101 Exam Questions
684 real 101 exam questions with expert-verified answers and explanations. Page 5 of 14.
- Question #212Section 4: Security Basics
Which is an advantage of terminating SSL communication at the BIG-IP rather than the ultimate web server.
SSL offloadSSL terminationweb server performancecertificate management - Question #213Section 2: F5 Solutions and Technology
A BIG-IP has two load balancing virtual servers at 150.150.10.10:80 and 150.150.10.10:443. The port 80 virtual server has SNAT automap configured. There is also a SNAT configured a...
SNATSNAT automapSNAT precedencesource IP translation - Question #214Section 2: F5 Solutions and Technology
Which statement is true concerning SNATs using automap.
SNAT automapfloating self-IPsource address translationhigh availability - Question #215Section 2: F5 Solutions and Technology
Which two statements are true about NATs. (Choose two.)
NATone-to-one mappingaddress translationTCP UDP ICMP - Question #216Section 2: F5 Solutions and Technology
Which statement describes a typical purpose of iRules.
iRulesHTTP data streamtraffic managementpool selection - Question #217Section 2: F5 Solutions and Technology
A virtual server is listening at 10.10.1.100:80 and has the following iRule associated with it: when HTTP_REQUEST { if { [HTTP::header UserAgent] contains "MSIE" } { pool MSIE_pool...
iRulesHTTP_REQUEST eventUser-Agent headerconditional pool selection - Question #218Section 2: F5 Solutions and Technology
Which event is always triggered when the client sends data to a virtual server using TCP.
iRules eventsCLIENT_DATATCP eventsvirtual server events - Question #219Section 2: F5 Solutions and Technology
A virtual server is listening at 10.10.1.100:any and has the following iRule associated with it: when CLIENT_ACCEPTED { if {[TCP::local_port] equals 21 } { pool ftppool } elseif {[...
iRulesCLIENT_ACCEPTED eventTCP port matchingdefault pool behavior - Question #220Section 2: F5 Solutions and Technology
When configuring a Virtual Server to use an iRule with an HTTP_REQUEST event, which lists required steps in a proper order to create all necessary objects.
iRules configurationvirtual server setupHTTP profileobject creation order - Question #221Section 2: F5 Solutions and Technology
Which statement is true concerning a functional iRule.
iRulesevent declarationsTCLBIG-IP scripting - Question #222Section 2: F5 Solutions and Technology
What is the purpose of provisioning?
provisioningmoduleslicensingresource allocation - Question #223Section 2: F5 Solutions and Technology
What is the purpose of Zonerunner?
ZonerunnerBINDGTMDNS zone management - Question #224Section 4: Security Basics
GTM can sign a DNS response using DNSSEC only if the DNS request ?GTM can sign a DNS response using DNSSEC only if the DNS request
DNSSECGTMDNS securityzone signing - Question #225Section 2: F5 Solutions and Technology
Which statement about Generic Host Servers is true?
GTMGeneric Host Serversmonitoringvirtual servers - Question #226Section 2: F5 Solutions and Technology
By default, how frequently are log files rotated?
log rotationsystem administrationlogging - Question #227Section 3: Load Balancing and High Availability Basics
When configuring monitors for individual pool members, which three options can be selected? (Choose three.)
monitorspool membershealth monitoringGTM - Question #228Section 2: F5 Solutions and Technology
Which two daemons only run after the entire license process has been completed? (Choose two.)
daemonslicensingsystem processesGTM - Question #229Section 2: F5 Solutions and Technology
What does the BIG-IP_add script do?
BIG-IP_add scriptcertificate exchangeGTM synckey management - Question #230Section 3: Load Balancing and High Availability Basics
Which dynamic load balancing mode affects loadbalancing decisions based on path metrics?
load balancingCompletion Ratepath metricsdynamic algorithms - Question #231Section 2: F5 Solutions and Technology
If the GTM System receives a packet destined for one of its Listener addresses the GTM will process the request _____
GTM ListenerWideIP processingBINDDNS request handling - Question #232Section 2: F5 Solutions and Technology
Which file contains the list of events for which the GTM System will send traps to an SNMP manager?
SNMPtrapsalert.confmonitoring configuration - Question #233Section 2: F5 Solutions and Technology
Which three parameters can be specified within the Setup Utility? (Choose three.)
Setup Utilityinitial configurationadmin addressesSSH restrictions - Question #234Section 4: Security Basics
Which of the following are correct regarding Wildcard entities? (Choose 2)
ASMwildcard entitiespositive securityweb application firewall - Question #235Section 4: Security Basics
Flow login allows for more granular protection of login and logout URLs within web applications. Which of the following are components of flow login? (Choose 3)
ASMflow loginlogin URLsaccess validation - Question #236Section 2: F5 Solutions and Technology
What occurs when a load?command is issued?What occurs when a ? load?command is issued?
TMSHload commandconfiguration managementrunning config - Question #237Section 2: F5 Solutions and Technology
What occurs when a load?command is issued?What occurs when a ? load?command is issued?
TMSHpool creationCLI syntaxBIG-IP configuration - Question #238Section 2: F5 Solutions and Technology
Which three files/data items are included in a BIG-IP UCS backup file? (Choose three.)
UCS backupconfiguration backuplicensehostname - Question #239Section 2: F5 Solutions and Technology
Could an iRule perform persistence based on a cookie?
iRulespersistencecookie persistencesession management - Question #240Section 3: Load Balancing and High Availability Basics
An LTM has the 3 virtual servers, 2 SNATs, four self IP addresses defined and the networks shown in the exhibit. Selected options for each object are shown below. Settings not show...
virtual serversSNAT automaptransparent modetraffic routing - Question #241Section 2: F5 Solutions and Technology
How is traffic flow through transparent virtual servers different from typical virtual servers?
transparent virtual serversIP address translationvirtual server typestraffic flow - Question #242Section 3: Load Balancing and High Availability Basics
How is traffic flow through transparent virtual servers different from typical virtual servers?
session persistencecookie persistenceIP persistenceload balancing - Question #243Section 2: F5 Solutions and Technology
A monitor has been defined with an alias port of 443. All other options are left at their defaults. The administrator wishes to assign it to a pool of members where the members' po...
health monitorsalias portpool membersmonitor configuration - Question #244Section 2: F5 Solutions and Technology
Which two processes are involved when BIG-IP systems issue traps? (Choose two.)
SNMP trapsalertdsyslog-ngBIG-IP processes - Question #246Section 2: F5 Solutions and Technology
After editing and saving changes to the configuration file containing virtual servers, what is the immediate result?
configuration managementconfig file editingBIG-IP administrationconfig loading - Question #247Section 5: Application Delivery Basics
In the following configuration, a virtual server has the following HTTP class configuration: HTTP Class 2 = No filters
HTTP classtraffic policycontent switchingvirtual server - Question #248Section 4: Security Basics
Learning suggestions in the Policy Building pages allow for which of the following? (Choose 2)
ASM policy builderlearning suggestionssecurity policyWAF - Question #249Section 2: F5 Solutions and Technology
Under what condition must an appliance license be reactivated.
BIG-IP licensinglicense reactivationsoftware upgradesystem administration - Question #250Section 2: F5 Solutions and Technology
Which three methods can be used for initial access to a BIG-IP system. (Choose three.)
initial accessmanagement portserial consoleBIG-IP setup - Question #251Section 4: Security Basics
When implementing Data Guard, BIG-IP ASM scans for suspicious patterns in? (Choose 2)
Data GuardASMserver response scanningdata loss prevention - Question #252Section 1: OSI Model, Network, and Application Delivery Basics
A web client accesses a web application using what protocol?
HTTP protocolweb applicationclient-server communicationapplication protocols - Question #253Section 1: OSI Model, Network, and Application Delivery Basics
In the following request, which portion represents a parameter name?
URL parametersHTTP request structurequery stringparameter naming - Question #254Section 4: Security Basics
Which of the following is not a method of protection for user-input parameters?
input parameter protectionattack signaturesASMlength restriction - Question #255Section 4: Security Basics
By default, BIG-IP ASM allows which of the following HTTP methods in a client request? (Choose 3)
HTTP methodsASM default policyallowed methodssecurity policy - Question #256Section 4: Security Basics
The Flow Login feature prevents which web vulnerability from occurring?
Flow Loginforceful browsingASM featuresweb vulnerabilities - Question #257Section 3: Load Balancing and High Availability Basics
On a standalone BIG-IP ASM system, which of the following configuration is valid?
pool configurationload balancing methodspersistenceBIG-IP ASM - Question #258Section 4: Security Basics
Which of the following violations cannot be learned by Traffic Learning?
Traffic LearningRFC violationsASM learning enginesecurity policy - Question #259Section 4: Security Basics
What is the purpose of the IP addresses listed in the Trusted IP section when using Policy Builder?
Policy Buildertrusted IPASM learningsecurity policy - Question #260Section 4: Security Basics
Which of the following protocols can be protected by Protocol Security Manager? (Choose 3)
Protocol Security ManagerSMTPprotocol protectionASM - Question #261Section 4: Security Basics
Which of the following user roles have access to make changes to security policies? (Choose 2)
ASM user rolessecurity policy accessadministrator permissionsRBAC - Question #262Section 4: Security Basics
Which of the following are methods BIG-IP ASM utilizes to mitigate web scraping vulnerabilities? (Choose 2)
ASM web scrapingbot detectionJavaScript injectioncookie validation