Exact2Pass
You can pre-order your "BIG-IP ASM Specialist" exam to us if you are in need this urgent. Dumpsmate.com Team will prepare your Exam Questions & Answers From Real Exam within next 2 to 3 Weeks Time only.
We are Only can give you this service online in this portal. Whether or not your required exam is available with us or not, Our Team will get it ready for you for the nominal price! Over 1000+ customers worldwide are using pre-ordering service. Average 99.8% pass rate among our customers - at their first attempt! 90 days of free updates included!In the unlikely event if we can't make this exam available to you then you will issue a full refund! So there is no risk.
A virtual server is configured to handle https traffic. The clientssl profile is configured to use a2048-bit RSA key. Due to security requirements, is the LTM Specialist needs to use a 4096-bit RSA key in the future.
What two effects will this change have on the BIG-IP device? (Choose two)
One of the two members of a device group has been decommissioned. The BIG-IP Administrator tries to
delete the device group, but is unsuccessful.
Prior to removing the device group, which action should be performed?
An LTM Specialist needs to assign a health monitor to a pool with two pool members 10.10.10 101 and 10.10.10.102 Both pool members are listening on port 8080 with TCP. The health of the application depends on the health of an another server(10 10 10 100) that runs port 9080 with TCP.
Which two custom TCP monitors should be selected as the pool's health monitors' (Choose two)
A customer needs to intercept all of the redirects its application is sending to clients. When a redirect is matched, the customer needs to log a message including the client IP address.
Which iRule should be used?
During a high-demand traffic event, the BIG-IP Administrator needs to limit the number of new
connections per second allowed to a Virtual Server.
What should the administrator apply to accomplish this task?
A BIG-IP Administrator finds the following log entry after a report of user issues connecting to a virtual server:
01010201: 2: Inet port exhaustion on 10.70.110.112 to 192.28.123.250:80 (proto 6)
How should the BIG-IP Administrator modify the SNAT pool that is associated with the virtual server?
-- Exhibit –
-- Exhibit --
Refer to the exhibit.
An LTM Specialist configures a virtual server that balances HTTP connections to a pool of three application servers. Approximately one out of every three connections to the virtual server fails.
Which two actions will resolve the problem? (Choose two.)
An FTP monitor is NOT working correctly.
Which three pieces of information does the LTM Specialist need to provide to ensure a properly working FTP monitor? (Choose three.)
An application is sensitive to packet loss and unexpected session termination. A pair of LTM devices is configured in an Active/Standby high availability configuration. SNATS are NOT used and the virtual server contains a Universal Persistence profile.
which two actions must an LTM Specialist take to ensure the sessions are maintained between the client and server during an LTM device failover event while maintaining maximum uptime? (Choose two.)
-- Exhibit –
-- Exhibit --
Refer to the exhibits.
Users are able to access the application when connecting to the virtual server but are unsuccessful when connecting directly to the application servers. The LTM Specialist wants to allow direct access to the application servers.
Why are users unable to connect directly to the application servers?
A configuration change is made on the standby member of a device group.
What is displayed as "Recommended Action" on the Device Management Overview screen?
The following decoded TCPDump capture shows the trace of a failing health monitor.
00:00:13.245104 IP 10.29.29.60.51947 > 10.0.0.12.http: P 1:59(58) ack 1 win 46
0x0000: 4500 006e 3b19 4000 4006 ce0c 0a1d 1d3c E..n;.@.@......<
0x0010: 0a00 000c caeb 0050 8be5 aca3 dd65 e3e1 .......P.....e..
0x0020: 8018 002e 1b41 0000 0101 080a 94b3 5b5c .....A........[\
0x0030: 0e30 90ad 4745 5420 2f74 6573 745f 7061 .0..GET./test_pa
0x0040: 6765 2e68 746d 6c20 4854 5450 312e 310d ge.html.HTTP1.1.
0x0050: 0a48 6f73 743a 200d 0a43 6f6e 6e65 6374 .Host:...Connect
0x0060: 696f 6e3a 2043 6c6f 7365 0d0a 0d0a 0105 ion:.Close......
0x0070: 0100 0003 00 .....
00:00:13.245284 IP 10.0.0.12.http > 10.29.29.60.51947: . ack 59 win 362
0x0000 0ffd 0800 4500 00c9 6f68 4000 8006 755d ....E...oh@...u]
0x0010 0a29 0015 0a29 0103 0050 e0d6 4929 90eb .)...)...P..I)..
0x0020 6f12 d83c 8019 fab3 9b31 0000 0101 080a o..<.....1......
0x0030 0068 4e10 5240 6150 4854 5450 2f31 2e31 .hN.R@aPHTTP/1.1
0x0040 2034 3030 2042 6164 2052 6571 7565 7374 .400.Bad.Request
0x0050 0d0a 436f 6e74 656e 742d 5479 7065 3a20 ..Content-Type:.
0x0060 7465 7874 2f68 746d 6c0d 0a44 6174 653a text/html..Date:
0x0070 2054 6875 2c20 3231 204a 616e 2032 3031 .Mon,.01.Jan.201
0x0080 3020 3138 3a35 383a 3537 2047 4d54 0d0a 2.00:00:01.GMT..
0x0090 436f 6e6e 6563 7469 6f6e 3a20 636c 6f73 Connection:.clos
0x00a0 650d 0a43 6f6e 7465 6e74 2d4c 656e 6774 e..Content-Lengt
0x00b0 683a 2032 300d 0a0d 0a3c 6831 3e42 6164 h:.20....
0x00c0 2052 6571 7565 7374 3c2f 6831 3e .Request
The health monitor is sending the string shown in the capture; however, the server response is NOT as expected. The correct response should be an HTML page including the string 'SERVER IS UP'.
What is the issue?
Refer to the Exhibit.
An LTM Specialist notices that two members in a pool are overloaded. To relive the existing members a fourth member (10.128.20.14) is brought up.
How many member will receive and process new connections?
When re-licensing an LTM device from the command line interface, which tmsh command should the LTM Specialist use to generate the required information to provide on the F5 licensing portal?
An LTM Specialist has just captured trace /var/tmp/trace.cap for site www.example.com while listening on virtual address 10.0.0.1:443 configured on partition ApplicationA. The data payload being captured is SSL encrypted.
Which command should the LTM Specialist execute to decrypt the data payload?
-- Exhibit –
-- Exhibit --
Refer to the exhibits.
An LTM Specialist uses the information in the logs to determine the cause of a failover event in a high-availability (HA) pair.
What caused the failover?
A BIG-IP Administrator receives an RMA replacement for a failed F5 device. The BIG-IP Administrator
tries to restore a UCS taken from the previous device, but the restore fails. The following error appears
inthe/var/log/itm.
mcpd [****J: •*****»;0; License is not operational (expired or digital signature does not match
contents.)
What should the BIG-IP Administrator do to avoid this error?
An LTM Specialist is troubleshooting a problem on an eCommerce website. The user browses the online store using port 80, adding items to the shopping cart. The user then clicks the "Checkout" button on the site, which redirects the user to port 443 for the checkout process. Suddenly, the user's shopping cart is shown as empty. The shopping cart data is stored in memory on the server, and the default source address persistence profile is used on both virtual servers.
How should the LTM Specialist resolve this issue?
-- Exhibit –
-- Exhibit --
Refer to the exhibit.
A user is unable to access an HTTP application via a virtual server.
What is the cause of the failure?
An LTMSpecialist must reconfigure a BIG-IP LTM system that load balances traffic to web application servers. The application developer inform the LTM Specialist that TLS must be used to communicate
with the application servers.
Which additional profile isrequired as part of virtual server configuration?
-- Exhibit –
-- Exhibit --
Refer to the exhibit.
Which pool can be removed without affecting client traffic?
An LTM Specialist needs to deploy a virtual server that will load balance traffic targeting https://register.example.com to a set of three web servers. Persistence needs to be ensured. No persistence mirroring is allowed SSL offloading is required.
A fourth web server with fewer resources will be used to handle requests from engine bots to https://register.example.comvrobots.txt by an iRule. The (Rule will use the HTTP_REQUEST event. .
What are the required profile and persistence settings to implement this
A BIG-IP Administrator plans to upgrade a BIG-IP device to the latest TMOS version.
Which two tools could the administrator leverage to verify known issues for the target versions?
(Choose two.)
A 816-IP Administrator recently deployed an application Users are experiencing slow performance with
the application on some remote networks.
Which two modifications can the BIG-IP Administrator make to address this issue? (Choose two)
DNS queries from two internal DNS servers are being load balanced to external DNS Servers via a Virtual
Server on a BIG-P device. The DNS queries originate from 192.168.101.100 and 192.168.101.200 and
target 192.168.21.50
All DNS queries destined for the external DNS Servers fail
Which property change should the BIG-IP Administrator make in the Virtual Server to resolve this issue?
An LI M device is experiencing a high volume of traffic. The virtual server is struggling under the load. The problem appears to be on the server side connections. The virtual server isaccepting connections . The virtual server is accepting connections on https and is configured with an SSL profile and http pool.
What should be added to increase the performance of the device?
An ecommerce company is experiencing latency issues with online shops during Black Friday's peak season.
The BIG-IP Administrator detects an overall high CPU load on the BIG-IP device and wants to move the
top utilized Virtual Servers to a dedicated BIG-IP device.
Where should the BIG-IP Administrator determine the problematic Virtual Servers?
An LTM Specialist needs to create a pool with a set of monitor that checks both the pool members and corresponding application service ports. The pool members have services on port 80. The application service is on port 8009.
The LTM device should load balance traffic to the pool member when the pool member and corresponding application service pass monitor.
Which monitor and parameter set meets this requirement?
-- Exhibit –
-- Exhibit --
Refer to the exhibits.
An LTM Specialist has configured a virtual server to distribute connections to a pool of application servers and to offload SSL processing. The application fails to work as expected when connecting to the virtual server. It does work when clients connect directly to the application. Two packet captures were taken at the application server.
What is the root cause of the problem?
Refer of the exhibit.
The 816-IP Administrator runs the command shown and observes a device trust issue between BIG-IP
devices in a device group. The issue prevents config sync on device bigip3.local.
What is preventing the config sync?
A BIG-IP Administrator needs to find which modules have been licensed for use on the BIG-IP system. In which section of the Configuration Utility can the BIG-IP Administrator find this information?
-- Exhibit –
-- Exhibit --
Refer to the exhibits.
How should the LTM Specialist minimize the configuration?
There is a fault with an LTM device load balanced trading application that resides on directly connected VLAN vlan-301. The application virtual server is 10.0.0.1:80 with trading application backend servers on subnet 192.168.0.0/25. The LTM Specialist wants to save a packet capture with complete payload for external analysis.
Which command should the LTM Specialist execute on the LTM device command line interface?
Exhibit.
- The ITM devices LTM 1 and LTM2 are configured in Device Group X (Sync-Failover)
- LTM3 and LTM4 are configured in Device Group Y (Sync-Only)
- An LTM specialist configures Device Group Z (Sync-Only) to keep several profiles in (sync-Only) to keep several profiles in sync across all devices.
- Device GROUP X has four Traffic Groups A.B.C and D configured.
- Device Group Y has four Traffic Groups E, F. G, and H configured
- Auto Fallback IS NOT Enabled.
- Each Device group is healthy and able to pass traffic for any traffic groupassigned to that Device
Group.
The data center that contains LTM2 and LTM4 loses power. After 10 minutes; power is restored and all devices are up and healthy.
What is the state of each Traffic Group on each ITM device after power is restored?
A)
B)
C)
D)
AN LTM Specialist receives reports that an external company application is having reliability issues. The F5 Administrator finds the following in /vat/log/ltm file.
The LTM Specialist determines that the F5 LTMdevice is entering into Aggressive Mode Adaptive Reaping, which is causing the site reliability issues.
What is the most likely reason that the LTM device has entered into Aggressive Mode Adaptive Reaping?
Six servers have a varying number of connections that change based on the user load.
Which load balancing method should an LTM Specialist apply to divided the web application traffic to the servers on therelative performance trend?
An LTM Specialist needs to force only FTP traffic, sourced from subnet 10.10.10.0/24 to virtual server 10.10.20.1 to the new FTP1 server. The following virtual servers are configured on the LTM device:
Traffic sourced from 10.10.10/24 must use the specific pool member for load balancing.
Which configuration change is needed to meet the requirements?
A device on the network is configured with the same IP address as the management address of the active LTM device, causing the management GUI to be inaccessible.
Which two methods should the LTM Specialist use to access the LTM device in order to change the management IP address? (Choose two.)
Refer to the exhibit.
A user attempts to connect to 10.10.10.1.80 using FTP over SSL with an FTPS client. Which virtual server will match and attempt to process the request?
-- Exhibit –
-- Exhibit --
Refer to the exhibit.
A virtual server is set up on an LTM device as follows:
Virtual server address 78.24.213.79
Default Persistence ProfilE. source_addr, 600s.
Pool NamE. Pool1
Pool Members: 10.72.250.52:80 and 10.72.250.60:80 (both on Internal Vlan)
There are several current connections to the virtual server, and pool member 10.72.250.52:80 has been set to a "Disabled" state.
A tcpdump on the Internal Vlan shows traffic going to 10.72.250.52:80.
How soon after the persistence table query was run can existing connections be refreshed/renewed to ensure that no requests are sent to 10.72.250.52?
-- Exhibit –
-- Exhibit --
Refer to the exhibit.
An LTM device is used to load balance web content over a secure channel.
The developers of the web content have done a trace using an HTTP profiler application. They believe that allowing the LTM device to compress traffic to the client will improve performance. The client can utilize GZIP or deflate compression algorithms.
An LTM Specialist must implement the compression.
The LTM Specialist has completed the following actions:
1. Create the relevant profile.
2. Apply the relevant profile to the virtual server (VS).
After applying the relevant profile, the LTM device is failing to compress the traffic. Instead, the traffic is being served with an error.
What is the problem?
An LTM Specialist is receiving reports from customers about multiple applications failing to work properly. The LTM Specialist looks at the services running and notices that the bigd process has NOT started.
How are monitored LTM device objects marked when the bigd process is stopped?
Remote users who access the LTM device are authenticated via Radius. The default remote user role is Guest Some users need LTM device with the Administrator role. The F5 Radius attributes are configure on the Radius server.
Which configuration item needs to be created?
Refer to the exhibit.
The BIG-IP Administrator has modified an iRule on one device of an HA pair. The BIG-IP Administrator
notices there is NO traffic on the BIG-IP device in which they are logged into.
What should the BIG-IP Administrator do to verify if the iRule works correctly?
Refer to the exhibit
The network team creates a new VLAN on the switches. The BIG-IP Administrator needs to create a
configuration on the BIG-IP device. The BIG-IP Administrator creates a new VLAN and Self IP, but the
servers on the new VLAN are NOT reachable from the BIG-IP device.
Which action should the BIG-IP Administrators to resolve this issue?
A BIG-IP Administrator explicitly creates a traffic group on a BIG-IP device.
Which two types of configuration objects can be associated with this traffic group? (Choose two.)
Which two alerting capabilities can be enabled from within an application visibility reporting (AVR) analytics profile? (Choose two.)
-- Exhibit –
-- Exhibit --
Refer to the exhibit.
An LTM Specialist is reviewing the 'test' partition.
Which objects, in order, can be removed from the partition?
An LTM Specialist is tasked with ensuring that the syslogs for the LTM device are sent to a remote syslog server.
The following is an extract from the config file detailing the node and monitor that the LTM device is using for the
remote syslog server:
monitor
Syslog_15002 {
defaults from udp
dest *:15002
}
node 91.223.45.231 {
monitor Syslog_15002
screen RemoteSYSLOG
}
There seem to be problems communicating with the remote syslog server. However, the pool monitor shows that the remote server is up.
The network department has confirmed that there are no firewall rules or networking issues preventing the LTM device from
communicating with the syslog server. The department responsible for the remote syslog server indicates that there may
be problems with the syslog server. The LTM Specialist checks the BIG-IP LTM logs for errors relating to the remote syslog
server. None are found. The LTM Specialist does a tcpdump:
tcpdump -nn port 15002, with the following results:
21:28:36.395543 IP 192.168.100.100.44772 > 91.223.45.231.15002: UDP, length 19
21:28:36.429073 IP 192.168.100.100.39499 > 91.223.45.231.15002: UDP, length 169
21:28:36.430714 IP 192.168.100.100.39499 > 91.223.45.231.15002: UDP, length 181
21:28:36.840524 IP 192.168.100.100.39499 > 91.223.45.231.15002: UDP, length 169
21:28:36.846547 IP 192.168.100.100.39499 > 91.223.45.231.15002: UDP, length 181
21:28:39.886343 IP 192.168.100.100.39499 > 91.223.45.231.15002: UDP, length 144
NotE. 192.168.100.100 is the self IP of the LTM device.
Why are there no errors for the remote syslog server in the log files?
An LTM Administrator receives an email from the NOC stating that the switch connected to the backend server was shut down for maintenance. The BIG-IP device handles only UDP traffic. The BIG IP device did not fail over to a DR location when no pool members were available.
When theLTM Administrator checks the pool, it confirms that the monitor is still marking UP the pool member.
A tcpdump of the traffic shows the following output:
A list of the monitor configuration shows the following:
Which two modifications to the LTMconfiguration will mark this pool member down, when the switch is down? (Choose two.)
An LTM Specialist has just manually failed the active LTM device over to the standby LTM device. The LTM Specialist notices the newly active LTM device is NOT currently receiving traffic. The LTM Specialist verifies the newly active device is responding to ARP but still no traffic is hitting the virtual servers. The LTM Specialist also notices that the virtual servers eventually start responding.
What should be added to the configuration to resolve the problem?
-- Exhibit –
-- Exhibit --
Refer to the exhibit.
An LTM Specialist is investigating intermittent page load issues being reported by users.
What should the LTM Specialist do to resolve the issue?
Refer to the exhibit.
According to the shown Configuration Utility stings What is the setting of the User Directory configuration under the Authentication submenu?
What does the following iRule do?
when CLIENT_ACCEPTED {
if { [matchclass [IP::client_addr] equals WebClient1-Whitelist1] }{
#log local0. "Valid client IP: [IP::client_addr] - forwarding traffic"
#Pool WebClient1
} else {
log local0. "Invalid client IP: [IP::client_addr] - discarding"
discard
}
}
A BIG-IP Administrator has configured a BIG-IP cluster with remote user authentication against dcOl
f5trn.com. Only local users can successfully log into the system. Configsync is also failing.
Which two tools should the 8IG-IP Administrator use to further investigate these issues? (Choose two)
The output of a tmsh command is: ------------------------------------------------------------ Net::Interface Name Status Bits Bits Errs Errs Drops Drops Colli In Out In Out In Out sions ------------------------------------------------------------ 1.1 down 0 0 0 0 0 0 0 1.2 up 191.4K 0 0 0 374 0 0 1.3 down 0 0 0 0 0 0 0 1.4 up 22.5K 0 0 0 44 0 0 2.1 miss 0 0 0 0 0 0 0 2.2 miss 0 0 0 0 0 0 0 mgmt up 43.2G 160.0G 0 0 0 0 0
Which command was executed on the LTM device to show the output?
An LTM Specialist is troubleshooting an HTTP monitor. The pool member is accessible directly through a browser, but the HTTP monitor is marking the pool member as down.
GET / HTTP/1.1
HTTP/1.1 400 Bad Request
DatE. Tue, 23 Oct 2012 21:39:07 GTM
Server: Apache/2.2.22 (FreeBSD) PHP/5.4.4
mod_ssl/2.2.22 OpenSSL/0.9.8q DAV/2
Content-LengtH. 226
Connection: close
Content-TypE. text/html; charset=iso-8859-1
How should the LTM Specialist resolve this issue?
An LTM device is monitoring three pool members. One pool member is being marked down.
What should the LTM Specialist enable to prevent the server from being flooded with connections once its monitor determines it is up?
A BIG-IP Operator has made a grave error and deleted a few virtual servers on the active LTM device fronting the web browsing proxies. The BIG-IP Operator has NOT yet performed a configuration sync.
Which command should the LTM Specialist execute on the active LTM device to force a failover to the standby node and restore web browsing?
Refer to the exhibit
A connection is being established to IP 1.1.1.1 on port 8080.
Which virtual server will handle the connection?
A node is a member of various pools and hosts different web applications. If a web application is unavailable, the BIG-IP appliance needs to mark the pool member down for that application pool. What should a BIG-IP Administrator deploy at the pool level to accomplish this?
How should a BIG-IP Administrator control the amount of traffic that a newly enabled pool member receives.
The BIG-IP Administrator configures an HTTP monitor with a specific receive string. The status is marked
'down'.
Which tool should the administrator use to identify the problem?
Which Standard Virtual Server settings should an LTM Specialist use toload balance across routed path of two different ISPs?
An LTM Specialist decides to offload SSL traffic on the LTM device instead of just passing it through. The LTM Specialist needs to change the configure from a Performance (Layer 40 virtual server to a Standard virtual server with SSL offload.
Which two element the LTM Specialist consider when performance this task? (Choose two.)
Refer to the exhibit.
How many nodes are represented on the network map shown?
The BIG-IP Administrator needs to ensure the correct health monitor is being used lor a new HTTP pool
named P_example.
Where should the BIG-IP Administrator validate these settings in the Configuration Utility?
-- Exhibit –
-- Exhibit --
Refer to the exhibits.
When observing the AVR statistics for the HTTPS_VS, an LTM Specialist realizes that HTTP status codes are NOT being recorded.
How should the LTM Specialist modify the configuration to record the HTTP status codes?
-- Exhibit –
-- Exhibit --
Refer to the exhibits.
Every monitor has the same Send String, Recv String, and an Alias of *:*. The LTM Specialist simplifies the configuration to minimize the number of monitors.
How many unique monitors remain?
A 8IG-IP Administrator configures a node with a standard icmp Health Monitor. The Node shows as DOWN although the Backend Server is configured to answer ICMP requests. Which step should the administrator take next to find the root cause of this issue?
A BIG-IP Administrator upgrades the BIG-IP LTM to a newer software version. After the administrator reboots into the new volume, the Configuration fails to load. Why is the Configuration failing to load?
-- Exhibit –
-- Exhibit --
Refer to the exhibit.
An LTM Specialist is troubleshooting an issue with a new virtual server. When connecting through the virtual server, clients receive the message "The connection was reset" in the browser. Connections directly to the pool member show the application is functioning correctly.
What is the issue?
New Syslog servers have been deployed in an organization. The BIG-IP Administrator must reconfigure the BIG-IP system to send log messages to these servers.
In which location in the Configuration Utility can the BIG-IP Administrator make the needed configuration changes to accomplish this?
A BIG-IP Administrator needs to install a HotFix on a standalone BIG-IP device, which has HD1.1 as the Active Boot Location. The BIG-IP Administrator has already re-activated the license and created an UCS archive of the configuration. In which sequence should the BIG-IP Administrator perform the remaining steps?