Labour Day Special - 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: c4sdisc65

301b PDF

$38.5

$109.99

3 Months Free Update

Add to Cart
  • Printable Format
  • Value of Money
  • 100% Pass Assurance
  • Verified Answers
  • Researched by Industry Experts
  • Based on Real Exams Scenarios
  • 100% Real Questions

301b PDF + Testing Engine

$61.6

$175.99

3 Months Free Update

Add to Cart
  • Exam Name: LTM Specialist: Maintain & Troubleshoot
  • Last Update: May 6, 2024
  • Questions and Answers: 209
  • Free Real Questions Demo
  • Recommended by Industry Experts
  • Best Economical Package
  • Immediate Access

301b Engine

$46.2

$131.99

3 Months Free Update

Add to Cart
  • Best Testing Engine
  • One Click installation
  • Recommended by Teachers
  • Easy to use
  • 3 Modes of Learning
  • State of Art Technology
  • 100% Real Questions included

301b Practice Exam Questions with Answers LTM Specialist: Maintain & Troubleshoot Certification

Question # 6

An application is configured on an LTM device:

Virtual server: 10.0.0.1:80 (VLAN vlan301)

SNAT IP: 10.0.0.1

Pool members: 10.0.1.1:8080, 10.0.1.2:8080, 10.0.1.3:8080 (VLAN vlan302)

Which packet capture should the LTM Specialist perform on the LTM device command line interface to capture only client traffic specifically for this virtual server?

A.

tcpdump -ni 0.0:nnn -s 0 'host 10.0.0.1' -w /var/tmp/trace.cap

B.

tcpdump -ni vlan301 -s 0 'port 80 and host 10.0.0.1' -w /var/tmp/trace.cap

C.

tcpdump -ni vlan301 -s 0 'port 8080 and host 10.0.1.1 or host 10.0.1.2 or host 10.0.1.3' -w /var/tmp/trace.cap

D.

tcpdump -ni vlan302 -s 0 'port 8080 and host 10.0.1.1 or host 10.0.1.2 or host 10.0.1.3' -w /var/tmp/trace.cap

E.

tcpdump -ni 0.0:nnn -s 0 '(port 80 and host 10.0.0.1) or (port 8080 and host 10.0.1.1 or host 10.0.1.2 or host 10.0.1.3)' -w /var/tmp/trace.cap

Full Access
Question # 7

-- Exhibit –

301b question answer

-- Exhibit --

Refer to the exhibit.

An administrator created a monitor to a pool member web server, which resulted in a pool member that is marked red. The administrator knows the web server is working when it is accessed from another computer.

What should the administrator do to correct the problem?

A.

Change the default gateway on the server.

B.

Create a SNAT in the LTM device configuration.

C.

Change the route to the client in the LTM configuration.

D.

Change the username and/or password on the monitor.

Full Access
Question # 8

The LTM device is configured to provide load balancing to a set of web servers that implement access control lists (ACL) based on the source IP address of the client. The ACL is at the network level and the web server is configured to send a TCP reset back to the client if it is NOT permitted to connect.

The virtual server is configured with the default OneConnect profile.

The ACL is defined on the web server as:

Permit: 192.168.136.0/24

Deny: 192.168.116.0/24

The packet capture is taken of two individual client flows to a virtual server with IP address 192.168.136.100.

Client A - Src IP 192.168.136.1 - Virtual Server 192.168.136.100:

Clientside:

09:35:11.073623 IP 192.168.136.1.55684 > 192.168.136.100.80: S 869998901:869998901(0) win 8192

09:35:11.073931 IP 192.168.136.100.80 > 192.168.136.1.55684: S 2273668949:2273668949(0) ack 869998902 win 4380

09:35:11.074928 IP 192.168.136.1.55684 > 192.168.136.100.80: . ack 1 win 16425

09:35:11.080936 IP 192.168.136.1.55684 > 192.168.136.100.80: P 1:299(298) ack 1 win 16425

09:35:11.081029 IP 192.168.136.100.80 > 192.168.136.1.55684: . ack 299 win 4678

Serverside:

09:35:11.081022 IP 192.168.136.1.55684 > 192.168.116.128.80: S 685865802:685865802(0) win 4380

09:35:11.081928 IP 192.168.116.128.80 > 192.168.136.1.55684: S 4193259095:4193259095(0) ack 685865803 win 5840

09:35:11.081943 IP 192.168.136.1.55684 > 192.168.116.128.80: . ack 1 win 4380

09:35:11.081955 IP 192.168.136.1.55684 > 192.168.116.128.80: P 1:299(298) ack 1 win 4380

09:35:11.083765 IP 192.168.116.128.80 > 192.168.136.1.55684: . ack 299 win 108

Client B - Src IP 192.168.116.1 - Virtual Server 192.168.136.100:

Clientside:

09:36:11.244040 IP 192.168.116.1.55769 > 192.168.136.100.80: S 3320618938:3320618938(0) win 8192

09:36:11.244152 IP 192.168.136.100.80 > 192.168.116.1.55769: S 3878120666:3878120666(0) ack 3320618939 win 4380

09:36:11.244839 IP 192.168.116.1.55769 > 192.168.136.100.80: . ack 1 win 16425

09:36:11.245830 IP 192.168.116.1.55769 > 192.168.136.100.80: P 1:299(298) ack 1 win 16425

09:36:11.245922 IP 192.168.136.100.80 > 192.168.116.1.55769: . ack 299 win 4678

Serverside:

09:36:11.245940 IP 192.168.136.1.55684 > 192.168.116.128.80: P 599:897(298) ack 4525 win 8904

09:36:11.247847 IP 192.168.116.128.80 > 192.168.136.1.55684: P 4525:5001(476) ack 897 win 142

Why was the second client flow permitted by the web server?

A.

A global SNAT is defined.

B.

SNAT automap was enabled on the virtual server.

C.

The idle TCP session from the first client was re-used.

D.

A source address persistence profile is assigned to the virtual server.

Full Access
Question # 9

An LTM Specialist has a single HTTPS virtual server doing SSL termination. No server SSL profile is defined. The pool members are on the internal VLAN answering on HTTP port 80. Users with certain browsers are experiencing issues.

Which two locations are most appropriate to gather packets needed to determine the SSL issue? (Choose two.)

A.

server interface

B.

user's computer

C.

LTM device's external VLAN

D.

LTM device's internal VLAN

E.

LTM device's management interface

Full Access
Question # 10

An LTM Specialist receives a request to monitor the network path through a member, but NOT the member itself.

Which monitor option should the LTM Specialist enable or configure?

A.

Reverse

B.

Up interval

C.

Transparent

D.

Alias address

E.

Time until up

Full Access
Question # 11

An LTM Specialist is running the following packet capture on an LTM device:

ssldump -Aed -ni vlan301 'port 443'

Which two SSL record message details will the ssldump utility display by default? (Choose two.)

A.

HTTP Version

B.

User-Agent

C.

ClientHello

D.

ServerHello

E.

Issuer

Full Access
Question # 12

An LTM Specialist is troubleshooting a problem on an eCommerce website. The user browses the online store using port 80, adding items to the shopping cart. The user then clicks the "Checkout" button on the site, which redirects the user to port 443 for the checkout process. Suddenly, the user's shopping cart is shown as empty. The shopping cart data is stored in memory on the server, and the default source address persistence profile is used on both virtual servers.

What is the issue?

A.

The port 80 pool member is deleting the user's session cookie.

B.

The port 443 pool member is deleting the user's session cookie.

C.

The port 80 and port 443 connections are balanced to the same node.

D.

The port 80 and port 443 connections are balanced to different nodes.

Full Access
Question # 13

-- Exhibit –

301b question answer

-- Exhibit --

Refer to the exhibit.

Which pool can be removed without affecting client traffic?

A.

ftp_pool

B.

http_pool

C.

server1_80

D.

server_pool

Full Access
Question # 14

-- Exhibit –

301b question answer

301b question answer

301b question answer

-- Exhibit --

Refer to the exhibits.

Users are able to access the application when connecting to the virtual server but are unsuccessful when connecting directly to the application servers. The LTM Specialist wants to allow direct access to the application servers.

Which configuration change resolves this problem?

A.

Enable port 443 on the virtual server.

B.

Configure a SNAT pool on the LTM device.

C.

Disable address translation on the virtual server.

D.

Configure an IP Forwarding virtual server on the LTM device.

E.

Configure a route to the web server subnet on the network router.

Full Access
Question # 15

-- Exhibit –

301b question answer

-- Exhibit --

Refer to the exhibit.

An LTM Specialist is investigating reports that users are unable to perform some commands through an FTP virtual server. The LTM Specialist performs a capture on the server side of the LTM device.

What is the issue with the application?

A.

data connection failing

B.

LIST command disallowed

C.

PORT command disallowed

D.

command connection failing

Full Access
Question # 16

A client is attempting to log in to a web application that requires authentication. The following HTTP headers are sent by the client:

GET /owa/ HTTP/1.1

Authorization: Basic dXNlcm5hbWU6cGFzc3dvcmQ=

User-Agent: curl/7.26.0

Host: 10.0.0.14

Accept: */*

Accept-EncodinG. gzip,deflate

The web server is responding with the following HTTP headers:

HTTP/1.1 401 Unauthorized

Content-TypE. text/html

Server: Microsoft-IIS/7.5

WWW-AuthenticatE. NTLM

DatE. Wed, 16 Aug 1977 19:12:31 GMT

Content-LengtH. 1293

The client has checked the login credentials and believes the correct details are being entered.

What is the reason the destination web server is sending an HTTP 401 response?

A.

The username and password are incorrect.

B.

The server has an incorrect date configured.

C.

The client is using the wrong type of browser.

D.

The wrong authentication mechanism is being used.

Full Access
Question # 17

-- Exhibit –

301b question answer

-- Exhibit --

Refer to the exhibit.

An LTM Specialist is troubleshooting an issue with SSL and is receiving the error shown when connecting to the virtual server. When connecting directly to the pool member, clients do NOT receive this message, and the application functions correctly. The LTM Specialist exports the appropriate certificate and key from the pool member and imports them into the LTM device. The LTM Specialist then creates the Client SSL profile and associates it with the virtual server.

What is the issue?

A.

The SSL certificate and key have expired.

B.

The SSL certificate and key do NOT match.

C.

The client CANNOT verify the certification path.

D.

The common name on the SSL certificate does NOT match the hostname of the site.

Full Access
Question # 18

-- Exhibit –

301b question answer

-- Exhibit --

Refer to the exhibit.

A user is unable to access a secure application via a virtual server.

What is the cause of the issue?

A.

The client authentication failed.

B.

The virtual server does NOT have a pool configured.

C.

The client and server CANNOT agree on a common cipher.

D.

The virtual server does NOT have a client SSL profile configured.

Full Access
Question # 19

When re-licensing an LTM device from the command line interface, which tmsh command should the LTM Specialist use to generate the required information to provide on the F5 licensing portal?

A.

tmsh run /util get-dossier

B.

tmsh generate /sys dossier

C.

tmsh list /sys registration-key

D.

tmsh install /sys license registration-key

Full Access
Question # 20

An LTM Specialist is receiving reports from customers about multiple applications failing to work properly. The LTM Specialist looks at the services running and notices that the bigd process has NOT started.

How are monitored LTM device objects marked when the bigd process is stopped?

A.

red or offline

B.

blue or unchecked

C.

green or available

D.

unchanged until bigd is restarted

Full Access
Question # 21

-- Exhibit –

301b question answer

-- Exhibit --

Refer to the exhibit.

An LTM Specialist configures a virtual server that balances HTTP connections to a pool of three application servers. Approximately one out of every three connections to the virtual server fails.

Which two actions will resolve the problem? (Choose two.)

A.

Assign a custom HTTP monitor to the pool.

B.

Enable SNAT automap on the virtual server.

C.

Verify that port lockdown is set to allow port 80.

D.

Verify the default gateway on the application servers.

E.

Increase the TCP timeout value in the default TCP profile.

Full Access
Question # 22

An LTM device pool has suddenly been marked down by a monitor. The pool consists of members 10.0.1.1:443 and 10.0.1.2:443 and are verified to be listening. The affected virtual server is 10.0.0.1:80.

Which two tools should the LTM Specialist use to troubleshoot the associated HTTPS pool monitor via the command line interface? (Choose two.)

A.

curl

B.

telnet

C.

ssldump

D.

tcpdump

Full Access
Question # 23

An application is configured on an LTM device:

Virtual server: 10.0.0.1:80 (VLAN vlan301)

SNAT IP: 10.0.0.1

Pool members: 10.0.1.1:8080, 10.0.1.2:8080, 10.0.1.3:8080 (VLAN vlan302)

Which packet capture should the LTM Specialist perform on the LTM device command line interface to capture only server traffic specifically for this application?

A.

tcpdump -ni 0.0:nnn -s 0 'host 10.0.0.1' -w /var/tmp/trace.cap

B.

tcpdump -ni vlan301 -s 0 'port 80 and host 10.0.0.1' -w /var/tmp/trace.cap

C.

tcpdump -ni vlan302 -s 0 'port 8080 and (host 10.0.1.1 or host 10.0.1.2 or host 10.0.1.3)' -w /var/tmp/trace.cap

D.

tcpdump -ni 0.0:nnn -s 0 '(port 80 and host 10.0.0.1) or (port 8080 and host 10.0.1.1 or host 10.0.1.2 or host 10.0.1.3)' -w /var/tmp/trace.cap

Full Access
Question # 24

An LTM Specialist must perform a packet capture on a virtual server with an applied standard FastL4 profile. The virtual server 10.0.0.1:443 resides on vlan301.

Which steps should the LTM Specialist take to capture the data payload successfully while ensuring no other virtual servers are affected?

A.

The standard FastL4 profile should have PVA acceleration disabled. Then the packet capture tcpdump -ni vlan301 should be executed on the command line interface.

B.

The packet capture tcpdump -ni vlan301 should be executed on the command line interface. There is no need to change profiles or PVA acceleration.

C.

A new FastL4 profile should be created and applied to the virtual server with PVA acceleration disabled. Then the packet capture tcpdump -ni vlan301 should be executed on the command line interface.

D.

The LTM device is under light load. The traffic should be mirrored to a dedicated sniffing device. On the sniffing device, the packet capture tcpdump -ni vlan301 should be executed.

Full Access
Question # 25

An LTM Specialist uploaded new releases .iso and .md5 files titled "BIGIP-FILENAME" via the GUI.

Which commands are run via the command line from the root directory to verify the integrity of the new .iso file?

A.

cd /var/shared/images

md5sum --check BIGIP-FILENAME.iso

B.

cd /shared/images

md5sum --check BIGIP-FILENAME.iso

C.

cd /var/shared/images

md5sum --check BIGIP-FILENAME.iso.md5

D.

cd /shared/images

md5sum --check BIGIP-FILENAME.iso.md5

Full Access
Question # 26

Windows PC clients are connecting to a virtual server over a high-speed, low-latency network with no packet loss.

Which built-in client-side TCP profile provides the highest throughput for HTTP downloads?

A.

tcp

B.

tcp-legacy

C.

tcp-lan-optimized

D.

tcp-wan-optimized

Full Access
Question # 27

Given the iRule:

when HTTP_REQUEST {

if {([HTTP::username] ne "") and ([HTTP::password] ne "") } {

log local0. "client ip [IP::remote_addr] credentials provided [HTTP::username] [HTTP::password]"}

else {

pool old_application_pool

}

}

The associated virtual server has a default pool named new_application_pool.

Which functionality does the iRule provide?

A.

Allows clients with credentials to access the old_application_pool and logs the access of clients without credentials to the new_application_pool.

B.

Allows clients without credentials to access the old_application_pool and logs the access of clients with credentials to the new_application_pool.

C.

Allows clients with credentials to access the old_application_pool and logs the attempted access of clients with credentials to the new_application_pool.

D.

Allows clients without credentials to access the old_application_pool and logs the attempted access of clients without credentials to the new_application_pool.

Full Access
Question # 28

An LTM Specialist is troubleshooting an HTTP monitor. The pool member is accessible directly through a browser, but the HTTP monitor is marking the pool member as down.

GET / HTTP/1.1

HTTP/1.1 400 Bad Request

DatE. Tue, 23 Oct 2012 21:39:07 GTM

Server: Apache/2.2.22 (FreeBSD) PHP/5.4.4

mod_ssl/2.2.22 OpenSSL/0.9.8q DAV/2

Content-LengtH. 226

Connection: close

Content-TypE. text/html; charset=iso-8859-1

Which issue is the pool member having?

A.

The pool member has too many concurrent connections.

B.

The pool member is rejecting the request because it is invalid.

C.

The pool member lacks the object requested by the monitor.

D.

The pool member is NOT accepting requests from the LTM device IP address.

Full Access
Question # 29

Users in a branch office are reporting a website is always slow. No other users are experiencing the problem. The LTM Specialist tests the website from the external VLAN along with testing the servers directly. All tests indicate normal behavior. The environment is a single HTTP virtual server on the external VLAN with a single pool containing three HTTP pool members on the internal VLAN.

Which two locations are most appropriate to collect additional protocol analyzer data? (Choose two.)

A.

a user's machine

B.

the switch local to the user

C.

the LTM device's internal VLAN

D.

the LTM device's external VLAN

E.

a user's Active Directory authentication

Full Access
Question # 30

-- Exhibit –

301b question answer

-- Exhibit --

Refer to the exhibit.

An LTM Specialist is investigating intermittent page load issues being reported by users.

What should the LTM Specialist do to resolve the issue?

A.

Remove HTTP monitor on the pool.

B.

Assign an HTTP monitor to the pool.

C.

Select least connections load balancing method on virtual server.

D.

Remove least connections load balancing method on virtual server.

Full Access
Question # 31

-- Exhibit –

301b question answer

-- Exhibit --

Refer to the exhibit.

The decoded TCPDump capture is a trace of a failing health monitor. The health monitor is sending the string shown in the capture; however, the server response is NOT as expected. The receive string is set to 'SERVER IS UP'.

What is the solution?

A.

The GET request Host header field requires a host name.

B.

Incorrect syntax in send string. 'HTTP/1.1' should be 'HTTP1.1'.

C.

The /test_page.html does NOT exist on the web server and should be added.

D.

Incorrect syntax in send string. 'Connection: Close' should be 'Connection: Open'.

Full Access