This page was exported from Free Exams Dumps Materials [ http://exams.dumpsmaterials.com ] Export date:Thu Nov 21 20:57:09 2024 / +0000 GMT ___________________________________________________ Title: Jan 10, 2023 Reliable Study Materials for 301b Exam Success For Sure [Q82-Q105] --------------------------------------------------- Jan 10, 2023 Reliable Study Materials for 301b Exam Success For Sure 100% Latest Most updated 301b Questions and Answers QUESTION 82An LTM Specialist notices the following error on the stdout console:mcpd[2395]: 01070608:0: License is not operational(expired or digital signature does not match contents)Which command should be executed to verify the LTM device license?  bigpipe version  tmsh show /sys license  tmsh /util bigpipe version  tmsh show /sys license status QUESTION 83— Exhibit-— Exhibit –Refer to the exhibit.A company uses a complex piece of client software that connects to one or more virtual servers (VS) hosted on an LTM device. The client software is experiencing issues. An LTM Specialist is tasked with finding the cause of the problem.The LTM Specialist has the tcpdump extract and knows the client software has at least one connection to a VS on port 1990. However, when a tcpdump runs on the internal VLAN, there is no record of port 1990 in the tcpdump.Why is there no record of port 1990 in the tcpdump?  The LTM device drops the connection.  Port 1990 is a well-known port, so its use is restricted.  The LTM device performs a Port Address Translation (PAT).  The LTM device performs a Network Address Translation (NAT).  Explanation:— Exhibit –Macintosh HD:Users:danielkeller:Desktop:images 301b:LTMB211e1.png— Exhibit –Refer to the exhibit.A company uses a complex piece of client software that connects to one or more virtual servers hosted on an LTM device. The client software is experiencing issues. An LTM Specialist must determine the cause of the problem.The LTM Specialist has the tcpdump extract and knows the client source IP is168.210.232.5.Assuming no wildcard virtual servers, how many distinct virtual servers does the client connect to on the LTM device?A.2B.3C.4D.6 QUESTION 84A device on the network is configured with the same IP address as the management address of the active LTM device, causing the management GUI to be inaccessible.Which two methods should the LTM Specialist use to access the LTM device in order to change the management IP address? (Choose two.)  Connect via ssh to the AOM IP address.  Connect via ssh to the management address.  Connect to the LTM device via serial connection.  Connect a monitor and keyboard to the LTM device.  Connect via ssh to the standby unit and connect via ssh across the serial link between the devices. QUESTION 85— Exhibit –— Exhibit —Refer to the exhibit.An LTM device is used to load balance web content over a secure channel.The developers of the web content have done a trace using an HTTP profiler application. They believe that allowing the LTM device to compress traffic to the client will improve performance. The client can utilize GZIP or deflate compression algorithms.An LTM Specialist must implement the compression.The LTM Specialist has completed the following actions:1. Create the relevant profile.2. Apply the relevant profile to the virtual server (VS).After applying the relevant profile, the LTM device is failing to compress the traffic. Instead, the traffic is being served with an error.What is the problem?  The incorrect compression algorithm is applied to the compression profile.  The LTM device CANNOT SSL offload the traffic in order to read and compress it.  The Protocol Profile (Client) option of “Allow Compression” needs to be enabled.  The Protocol Profile (Server) option of “Allow Compression” needs to be enabled. QUESTION 86— Exhibit –— Exhibit —Refer to the exhibits.Users are able to access the application when connecting to the virtual server but are unsuccessful when connecting directly to the application servers. The LTM Specialist wants to allow direct access to the application servers.Which configuration change resolves this problem?  Enable port 443 on the virtual server.  Configure a SNAT pool on the LTM device.  Disable address translation on the virtual server.  Configure an IP Forwarding virtual server on the LTM device.  Configure a route to the web server subnet on the network router. Explanation/Reference:QUESTION 87The LTM device is configured to provide load balancing to a set of web servers that implement access control lists (ACL) based on the source IP address of the client. The ACL is at the network level and the web server is configured to send a TCP reset back to the client if it is NOT permitted to connect.The virtual server is configured with the default OneConnect profile.The ACL is defined on the web server as:Permit: 192.168.136.0/24Deny: 192.168.116.0/24The packet capture is taken of two individual client flows to a virtual server with IP address 192.168.136.100.Client A – Src IP 192.168.136.1 – Virtual Server 192.168.136.100:Clientside:09:35:11.073623 IP 192.168.136.1.55684 > 192.168.136.100.80: S 869998901:869998901(0) win 8192 <mss1460,nop,wscale 2,nop,nop,sackOK>09:35:11.073931 IP 192.168.136.100.80 > 192.168.136.1.55684: S 2273668949:2273668949(0) ack869998902 win 4380 <mss 1460,nop,wscale 0,sackOK,eol>09:35:11.074928 IP 192.168.136.1.55684 > 192.168.136.100.80: . ack 1 win 1642509:35:11.080936 IP 192.168.136.1.55684 > 192.168.136.100.80: P 1:299(298) ack 1 win 1642509:35:11.081029 IP 192.168.136.100.80 > 192.168.136.1.55684: . ack 299 win 4678 Serverside:09:35:11.081022 IP 192.168.136.1.55684 > 192.168.116.128.80: S 685865802:685865802(0) win 4380 <mss1460,nop,wscale 0,sackOK,eol>09:35:11.081928 IP 192.168.116.128.80 > 192.168.136.1.55684: S 4193259095:4193259095(0) ack685865803 win 5840 <mss 1460,nop,nop,sackOK,nop,wscale 6>09:35:11.081943 IP 192.168.136.1.55684 > 192.168.116.128.80: . ack 1 win 438009:35:11.081955 IP 192.168.136.1.55684 > 192.168.116.128.80: P 1:299(298) ack 1 win 438009:35:11.083765 IP 192.168.116.128.80 > 192.168.136.1.55684: . ack 299 win 108 Client B – Src IP 192.168.116.1 – Virtual Server 192.168.136.100:Clientside:09:36:11.244040 IP 192.168.116.1.55769 > 192.168.136.100.80: S 3320618938:3320618938(0) win 8192<mss 1460,nop,wscale 2,nop,nop,sackOK>09:36:11.244152 IP 192.168.136.100.80 > 192.168.116.1.55769: S 3878120666:3878120666(0) ack3320618939 win 4380 <mss 1460,nop,wscale 0,sackOK,eol>09:36:11.244839 IP 192.168.116.1.55769 > 192.168.136.100.80: . ack 1 win 1642509:36:11.245830 IP 192.168.116.1.55769 > 192.168.136.100.80: P 1:299(298) ack 1 win 1642509:36:11.245922 IP 192.168.136.100.80 > 192.168.116.1.55769: . ack 299 win 4678 Serverside:09:36:11.245940 IP 192.168.136.1.55684 > 192.168.116.128.80: P 599:897(298) ack 4525 win 890409:36:11.247847 IP 192.168.116.128.80 > 192.168.136.1.55684: P 4525:5001(476) ack 897 win 142 Why was the second client flow permitted by the web server?  A global SNAT is defined.  SNAT automap was enabled on the virtual server.  The idle TCP session from the first client was re-used.  A source address persistence profile is assigned to the virtual server. QUESTION 88— Exhibit –— Exhibit –Refer to the exhibit.A pair of LTM devices is configured for HA.What happens if the pool member server with IP address 10.0.0.4 becomes totally unresponsive to the active LTM device, but is still responsive to the standby LTM device?  The HA-group will disable the trunk my_trunk.  The HTTP application will be unavailable via the LTM device.  The HA-group will initiate a fail-over because the threshold is set to 2.  The HA-group will initiate a fail-over because the HA-Group score will be zero. QUESTION 89— Exhibit-— Exhibit –Refer to the exhibit.An LTM Specialist creates a virtual server to load balance traffic to a pool of HTTPS servers. The servers use client certificates for user authentication. The virtual server has clientssl, serverssl, and http profiles enabled. Clients are unable to connect to the application through the virtual server, but they are able to connect to the application servers directly.Which change to the LTM device configuration will resolve the problem?  Install the server certificate/key and enable Proxy SSL.  Use the serverssl-insecure-compatible serverssl profile.  Configure the clientssl profile to require a client certificate.  Install the client’s issuing Certificate Authority certificate on the LTM device. QUESTION 90— Exhibit – — Exhibit -Refer to the exhibit. A layer 2 nPath routing configuration has been deployed. A packet capture contains a clientconnection packet with the following properties:Source IP: <Virtual Server>Destination IP: <Client A>At which two locations could the packet capture have been taken? (Choose two.)  the network interface of web server  the DMZ interface of the Internet firewall  the internal interface of the Internet firewall  the external VLAN interface of the LTM device QUESTION 91An LTM Specialist has configured a virtual server for www.example.com, load balancing connections to a pool of application servers that provide a shopping cart application. Cookie persistence is enabled on the virtual server. Users are able to connect to the application, but the user’s shopping cart fails to update. A traffic capture shows the following:Request:GET /cart/updatecart.php HTTP/1.1Host: www.example.comConnection: keep-aliveCache-Control: max-age=0User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_5) AppleWebKit/537.4 (KHTML, like Gecko) Chrome/22.0.1229.94 Safari/537.4 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-EncodinG. gzip,deflate,sdch Accept-LanguagE. en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 CookiE. BIGipServerwebstore_pool=353636524.20480.0000 Response:HTTP/1.1 200 OKDatE. Wed, 24 Oct 2012 18:00:13 GMTServer: Apache/2.2.22 (Ubuntu)X-Powered-By: PHP/5.3.10-1ubuntu3.1Set-CookiE. cartID=647A5EA6657828C69DB8188981CB5; path=/; domain=wb01.example.com Keep-AlivE. timeout=5, max=100 Connection: Keep-Alive Content-TypE. text/html No changes can be made to the application.What should the LTM Specialist do to resolve the problem?  Use an iRule to rewrite the cartID cookie domain.  Create a universal persistence profile on the cartID cookie.  Enable source address persistence as a fallback persistence method.  Create a cookie persistence profile with “match across services” enabled. QUESTION 92— Exhibit –— Exhibit —Refer to the exhibit.An LTM Specialist is troubleshooting a sync-failover group of three BIG-IP LTM devices. The command used is “tmsh run cm watch-devicegroup-device.”What does the output mean?  Configuration is synchronized between all the devices.  Configuration is not synchronized. Some modifications have been done on bigipA.  Configuration is not synchronized. Some modifications have been done on bigipB.  Configuration is not synchronized. Some modifications have been done on bigipC. QUESTION 93An application is configured on an LTM device:Virtual server: 10.0.0.1:80 (VLAN vlan301)SNAT IP: 10.0.0.1Pool members: 10.0.1.1:8080, 10.0.1.2:8080, 10.0.1.3:8080 (VLAN vlan302)Which packet capture should the LTM Specialist perform on the LTM device command line interface to capture only server traffic specifically for this application?  tcpdump -ni 0.0:nnn -s 0 ‘host 10.0.0.1’ -w /var/tmp/trace.cap  tcpdump -ni vlan301 -s 0 ‘port 80 and host 10.0.0.1’ -w /var/tmp/trace.cap  tcpdump -ni vlan302 -s 0 ‘port 8080 and (host 10.0.1.1 or host 10.0.1.2 or host 10.0.1.3)’ -w /var/tmp/trace.cap  tcpdump -ni 0.0:nnn -s 0 ‘(port 80 and host 10.0.0.1) or (port 8080 and host 10.0.1.1 or host 10.0.1.2 or host 10.0.1.3)’ -w /var/tmp/trace.cap QUESTION 94An LTM device has been configured to log the reasons for generating TCP RST packets.The following log entry occurs:“01230140:3: RST sent from 192.168.1.100:80 to 192.168.1.124:39272, [0x112d82a:1721] {peer} TCP RST from remote system.” Which condition will trigger this log entry?  A virtual server connection limit has been reached.  The host at the other end terminated the TCP connection.  The LTM device reset the connection because no pool members are available.  The LTM device has reached the maximum number of allowed attempts to send the data segment to the affected TCP connection. QUESTION 95— Exhibit –— Exhibit -Refer to the exhibit.An administrator created a monitor to a pool member web server, which resulted in a pool member that is marked red. The administrator knows the web server is working when it is accessed from another computer.What should the administrator do to correct the problem?  Change the default gateway on the server.  Create a SNAT in the LTM device configuration.  Change the route to the client in the LTM configuration.  Change the username and/or password on the monitor. QUESTION 96— Exhibit –— Exhibit —Refer to the exhibit.Users receive an error when attempting to connect to the website https://website.com. The website has a DNS record of 195.56.67.90. The upstream ISP has confirmed that there is nothing wrong with the routing between the user and the LTM device.The following tcpdump outputs have been captured:External Vlan, filtered on IP 168.210.232.500:25:07.598519 IP 168.210.232.5.33159 > 195.56.67.90.https: S 1920647964:1920647964(0) win 8192 <mss1450,nop,nop,sackOK>00:25:07.598537 IP 195.56.67.90.https > 168.210.232.5.33159: S 2690691360:2690691360(0) ack1920647965 win 4350 <mss 1460,sackOK,eol>00:25:07.598851 IP 168.210.232.5.33160 > 195.56.67.90.https: S 2763858764:2763858764(0) win 8192 <mss1450,nop,nop,sackOK>00:25:07.598858 IP 195.56.67.90.https > 168.210.232.5.33160: S 1905576176:1905576176(0) ack2763858765 win 4350 <mss 1460,sackOK,eol>Internal Vlan, filtered on IP 168.210.232.500:31:46.171124 IP 168.210.232.5.33202 > 192.168.100.20.http: S 2389057240:2389057240(0) win 4380<mss 1460,nop,wscale 0,sackOK,eol>What is the problem?  The filters on the tcpdumps are incorrect.  The DNS entry for website.com is incorrect.  The virtual server ‘WEBSERVICES1’ is listening on the incorrect port.  The firewall is dropping the connection coming from the pool members returned to the client.  The subnet masks of the pool members of pool WebServices1 and the f5 ‘Internal’ Vlan are incorrect. QUESTION 97An LTM Specialist has just manually failed the active LTM device over to the standby LTM device.The LTM Specialist notices the newly active LTM device is NOT currently receiving traffic. The LTM Specialist verifies the newly active device is responding to ARP but still no traffic is hitting the virtual servers. The LTM Specialist also notices that the virtual servers eventually start responding.What should be added to the configuration to resolve the problem?  vlan failsafe  floating self IP  network failover  MAC masquerading  connection mirroring QUESTION 98— Exhibit – — Exhibit –Refer to the exhibit.A failover has just occured on BIG-IP1. BIG-IP2 is now active and manages traffic as expected. Both Bigip’s are set with a gateway failsafe to check the reachability of the main border router. Switches have performed as expected.Where should the LTM Specialist check for potential issues?  Network Interface 2.1 of BIG-IP 2  Network Interface 2.1 of BIG-IP 1  Network Interface 2.2 of BIG-IP 2  Network Interface 2.2 of BIG-IP 1  Network Interface 1.1 of BIG-IP 1  Network Interface 1.1 of BIG-IP 2 QUESTION 99A customer needs to intercept all of the redirects its application is sending to clients. When a redirect is matched, the customer needs to log a message including the client IP address.Which iRule should be used?  when HTTP_RESPONSE { if { [HTTP::is_3xx] } { log local0. “redirecting client ip address [IP::addr [IP::remote_addr]]” } }  when HTTP_REQUEST {if { [HTTP::is_301] } {log local0. “redirecting client ip address [IP::addr [IP::remote_addr]]”}}  when HTTP_REQUEST {if { [HTTP::is_redirect] } {log local0. “redirecting client ip address [IP::addr [IP::remote_addr]]”}}  when HTTP_RESPONSE {if { [HTTP::is_redirect] } {log local0. “redirecting client ip address [IP::addr [IP::remote_addr]]”}} QUESTION 100An LTM Specialist is receiving reports from customers about multiple applications failing to work properly. The LTM Specialist looks at the services running and notices that the bigd process has NOT started.How are monitored LTM device objects marked when the bigd process is stopped?  red or offline  blue or unchecked  green or available  unchanged until bigd is restarted QUESTION 101— Exhibit –— Exhibit —Refer to the exhibit.A user is unable to access an HTTP application via a virtual server.What is the cause of the failure?  The host header requires a host name.  The virtual server is in the disabled state.  The Connection: Keep-Alive header is set.  There is no pool member available to service the request. QUESTION 102The pool members are serving up simple static web content.The current virtual server configuration is given as follows: tmsh list ltm virtual simpleltm virtual simple { destination 10.10.10.10:80 ip-protocol tcp mask 255.255.255.255 profiles { http { } httpcompression { } oneconnect { } tcp { } } snat automap vlans-disabled}tmsh list ltm pool simple_pool ltm pool simple_pool { members {10.10.10.11:80 { address 10.10.10.11 }10.10.10.12:80{ address 10.10.10.12 }10.10.10.12:80{ address 10.10.10.13 } }}Which three objects in the virtual server configuration can be removed without disrupting functionality of the virtual server? (Choose three.)  tcp  http  oneconnect  snat automap  httpcompression QUESTION 103A web application requires the client to provide the destination server and service identification.Which HTTP header will supply this information?  Host  From  Expect  Connection QUESTION 104An LTM Specialist configures an HTTP monitor as follows:ltm monitor http stats_http_monitor { defaults-from http destination *:*interval 5recv “Health check: OK”send “GET /stats/stats.html HTTP/1.1rnHost: www.example.comrnAccept-EncodinG. gzip,deflaternConnection: closernrn”time-until-up 0timeout 16}The monitor is marking all nodes as down. A trace of the HTTP conversation shows the following:GET /stats/stats.html HTTP/1.1Host: www.example.comAccept-EncodinG. gzip, deflateConnection: closeHTTP/1.1 401 Authorization RequiredDatE. Tue, 23 Oct 2012 19:38:56 GMTServer: Apache/2.2.15 (Unix)WWW-AuthenticatE. Basic realm=”Please enter your credentials”Content-LengtH. 480Connection: closeContent-TypE. text/html; charset=iso-8859-1Which action will resolve the problem?  Add an NTLM profile to the virtual server.  Add a valid username and password to the monitor.  Use an HTTPS monitor with a valid certificate instead.  Add a backslash before the colon in the receive string. QUESTION 105— Exhibit –— Exhibit –Refer to the exhibit.A user is unable to access a secure application via a virtual server.What is the cause of the issue?  The client authentication failed.  The virtual server does NOT have a pool configured.  The client and server CANNOT agree on a common cipher.  The virtual server does NOT have a client SSL profile configured.  Loading … Who should take the F5 301b exam The F5 BIG-IP Local Traffic Manager (LTM) Specialist: Maintain & Troubleshoot 301b Exam certification is an internationally-recognized validation that identifies persons who earn it as possessing skilled as F5 Certified Technology Specialists. If a candidate wants significant improvement in career growth needs enhanced knowledge, skills, and talents. The F5 BIG-IP Local Traffic Manager (LTM) Specialist: Maintain & Troubleshoot 301b Exam certification provide proof of this advanced knowledge and skill. If a candidate passed the prerequisite of this exam that is F5 LTM Specialist: Architect, Setup, and Deploy 301a Exam and has knowledge of associated technologies and skills that are required to pass F5 BIG-IP Local Traffic Manager (LTM) Specialist: Maintain & Troubleshoot 301b Exam then he should take this exam.   New F5 301b Dumps & Questions: https://www.dumpsmaterials.com/301b-real-torrent.html --------------------------------------------------- Images: https://exams.dumpsmaterials.com/wp-content/plugins/watu/loading.gif https://exams.dumpsmaterials.com/wp-content/plugins/watu/loading.gif --------------------------------------------------- --------------------------------------------------- Post date: 2023-01-10 11:28:38 Post date GMT: 2023-01-10 11:28:38 Post modified date: 2023-01-10 11:28:38 Post modified date GMT: 2023-01-10 11:28:38