 16

}

A trace shows the following request and response:

Request:

GET /app/feed/current?uid=20145 HTTP/1.1

Host

Accept-Encoding gzip, deflate

Connection: close

Response:

HTTP/1.1 302 Moved Temporarily

Date Wed, 17 Oct 2012 18:45:52 GMT

Server Apache

Location

Content-Encoding gzip

Content-Type text/html;charset=UTF-8

Set-CookiE. JSESSIONID=261EFFBDA8EC3036FBCC22D991AC6835; Path=/app/feed/current?uid=20145

What is the problem?

Options:

A.

The request does NOT include a User-Agent header.

B.

The HTTP monitor does NOT support monitoring jsp pages.

C.

The request does NOT include any cookies and the application is expecting a session cookie.

D.

The request includes an Accept-Encoding so the server is responding with a gzipped result and LTM monitors CANNOT handle gzipped responses.

Question 23

A web application requires knowledge of the client's true IP address for logging and analysis purposes. Instances of the application that can decode X-Forwarded-For HTTP headers reside in pool_a, while pool_b instances assume the source IP is the true address of the client.

Which iRule provides the proper functionality?

Options:

A.

when HTTP_DATA {

if {[HTTP::header exists X-Forwarded-For]}{

pool pool_a

} else {

pool pool_b

}

}

B.

when HTTP_RESPONSE {

if {[HTTP::header exists X-Forwarded-For]}{

pool pool_a

} else {

pool pool_b

}

}

C.

when HTTP_REQUEST {

if {[HTTP::header exists X-Forwarded-For]}{

pool pool_a

} else {

pool pool_b

}

}

D.

when HTTP_OPEN {

if {[HTTP::header exists X-Forwarded-For]}{

pool pool_a

} else {

pool pool_b

}

}

Question 24

Which iRule statement demotes a virtual server from CMP?

Options:

A.

set ::foo 123

B.

set static::foo 123

C.

persist source_addr 1800

D.

[ class match $HTTP_CONTENT contains my_data_class ]

Question 25

-- Exhibit –

-- Exhibit --

Refer to the exhibit.

A client attempts to connect from a Google Chrome browser to a virtual server on a BIG-IP LTM. The virtual server is SSL Offloaded. When the client connects, the client receives an SSL error. After trying Mozilla Firefox and Internet Explorer browsers, the client still receives the same errors.

The LTM Specialist does an ssldump on the virtual server and receives the results as per the exhibit.

What is the problem?

Options:

A.

The SSL key length is incorrect.

B.

The BIG-IP LTM is NOT serving a certificate.

C.

The BIG-IP LTM is NOT listening on port 443.

D.

The client needs to be upgraded to the appropriate cipher-suite.

Question 26

-- Exhibit –

-- Exhibit --

Refer to the exhibits.

When observing the AVR statistics for the HTTPS_VS, an LTM Specialist realizes that HTTP status codes are NOT being recorded.

How should the LTM Specialist modify the configuration to record the HTTP status codes?

Options:

A.

assign a streaming profile to the virtual server

B.

assign client SSL and server SSL profiles to the virtual server

C.

enable Statistics Logging Type, External on the analytics profile

D.

enable Collected Entities, Response Codes on the analytics profile

Question 27

-- Exhibit –

-- Exhibit --

Refer to the exhibit.

An LTM Specialist configures a virtual server to load balance to a pool of FTP servers. File transfers are failing. The virtual server is configured as follows:

ltm virtual ftp_vs {

destination 10.10.1.103:ftp

ip-protocol tcp

mask 255.255.255.255

pool ftp_pool

profiles {

tcp { }

}

vlans-disabled

}

Which change will resolve the problem?

Options:

A.

Add an FTP monitor to the pool.

B.

Add an FTP profile to the virtual server.

C.

Enable loose initiation in the TCP profile.

D.

Increase the TCP timeout value in the TCP profile.

Question 28

An application is configured on an LTM device:

Virtual server: 10.0.0.1:80 (VLAN vlan301)

SNAT IP: 10.0.0.1

Pool members: 10.0.1.1:8080, 10.0.1.2:8080, 10.0.1.3:8080 (VLAN vlan302)

Which packet capture should the LTM Specialist perform on the LTM device command line interface to capture only client traffic specifically for this virtual server?

Options:

A.

tcpdump -ni 0.0:nnn -s 0 'host 10.0.0.1' -w /var/tmp/trace.cap

B.

tcpdump -ni vlan301 -s 0 'port 80 and host 10.0.0.1' -w /var/tmp/trace.cap

C.

tcpdump -ni vlan301 -s 0 'port 8080 and host 10.0.1.1 or host 10.0.1.2 or host 10.0.1.3' -w /var/tmp/trace.cap

D.

tcpdump -ni vlan302 -s 0 'port 8080 and host 10.0.1.1 or host 10.0.1.2 or host 10.0.1.3' -w /var/tmp/trace.cap

E.

tcpdump -ni 0.0:nnn -s 0 '(port 80 and host 10.0.0.1) or (port 8080 and host 10.0.1.1 or host 10.0.1.2 or host 10.0.1.3)' -w /var/tmp/trace.cap

Question 29

A BIG-IP Operator has made a grave error and deleted a few virtual servers on the active LTM device fronting the web browsing proxies. The BIG-IP Operator has NOT yet performed a configuration sync.

Which command should the LTM Specialist execute on the active LTM device to force a failover to the standby node and restore web browsing?

Options:

A.

tmsh /sys failover standby

B.

tmsh run /sys failover standby

C.

tmsh /sys failover status standby

D.

tmsh run /sys failover status standby

Question 30

-- Exhibit –

-- Exhibit --

Refer to the exhibit.

A web application is configured to allow sessions to continue even after a user computer is shut down for the night. A new LTM device is configured to load balance the web application to several servers. The application owner reports that application users are logged out of the web application whenever their browser is restarted or computer is rebooted.

What is the problem?

Options:

A.

The virtual server does NOT have persistence configured.

B.

The virtual server does NOT have persistence mirroring configured.

C.

The cookie set by the LTM device does NOT have an "Expires" value.

D.

The cookie set by the server is NOT being passed to client by the LTM device.

Question 31

-- Exhibit --

-- Exhibit --

Refer to the exhibit.

A company uses a complex piece of client software that connects to one or more virtual servers (VS) hosted on an LTM device. The client software is experiencing issues. An LTM Specialist must determine the cause of the problem.

The LTM Specialist is seeing a client source IP of 168.210.232.5 in the tcpdump. However, the client source IP is actually 10.123.17.12.

Why does the IP address of 10.123.17.12 fail to appear in the tcpdump?

Options:

A.

The LTM device performed NAT on the individual's IP address.

B.

The Secure Network Address Translation (SNAT) pool on the virtual server is activated.

C.

Network Address Translation (NAT) has occurred in the path between the client and the LTM device.

D.

The individual's data stream is being routed to the LTM device by a means other than the default route.

Page: 1 / 8
Total 209 questions
Get 301b Full Access Download 301b PDF