F5 303 BIG-IP ASM Specialist Exam Practice Test

A BIG-IP Administrator needs to make sure that the automatic update check feature works properly.

What must the administrator configure on the BIG-IP system?

An LTM device load balances a pool of routers. The LTM device needs to verify pathavailability to an HTTP server with the IP address 192 168.10 10. located beyond the routers.

Which monitor type and parameters arc required?

The active LTM device in a high-availability (HA) pair performs a failover at the same time the network team reports an outage of a switch on the network.

Which two items could have caused the failover event? (Choose two.)

-- Exhibit –

-- Exhibit --

Refer to the exhibit.

A pair of LTM devices are deployed in a high-availability (HA) pair as the diagram shows. After inserting a new rule on the firewalls, the LTM devices become Standby. The rule drops all outbound sessions to the Internet. Only inbound connections are allowed from the Internet. There are no other changes to the environment.

What triggered the LTM device failover?

New Syslog servers have been deployed in an organization. The BIG-IP Administrator must reconfigure the BIG-IP system to send log messages to these servers.

In which location in the Configuration Utility can the BIG-IP Administrator make the needed configuration changes to accomplish this?

A BIG-IP Administrator needs to apply a health monitor for a pool of database servers named DB_Pool

that uses TCP port 1521.

Where should the BIG-IP Administrator apply this monitor?

-- Exhibit –

-- Exhibit --

Refer to the exhibit.

An LTM Specialist has a virtual server set up on the LTM device as per the exhibit. The LTM Specialist receives reports of intermittent issues. Some clients are connecting fine while others are failing to connect.

The LTM Specialist does a tcpdump on the relevant interfaces, with the following results extracted:

What is causing the intermittent issues?

An TLM Specialist needs to configure a virtual server to terminate SSL connection on the LTM device.

Cryptographic information must be re-authorized for SSL sessions that remain open for longer than 30 seconds.

Which settings should the LTM Specialist configure in the client SSL profile?

Refer to the exhibit.

The http monitor is applied to a pool All members are enabled One pool member stops responding TCP port 80. The server still responds to ping.

What is the resulting status ofthis pool member?

A BIG-IP Administrator is configuring an SSH Pool with five members.

Which Health Monitor should be applied to ensure that available pool members are monitored

accordingly?

An application is making heavy use of a large, high-quality JPEG image file. An LTM Specialist needs to enhance page load times without increasing server load.

Which profile should be applied to the virtual server to perform this task?

A custom HTTP monitor is failing to a pool member 10.10.3.75:8080 that serves up www.example.com.

A ping works to the pool member address.

The SEND string that the monitor is using is: GET/HTTP/l.l/r/n/Host.www.example.com/r/n/Connection

Close/r/n/r/n

Which CLI tool syntax will show that the web server returns the correct HTTP response?

An LTM Specialist needs to create an iRule that creates persistence records based on a JSESSIONID cookie. If a persistence record already exists, then the iRule must persist the client connection according to the existing record.

Which persistence profile enables the iRule to meet these requirements?

An LTM Specialist has just captured trace /var/tmp/trace.cap for site www.example.com while listening on virtual address 10.0.0.1:443 configured on partition ApplicationA. The data payload being captured is SSL encrypted.

Which command should the LTM Specialist execute to decrypt the data payload?

A OneConnect profile is applied to a virtual server. The LTM Specialist would like the client source IP addresses within the 10.10.10.0/25 range to reuse an existing server side connection.

Which OneConnect profile source mask should the LTM Specialist use?

OneLTM device in an HA pair of LTM devices is unable to reach its default gateway. An HA Failover event needs to happen.

Which configuration item enables this behavior?

-- Exhibit –

-- Exhibit --

Refer to the exhibit.

An LTM Specialist is troubleshooting a sync-failover group of three BIG-IP LTM devices. The command used is "tmsh run cm watch-devicegroup-device."

What does the output mean?

What should the 816-IP Administrator provide when opening a new ticket with F5 Support?

An HA pair of LTM devices that load balance multiple HTTPS applications utilizes highly customized RAM Cache and compression profiles on each virtual server. The LTM Specialist who is administering the HA pair regularly observes entines in the log similar to the following:

tmm tmm I708S1 011e0002.4. sweeper_update: aggressive mode activated (117504/138240 pages)

No DoS attacks arc occurring. No user problems have been reported. Which step should the LTM Specialist take to help mitigate the issue?

Which command should an LTM Specialist use on the command line interface to show the health of RAID array hard drives?

A Web Server Administrator uses a manual process to display a page when the service is down.

Which feature on the LTM device should be used to automate the service down page? :

An LTM Specialist realizes that a datacenter engineer has changed the console baud rate.

Which command determines the current baud rate via the command line interface?

A high-availability (HA) pair configuration uses only the hardwire serial cable connection to determine device state. A power outage occurs to the PDU powering the active unit. The standby unit takes over the active role as expected.

How is the peer unit able to determine the active unit is unavailable?

A BIG-IP Administrator needs to configure the BIG-IP system to perform load balancing for FTP servers

running passive mode FTP.

How should the administrator configure the Virtual Server to perform this load balancing?

A failover event is recorded in the log messages:

Jan 01 00:00:50 BIG-IP notice sod[5855]: 01140029:5: HA proc_running tmm fails action is go offline and down links.

Jan 01 00:00:50 BIG-IP notice sod[5855]: 010c0050:5: Sod requests links down.

Jan 01 00:00:50 BIG-IP notice sod[5855]: 010c0054:5: Offline for traffic group /Common/traffic-group-1.

Jan 01 00:00:50 BIG-IP notice sod[5855]: 010c003e:5: Offline

Jan 01 00:00:50 BIG-IP notice logger: /usr/bin/tmipsecd --tmmcount 4 ==> /usr/bin/bigstart stop racoon

Jan 01 00:00:50 BIG-IP info lacpd[5502]: 01160016:6: Failover event detected. (Switchboard failsafe disabled while offline)

Jan 01 00:00:51 BIG-IP err bcm56xxd[5296]: 012c0010:3: Failover event detected. Marking external interfaces down. bsx.c(3633)

Jan 01 00:00:51 BIG-IP info bcm56xxd[5296]: 012c0015:6: Link: 1.1 is DOWN

Jan 01 00:00:56 BIG-IP notice mcpd[5318]: 0107143c:5: Connection to CMI peer 10.0.0.3 has been removed

Jan 01 00:00:56 BIG-IP notice mcpd[5318]: 0107143a:5: CMI reconnect timer: enabled

Jan 01 00:00:56 BIG-IP notice mcpd[5318]: 01071431:5: Attempting to connect to CMI peer 10.0.0.3 port 6699

What is the cause of the failover?

What is the effect of an iRule error such as referencing an undefined variable?

Refer to the exhibit.

A BIG-IP Administrator configures the Virtual Server to pass HTTP traffic. Users report that they are

unable to access the application

What should the administrator do to resolve this issue?

A 8IG-IP Administrator is making adjustments to an iRule and needs to identify which of the 235 virtual

server configured on the BIG-IP device will be affected.

How should the administrator obtain this information in an effective way?

An LTM Specialist configures a new virtual server with a single pool member. The LTM Specialist has NOT defined a health monitor for the pool, pool member or node.

What is the status of the virtual server?

An LTM Specialist defines a receive string in the HTTP monitor and then assigns it to the HTTP pool. The monitor has an interval of 5 seconds and a timeout of 16 seconds.

If the receive string is NOT seen in the the HTTP payload after 20 seconds, how does the LTM device mark the monitor status?

A new HITP server has been deployed on an LTM device. The application running on the server must be monitored by the LIM device. The following is required:

A new HITP server has been deployed on an LTM device. The application running on theserver must be monitored by the LIM device. The following is required:

When the server is unavailable, it will send an HTTP status code of 200 in response to a request for the status html page.

When the server is available. I will send and HTTP status code of 201 in response to a request for the status html page.

When the 200 status code is received, the pool member should receive No new connections.

Which configuration change should be made to meet these requirements?

An LTM Specialist needs to upgrade all guests on a Viprion eight CMP guests.

What is the maximum number of guests that the LTM Specialist should upgrade at once?

All pool members are online. All other virtual server settings are at default What might after the load balancing behavior?

in which Application Visibility and Reporting (AYR) profile must the SMTP profile be defined to configure notifications via email?

Which Standard Virtual Server settings should an LTM Specialist use toload balance across routed path of two different ISPs?

To increase available bandwidth of an existing Trunk, the BIG-IP Administrator is adding additional

interfaces.

Which command should the BIG-IP Administrator run from within bosh shell?

-- Exhibit –

-- Exhibit --

Refer to the exhibit.

A virtual server is set up on an LTM device as follows:

Virtual server address 78.24.213.79

Default Persistence ProfilE. source_addr, 600s.

Pool NamE. Pool1

Pool Members: 10.72.250.52:80 and 10.72.250.60:80 (both on Internal Vlan)

There are several current connections to the virtual server, and pool member 10.72.250.52:80 has been set to a "Disabled" state.

A tcpdump on the Internal Vlan shows traffic going to 10.72.250.52:80.

How soon after the persistence table query was run can existing connections be refreshed/renewed to ensure that no requests are sent to 10.72.250.52?

An LTM Specialist needs to configure a virtual server with the requirements displayed below.

Application is currently an internal HTTPapplication

Encrypted external user access

Links are hard for siteA example.com and need to rewritten to siteB.Example.com

Which profiles must the LTM Specialist use to provide the proper functionality?

An LTM Specialist is setting up a monitor for an HTTP 1.1 server. The response to a GET / is:

HTTP/1.1 302 Moved Temporarily

Location: http://www.example.com/new/location.html

Which send string settings should the LTM Specialist use to force a proper response?

-- Exhibit --

-- Exhibit --

Refer to the exhibit.

A company uses a complex piece of client software that connects to one or more virtual servers (VS) hosted on an LTM device. The client software is experiencing issues. An LTM Specialist must determine the cause of the problem.

The LTM Specialist is seeing a client source IP of 168.210.232.5 in the tcpdump. However, the client source IP is actually 10.123.17.12.

Why does the IP address of 10.123.17.12 fail to appear in the tcpdump?

A user wants to use the iHealth Upgrade Advisor to determine any issues with upgrading TMOS from 13.0 to 13.1.

Where can the user generate the QKView to upload to iHealth?

-- Exhibit –

-- Exhibit --

Refer to the exhibit.

An LTM Specialist is investigating intermittent page load issues being reported by users.

What should the LTM Specialist do to resolve the issue?

An LTM device pair is configured for failover and connection mirroring. The LTM devices are configured with virtual servers for HTTP, HTTPS with SSL offload, and SSH. An event occurs that causes a failover. HTTP and SSH sessions active at the time of failover remain active, but HTTPS sessions are dropped.

What is the root cause of this problem?

A BIG-IP device sends out the following SNMP trap:

big-ipo.f5.com - bigipExternalLinkChange Link: 1.0 is DOWN

Where in the BIG-IP Configuration utility should the BIG-IP Administrator verify the current status of Link

1.0?

-- Exhibit –

-- Exhibit --

Refer to the exhibits.

Users are able to access the application when connecting directly to the web server but are unsuccessful when connecting to the virtual server.

What is the cause of the application access problem?

A BIG-IP Administrator needs to install a HotFix on a standalone BIG-IP device, which has HD1.1 as the Active Boot Location. The BIG-IP Administrator has already re-activated the license and created an UCS archive of the configuration. In which sequence should the BIG-IP Administrator perform the remaining steps?

An LTM Specialist must create a new virtual server for HTTP access. The LTM Specialist creates a forwarding virtual server to reach the resource.

What is a potential result of this action?

-- Exhibit --

-- Exhibit --

Refer to the exhibit.

A company uses a complex piece of client software that connects to one or more virtual servers (VS) hosted on an LTM device. The client software is experiencing issues. An LTM Specialist must determine the cause of the problem. The LTM Specialist has the tcpdump extract. The client loses connection with the LTM device.

Where is the reset originating?

A BIG-IP Administrator is receiving intermittent reports from users that SSL connections to the BIG-IP device are failing. Upon checking the log files, the BIG-IP Administrator notices the following error message:

ere tmm[]: 01260008:3: SSL transaction (TPS) rate limit reached

After reviewing statistics, the BIG-IP Administrator notices there are a maximum of 1200 client-side SSL

TPS and a maximum of 800 server-side SSL TPS.

What is the minimum SSL license limit capacity the BIG-IP Administrator should upgrade to handle this

peak?

Refer to the exhibit.

During a planned upgrade lo a BIG-IP HA pair running Active/Standby, an outage to application traffic is reported shortly after the Active unit is forced to Standby Reverting the flower resolves the outage. What should the BIG-IP Administrator modify to avoid an outage during the next for over event?

A Virtual Server uses an iRule to send traffic to pool members depending on the URI. The BIG-IP

Administrator needs to modify the pool member in the iRule.

Which event declaration does the BIG-IP Administrator need to change to accomplish this?

An LTM Specialist discovers an issue with the custom http monitor that returns in a false positive status.

The end users cannot get the right website, but thehttp monitor marks the pool member UP.

What is causing the false positive result?

-- Exhibit –

-- Exhibit --

Refer to the exhibit.

A user is unable to access an HTTP application via a virtual server.

What is the cause of the failure?

Refer to the exhibit.

An LTM Specialist has multiple SNAT and virtual server objects configured as in the bigip.conf shown.

The LTMSpecialist tests a connection from a client with. IP 172.163.31.11 to 192.168.0.100:80.

Which two objects will show an increase in Local Traffic statistics connections?

-- Exhibit –

-- Exhibit --

Refer to the exhibit.

An LTM Specialist is troubleshooting an issue with an application configured on an LTM device. The application works properly when accessed directly via the servers; however, it does not work when accessed via the LTM device. The virtual server, 192.168.1.211:443, is configured to SNAT using the address 192.168.1.144 and references a pool with the member 192.168.10.80:443. The virtual server has no Client or Server SSL profiles associated.

Which configuration change will allow the application to function through the virtual server?

Exhibit.

Webserver_pool consists of 6 members. phpAuction_80_pool consists of 2 members LTM1 is the current Activemember.

LTM1 loses connectivity to 3 of the 6 members in the webserver_pool LTM2 still has connectivity to all

servers.

What is the expected failover behavior?

A BIG-IP Administrator needs to determine which pool members in a pool have been manually forced offline and are NOT accepting any new traffic. Which status icon indicates this?

A)

B)

C)

D)

What is the correct command to reset an LTM device to its default settings?

An LTM Specialist is receiving reports from customers about multiple applications failing to work properly. The LTM Specialist looks at the services running and notices that the bigd process has NOT started.

How are monitored LTM device objects marked when the bigd process is stopped?

Refer to the exhibit.

A BIG-IP Administrator creates a new Virtual Server. The end user is unable to access the page. During

troubleshooting, the administrator learns that the connection between the BIG-IP system and server is

NOT set up correctly.

What should the administrator do to solve this issue?

Given this as the first packet displayed of an ssldump:

2 2 1296947622.6313 (0.0001) S>CV3.1(74) Handshake

ServerHello

Version 3.1

random[32]=

19 21 d7 55 c1 14 65 63 54 23 62 b7 c4 30 a2 f0

b8 c4 20 06 86 ed 9c 1f 9e 46 0f 42 79 45 8a 29

session_id[32]=

c4 44 ea 86 e2 ba f5 40 4b 44 b4 c2 3a d8 b4 ad

4c dc 13 0d 6c 48 f2 70 19 c3 05 f4 06 e5 ab a9

cipherSuite TLS_RSA_WITH_RC4_128_SHA

compressionMethod NULL

In reviewing the rest of the ssldump, the application data is NOT being decrypted.

Why is ssldump failing to decrypt the application data?

-- Exhibit –

-- Exhibit --

Refer to the exhibit.

An LTM Specialist is reviewing the virtual server configuration on an LTM device.

Which two actions should the LTM Specialist perform to minimize the virtual server configuration? (Choose two.)

Six servers have a varying number of connections that change based on the user load.

Which load balancing method should an LTM Specialist apply to divided the web application traffic to the servers on therelative performance trend?

An application is expected to maintain more than 100,000concurrent TCP connections to a single pool member.

What is an appropriate SNAT configuration in this situation?

An LTM Specialist has a OneConnect profile and HTTP profile configured on a virtual server to load balance an HTTP application.

The following HTTP headers are seen in a network trace when a client connects to the virtual server:

Clientside:

GET / HTTP/1.1

Host: 192.168.136.100

User-Agent: Mozilla/5.0

Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8

Accept-EncodinG. gzip, deflate

Connection: keep-alive

Serverside:

HTTP/1.1 200 OK

DatE. 5 Jun 1989 17:06:55 GMT

Server: Apache/2.2.14 (Ubuntu)

Vary: Accept-Encoding

Content-EncodinG. gzip

Content-LengtH. 3729

X-Cnection: close

Content-TypE. text/html

The LTM Specialist notices the OneConnect feature is working incorrectly.

Why is OneConnect functioning incorrectly?

Which log file should the BIG-IP Administrator check to determine if a specific user tried to log in to the 8IG-IP Configuration by utility?

An LTM Specialist is experiencing issues in a failover event. Certain long-lasting FTP event. Certain long-lasting FTP connections using a single node pool are forced to reconnect. The bigip.conf extract isshown:

What does the LTM Specialist need to change in the configuration to avoid this issue?

An LTM Specialist uploaded new releases .iso and .md5 files titled "BIGIP-FILENAME" via the GUI.

Which commands are run via the command line from the root directory to verify the integrity of the new .iso file?

A BIG-IP Administrator is conducting maintenance on one BIG-IP appliance in an HA Pair. Why should the BIG-IP Administrator put the appliance into FORCED_OFFLINE state?

-- Exhibit –

-- Exhibit --

Refer to the exhibit.

Users receive an error when attempting to connect to the website https://website.com. The website has a DNS record of 195.56.67.90. The upstream ISP has confirmed that there is nothing wrong with the routing between the user and the LTM device.

The following tcpdump outputs have been captured:

External Vlan, filtered on IP 168.210.232.5

00:25:07.598519 IP 168.210.232.5.33159 > 195.56.67.90.https: S 1920647964:1920647964(0) win 8192

00:25:07.598537 IP 195.56.67.90.https > 168.210.232.5.33159: S 2690691360:2690691360(0) ack 1920647965 win 4350

00:25:07.598851 IP 168.210.232.5.33160 > 195.56.67.90.https: S 2763858764:2763858764(0) win 8192

00:25:07.598858 IP 195.56.67.90.https > 168.210.232.5.33160: S 1905576176:1905576176(0) ack 2763858765 win 4350

Internal Vlan, filtered on IP 168.210.232.5

00:31:46.171124 IP 168.210.232.5.33202 > 192.168.100.20.http: S 2389057240:2389057240(0) win 4380

What is the problem?

An LTM device an application that requires all connections to be secured via SSL The device must verify that request contain a specific cookie before allowing the request to be sent to the pool member.

Which virtual server type should an LTM Specialist configure on the LTM device?

An LTM Specialist is running the following packet capture on an LTM device:

ssldump -Aed -ni vlan301 'port 443'

Which two SSL record message details will the ssldump utility display by default? (Choose two.)

A web application requires the client to provide the destination server and service identification.

Which HTTP header will supply this information?

A BIG-IP Administrator finds the following log entry after a report of user issues connecting to a virtual server:

01010201: 2: Inet port exhaustion on 10.70.110.112 to 192.28.123.250:80 (proto 6)

How should the BIG-IP Administrator modify the SNAT pool that is associated with the virtual server?

A BIG-IP Administrator explicitly creates a traffic group on a BIG-IP device.

Which two types of configuration objects can be associated with this traffic group? (Choose two.)

A BIG-IP Administrator adds new Pool Members into an existing, highly utilized pool. Soon after, there are reports that the application is failing to load for some users. What pool level setting should the BIG-IP Administrator check?

During a maintenance window, an EUD test was executed and the output displayed on the screen. The BIG-IP Administrator did NOT save the screen output. The BIG-IP device is currently handling business critical traffic. The BIG-IP Administrator needs to minimize impact. What should the BIG-IP Administrator do to provide the EUD results to F5 Support?

An LTM Specialist is investigating reports from users that SSH connections are being terminated unexpectedly. SSH connections are load balanced through a virtual server. The users experiencing this problem are running SQL queries that take upwards of 15 minutes to return with no screen output. The virtual server is standard with a pool associated and no other customizations.

What is causing the SSH connections to terminate?