101 Exam Questions
684 real 101 exam questions with expert-verified answers and explanations. Page 4 of 14.
- Question #159Section 2: F5 Solutions and Technology
When we have a * wildcard entity configured in the File Type section with tightening enabled, the following may occur when requests are passed through the policy. Which is the most...
wildcard entityfile type enforcementpolicy tighteningASM learning - Question #160Section 2: F5 Solutions and Technology
A request is sent to the BIG-IP ASM System that generates a Length error violation. Which of the following length types provides a valid learning suggestion? (Choose 3)
length violationsASM learningpolicy suggestionslength enforcement - Question #161Section 2: F5 Solutions and Technology
There is multiple HTTP class profiles assigned to a virtual server. Each profile has Application Security enabled. Which statement is true?
HTTP class profilesvirtual serverApplication Securitytraffic processing order - Question #162Section 4: Security Basics
A security audit has determined that your web application is vulnerable to a crosssite scripting attack. Which of the following measures are appropriate when building a security po...
cross-site scriptingXSSattack signaturesparameter metacharacters - Question #163Section 2: F5 Solutions and Technology
The BIG-IP ASM System sets two types of cookies to enforce elements in the security policy. The two types are main and frame cookies. What is the purpose of the frame cookie? (Choo...
ASM cookiesframe cookiedynamic parametersflow extraction - Question #164Section 2: F5 Solutions and Technology
Which statement is correct concerning differences between BIG-IP ASM platforms?
BIG-IP ASM platformshardware modelsstandalone vs module - Question #165Section 4: Security Basics
Which of the following mitigation techniques is based on anomaly detection? (Choose 2)
anomaly detectionbrute force preventionweb scrapingmitigation techniques - Question #166Section 2: F5 Solutions and Technology
Which of the following are default settings when using the Policy Builder to build a security policy based on the QA lab deployment scenario? (Choose 2)
Policy Builderstagingblocking modesecurity policy defaults - Question #167Section 2: F5 Solutions and Technology
Which of the following statements are incorrect regarding protection of web services? (Choose 2)
web services protectionXML securityWSDLattack signatures - Question #168Section 2: F5 Solutions and Technology
Which of the following is correct regarding static parameters?
static parametersparameter typesweb application logic - Question #169Section 3: Load Balancing and High Availability Basics
When configuring the BIG-IP ASM System in redundant pairs, which of the following are synchronized? (Choose 2)
redundant pairshigh availabilitysynchronizationsecurity policies - Question #170Section 4: Security Basics
Sensitive parameter is a feature used to hide sensitive information from being displayed in which of the following?
sensitive parametersdata maskingASM loggingprivacy - Question #171Section 2: F5 Solutions and Technology
Tightening is a feature of which type of entity?
tighteningwildcard parametersentity typessecurity policy - Question #172Section 5: Application Delivery Basics
System. The virtual server has an HTTP class profile associated with Application Security enabled, all class filters set to match all, and a pool consisting of foo.com members. The...
HTTP class profilevirtual serverpool selectiontraffic routing - Question #173Section 2: F5 Solutions and Technology
Which of the following is correct concerning HTTP classes?
HTTP classesvirtual serverweb applicationASM configuration - Question #174Section 4: Security Basics
Which of the following statements are correct regarding Attack signatures? (Choose 2)
attack signaturespositive securitysignature assignmentrequest response - Question #175Section 2: F5 Solutions and Technology
Which of the following is not a feature of a standalone BIG-IP ASM System?
standalone ASMASM featurespool memberssecurity model - Question #176Section 2: F5 Solutions and Technology
What are the best reasons for using the Deployment Wizard? (Choose 3)
Deployment Wizardpolicy buildingapplication encodingautomated policy - Question #177Section 2: F5 Solutions and Technology
When initially configuring the BIG-IP System using the config tool, which of the following parameters can be configured? (Choose 3)
BIG-IP initial setupmanagement porthostname configurationconfig tool - Question #178Section 2: F5 Solutions and Technology
When building a policy based on live traffic using the automated policy builder, which of the following elements will not be taken into account when analyzing the traffic?
automated policy builderlive traffic analysistraffic elementssecurity policy building - Question #179Section 2: F5 Solutions and Technology
A user is building a security policy using the Deployment Wizard and the Rapid Deployment application template. By default, which settings will be applied to the security policy? (...
Rapid DeploymentData Guardenforcement modeattack signature defaults - Question #180Section 4: Security Basics
Which method of protection is not provided by the Rapid Deployment policy template?
Rapid Deployment templatedynamic parameter validationpolicy protectionsHTTP compliance - Question #181Section 2: F5 Solutions and Technology
Which of the following are properties of an ASM logging profile? (Choose 2)
ASM logging profilestorage typestorage filterBIG-IP ASM - Question #182Section 2: F5 Solutions and Technology
Which of the following methods of protection are used by the BIG-IP ASM System to mitigate buffer overflow attacks?
ASMbuffer overflowattack signatureslength restrictions - Question #183Section 1: OSI Model, Network, and Application Delivery Basics
Which HTTP response code ranges indicate an error condition? (Choose 2)
HTTP response codes4xx errors5xx errorsHTTP status - Question #184Section 2: F5 Solutions and Technology
The Web Application Security Administrator user role can perform which of the following functions? (Choose 2)
ASM user rolesWeb Application Security AdministratorRBACBIG-IP ASM - Question #185Section 3: Load Balancing and High Availability Basics
On a BIG-IP ASM 3600, in standalone mode, which of the following pool configurations is valid?
pool configurationpool memberspersistenceload balancing method - Question #186Section 1: OSI Model, Network, and Application Delivery Basics
The following request is sent to the BIG-IP ASM System: Which of the following components in this requests line represent the query string?
HTTP requestquery stringURL componentsHTTP parameters - Question #187Section 2: F5 Solutions and Technology
Which level of parameter assumes the highest precedence in BIG-IP ASM System processing logic?
ASM parametersparameter precedenceflow-level parameterBIG-IP ASM - Question #188Section 2: F5 Solutions and Technology
Which of the following storage type combinations are configurable in an ASM logging profile?
ASM loggingstorage typeslocal storageremote storage - Question #189Section 2: F5 Solutions and Technology
Which must be sent to the license server to generate a new license.
BIG-IP licensingdossierlicense serversystem activation - Question #191Section 2: F5 Solutions and Technology
When initially configuring the BIG-IP system using the config utility, which two parameters can be set. (Choose two.)
BIG-IP initial configurationmanagement portIP addressnetmask - Question #192Section 3: Load Balancing and High Availability Basics
A site has six members in a pool. All of the servers have been designed, built, and configured with the same applications. It is known that each client's interactions vary signific...
load balancingObserved methoddynamic load balancingserver performance - Question #193Section 3: Load Balancing and High Availability Basics
The incoming client IP address is 205.12.45.52. The last five connections have been sent to members C, D, A, B, B. The incoming client. IP address is 205.12.45.52. The last five co...
load balancingpool member selectionconnection statisticssource IP persistence - Question #194Section 3: Load Balancing and High Availability Basics
A site has six members in a pool. Three of the servers are new and have more memory and a faster processor than the others. Assuming all other factors are equal and traffic should...
load balancingRatio methodObserved methodheterogeneous servers - Question #195Section 3: Load Balancing and High Availability Basics
Which two can be a part of a pool's definition. (Choose two.)
pool definitionhealth monitorsload balancing modepool configuration - Question #196Section 2: F5 Solutions and Technology
What is required for a virtual server to support clients whose traffic arrives on the internal VLAN and pool members whose traffic arrives on the external VLAN.
virtual serverVLAN configurationinternal VLANBIG-IP networking - Question #197Section 2: F5 Solutions and Technology
A standard virtual server has been associated with a pool with multiple members. Assuming all other settings are left at their defaults, which statement is always true concerning t...
virtual serverclient IP addressSNATconnection processing - Question #198Section 3: Load Balancing and High Availability Basics
Monitors can be assigned to which three resources. (Choose three.)
health monitorspoolsnodespool members - Question #199Section 3: Load Balancing and High Availability Basics
A site has assigned the ICMP monitor to all nodes and a custom monitor, based on the HTTP template, to a pool of web servers. The HTTPbased monitor is working in all cases. The ICM...
health monitorsICMP monitorHTTP monitorpool member status - Question #200Section 3: Load Balancing and High Availability Basics
A site would like to ensure that a given web server's default page is being served correctly prior to sending it client traffic. They assigned the A site would like to ensure that...
HTTP monitorpool member statusGET requesthealth monitoring - Question #201Section 2: F5 Solutions and Technology
A site is load balancing to a pool of web servers. Which statement is true concerning BIG-IP's ability to verify whether the web servers are functioning properly or not.
health monitorsweb server monitoringpool memberscontent verification - Question #202Section 2: F5 Solutions and Technology
The current status of a given pool is ffline.(red). Which condition could explain that state. Assume the descriptions below include all monitorsThe current status of a given pool i...
pool statushealth monitorsoffline statemonitor assignment - Question #203Section 2: F5 Solutions and Technology
You need to terminate client SSL traffic at the BIG-IP and also to persist client traffic to the same pool member based on a BIG-IP supplied cookie. Which four are profiles that wo...
SSL terminationClientSSL profilecookie persistencevirtual server profiles - Question #204Section 2: F5 Solutions and Technology
A site needs to terminate client HTTPS traffic at the BIG-IP and forward that traffic unencrypted. Which two are profile types that must be associated with such a virtual server. (...
SSL offloadClientSSL profilevirtual server profilesHTTPS termination - Question #205Section 2: F5 Solutions and Technology
Which three statements describe a characteristic of profiles. (Choose three.)
BIG-IP profilesparent profilescustom profilesprofile inheritance - Question #206Section 3: Load Balancing and High Availability Basics
A virtual server is defined using a sourceaddress based persistence profile. The last five connections were A, B, C, A, C . Given the conditions shown in the graphic, if a client w...
source address persistencepersistence tablepool member selectionround robin - Question #207Section 3: Load Balancing and High Availability Basics
How is persistence configured.
persistence profilevirtual server configurationpersistence methods - Question #208Section 3: Load Balancing and High Availability Basics
Which cookie persistence method requires the fewest configuration changes on the web servers to be implemented correctly.
cookie persistenceinsert modeweb server configurationpersistence methods - Question #210Section 4: Security Basics
Assume a virtual server has a ServerSSL profile. What SSL certificates are required on the pool members.
ServerSSL profileSSL certificatespool membersre-encryption