Summer Certification Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code = getmirror

Pass the F5 LTM Specialist 301b Questions and answers with ExamsMirror

Practice at least 50% of the questions to maximize your chances of passing.
Exam 301b Premium Access

View all detail and faqs for the 301b exam


822 Students Passed

90% Average Score

90% Same Questions
Viewing page 6 out of 7 pages
Viewing questions 51-60 out of questions
Questions # 51:

-- Exhibit –

Question # 51

-- Exhibit --

Refer to the exhibit.

An LTM Specialist creates a virtual server to load balance traffic to a pool of HTTPS servers. The servers use client certificates for user authentication. The virtual server has clientssl, serverssl, and http profiles enabled. Clients are unable to connect to the application through the virtual server, but they are able to connect to the application servers directly.

Which change to the LTM device configuration will resolve the problem?

Options:

A.

Install the server certificate/key and enable Proxy SSL.

B.

Use the serverssl-insecure-compatible serverssl profile.

C.

Configure the clientssl profile to require a client certificate.

D.

Install the client's issuing Certificate Authority certificate on the LTM device.

Questions # 52:

Given the log entry:

011f0005:3: HTTP header (32800) exceeded maximum allowed size of 32768 (Client sidE. vip=/Common/VS_web profile=http pool=/Common/POOL_web client_ip=10.0.0.1)

Which HTTP profile setting can be modified temporarily to resolve the issue?

Options:

A.

Increase Maximum Requests

B.

Decrease Maximum Requests

C.

Increase Maximum Header Count

D.

Decrease Maximum Header Count

E.

Increase Maximum Header size

F.

Decrease Maximum Header size

Questions # 53:

An application is configured on an LTM device:

Virtual server: 10.0.0.1:80 (VLAN vlan301)

SNAT IP: 10.0.0.1

Pool members: 10.0.1.1:8080, 10.0.1.2:8080, 10.0.1.3:8080 (VLAN vlan302)

Which packet capture should the LTM Specialist perform on the LTM device command line interface to capture only client traffic specifically for this virtual server?

Options:

A.

tcpdump -ni 0.0:nnn -s 0 'host 10.0.0.1' -w /var/tmp/trace.cap

B.

tcpdump -ni vlan301 -s 0 'port 80 and host 10.0.0.1' -w /var/tmp/trace.cap

C.

tcpdump -ni vlan301 -s 0 'port 8080 and host 10.0.1.1 or host 10.0.1.2 or host 10.0.1.3' -w /var/tmp/trace.cap

D.

tcpdump -ni vlan302 -s 0 'port 8080 and host 10.0.1.1 or host 10.0.1.2 or host 10.0.1.3' -w /var/tmp/trace.cap

E.

tcpdump -ni 0.0:nnn -s 0 '(port 80 and host 10.0.0.1) or (port 8080 and host 10.0.1.1 or host 10.0.1.2 or host 10.0.1.3)' -w /var/tmp/trace.cap

Questions # 54:

A new web application is hosted at www.example.net, but some clients are still pointing to the legacy web application at www.example.com.

Which iRule will allow clients referencing www.example.com to access the new application?

Options:

A.

when HTTP_REQUEST {

if {[HTTP::host] equals "www.example.*" }{

HTTP::redirect "http://www.example.net" }

}

B.

when HTTP_REQUEST {

if {[HTTP::host] equals "www.example.com" }{

HTTP::redirect "http://www.example.net" }

}

C.

when HTTP_DATA {

if {[HTTP::host] equals "www.example.*" }{

HTTP::redirect "http://www.example.net" }

}

D.

when HTTP_RESPONSE {

if {[HTTP::host] equals "www.example.com" }{

HTTP::redirect "http://www.example.net" }

}

Questions # 55:

A client (10.10.1.30) connecting to an HTTPS virtual server (10.10.1.100) with a clientssl profile is getting an SSL error.

Which options will trace this issue?

Options:

A.

tcpdump -i external -X -e -nn -vvv -w /shared/ssl_problem.cap port 443 and host 10.10.1.30

ssldump -r /shared/ssl_problem.cap -n -x

B.

tcpdump -i external -s 0 -w /shared/ssl_problem.cap port 443 and host 10.10.10.30 and host 10.10.1.100

ssldump -r /shared/ssl_problem.cap -n -x

C.

tcpdump -i external -X -s 0 -vvv src host 10.10.10.30 and dst host 10.10.1.100 and port 443 > /shared/ssl_problem.cap

ssldump -r /shared/ssl_problem.cap -n -x

D.

tcpdump -i external -X -e -nn -vv port 443 and host 10.10.1.100 and host 10.10.1.30 > /shared/ssl_problem.cap

ssldump -n -x < /shared/ssl_problem.cap

Questions # 56:

Given a tcpdump on an LTM device from both sides of a connection on the External and Internal VLANs, how should an LTM Specialist determine if SNAT is enabled for a particular pool?

Options:

A.

by checking to see if the Source IP is carried through from the External Vlan to the Internal Vlan

B.

by checking to see if the Destination port is carried through from the External Vlan to the Internal Vlan

C.

by checking to see if the Source port is carried through from the External Vlan to the Internal Vlan

D.

by checking to see if the Destination IP is carried through from the External Vlan to the Internal Vlan

Questions # 57:

A high-availability (HA) pair configuration uses only the hardwire serial cable connection to determine device state. A power outage occurs to the PDU powering the active unit. The standby unit takes over the active role as expected.

How is the peer unit able to determine the active unit is unavailable?

Options:

A.

voltage loss on serial cable

B.

no data stream received on serial port

C.

no response on management interface

D.

no heartbeat packets received on self IPs

Questions # 58:

An LTM Specialist has configured a virtual server for www.example.com, load balancing connections to a pool of application servers that provide a shopping cart application. Cookie persistence is enabled on the virtual server. Users are able to connect to the application, but the user's shopping cart fails to update. A traffic capture shows the following:

Request:

GET /cart/updatecart.php HTTP/1.1

Host: www.example.com

Connection: keep-alive

Cache-Control: max-age=0

User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_5) AppleWebKit/537.4 (KHTML, like Gecko) Chrome/22.0.1229.94 Safari/537.4

Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8

Accept-EncodinG. gzip,deflate,sdch

Accept-LanguagE. en-US,en;q=0.8

Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

CookiE. BIGipServerwebstore_pool=353636524.20480.0000

Response:

HTTP/1.1 200 OK

DatE. Wed, 24 Oct 2012 18:00:13 GMT

Server: Apache/2.2.22 (Ubuntu)

X-Powered-By: PHP/5.3.10-1ubuntu3.1

Set-CookiE. cartID=647A5EA6657828C69DB8188981CB5; path=/; domain=wb01.example.com

Keep-AlivE. timeout=5, max=100

Connection: Keep-Alive

Content-TypE. text/html

No changes can be made to the application.

What should the LTM Specialist do to resolve the problem?

Options:

A.

Use an iRule to rewrite the cartID cookie domain.

B.

Create a universal persistence profile on the cartID cookie.

C.

Enable source address persistence as a fallback persistence method.

D.

Create a cookie persistence profile with "match across services" enabled.

Questions # 59:

In preparation for a maintenance task, an LTM Specialist performs a "Force to Standby" on LTM device Unit 1. LTM device Unit 2 becomes active as expected. The maintenance task requires the reboot of Unit 1. Shortly after the reboot is complete, the LTM Specialist discovers that Unit 1 has become active and Unit 2 has returned to standby.

What would cause this behavior?

Options:

A.

Unit 1 is set with the redundancy state preference of active in devices groups.

B.

Unit 1 is set with the redundancy state preference of active in high availability.

C.

A traffic group is configured with Auto Failback, and Unit 1 is the default device.

D.

A device group is configured with Auto Failback, and Unit 1 is the default device.

Questions # 60:

An LTM Specialist configured a virtual server to load balance a custom application. The application works when it is tested from within the firewall but it fails when tested externally. The pool member address is 192.168.200.10:80. A capture from an external client shows:

GET /index.jsp HTTP/1.1

Host: 207.206.201.100

User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:15.0) Gecko/20100101 Firefox/15.0.1

Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8

Connection: keep-alive

HTTP/1.1 302 Found

DatE. Wed, 17 Oct 2012 23:09:55 GMT

Server: Apache/2.2.15 (CentOS)

Location: http://192.168.200.10/user/home.jsp

Content-LengtH. 304

Connection: close

What is the solution to this issue?

Options:

A.

Assign a SNAT pool to the virtual server.

B.

Add a Web Acceleration Profile to the virtual server.

C.

Configure redirect rewrite option in the HTTP profile.

D.

Configure a content filter on the backend web server.

Viewing page 6 out of 7 pages
Viewing questions 51-60 out of questions
TOP CODES

TOP CODES

Top selling exam codes in the certification world, popular, in demand and updated to help you pass on the first try.