201 TMOS Administration Questions and Answers

The current status of a given pool is offline (red). Which condition could explain that state? Assume the descriptions below include all monitors assigned for each scenario.

If a client ' s browser does not accept cookies, what occurs when the client connects to a virtual server using cookie persistence?

The 8IG-IP Administrator generates a qkview using " qkview -SO " and needs to transfer the output file via

SCP.

Which directory contains the output file?

When network failover is enabled, which of the following is true?

A BIG-IP has a virtual server at 150.150.10.10:80 with SNAT automap configured. This BIG-IP also has a SNAT at 150.150.10.11 set for a source address range of 200.200.1.0 / 255.255.255.0. All other settings are at

their default states. If a client with the IP address 200.200.1.1 sends a request to the virtual server, what is the source IP address when the associated packet is sent to the pool member?

Which statement is true regarding failover?

Which statement is true concerning the default communication between a redundant pair of BIG-IP devices?

Refer to the exhibit.

Which two pool members should be chosen for a new connection? (Choose two.)

A BIG-IP Administrator configures remote authentication and needs to make sure that users can still

login even when the remote authentication server is unavailable.

Which action should the BIG-IP Administrators in the remote authentication configuration to meet this

requirement?

Refer to the exhibit.

An LTM device has a virtual server mapped to www.f5.com. Users report that when they connect to

/resources/201.1.2h.l_l.com they are unable to receive content.

What is the likely cause of the issue?

Refer to the exhibit.

A BIG-IP Administrator configures a now VLAN on an HA pair of devices that does NOT yet have any

traffic. This action causes the assigned traffic group to fail over to the standby device.

Which VLAN setting should be changed to prevent this issue?

Which two can be a part of a pool ' s definition? (Choose two.)

Administrative user accounts have been defined on the remote LDAP server and are unable to log in to

the BIG-IP device.

Which log file should the BIG-IP Administrator check to find the related messages?

Which Virtual Server type should be used to load balance HTTP traffic to a pool of servers?

Refer to the exhibit.

During a planned upgrade lo a BIG-IP HA pair running Active/Standby, an outage to application traffic is reported shortly after the Active unit is forced to Standby Reverting the flower resolves the outage. What should the BIG-IP Administrator modify to avoid an outage during the next for over event?

The incoming client IP address is 205.12.45.52. The last five connections have been sent to members C, D, A, B, B. Given the virtual server and pool definitions and the statistics shown in the graphic, which member will be used for the next connection?

A BIG-IP Administrator is creating a new Trunk on the BIG-IP device. What objects should be added to the new Trunk being created?

A BIG-IP Administrator needs to have a BIG-IP linked to two upstream switches for resilience of the external network. The network engineer who is going to configure the switch instructs the BIG-IP Administrator to configure interface binding with LACP. Which configuration should the administrator use?

A 816-IP Administrator recently deployed an application Users are experiencing slow performance with

the application on some remote networks.

Which two modifications can the BIG-IP Administrator make to address this issue? (Choose two)

A 8IG-IP Administrator configures a node with a standard icmp Health Monitor. The Node shows as DOWN although the Backend Server is configured to answer ICMP requests. Which step should the administrator take next to find the root cause of this issue?

A BIG-IP Administrator is working with a BIG-IP device and discovers that one of the Interfaces on a

Trunk is DOWN.

What is the reason for this Interface status?

A BIG-IP Administrator creates a new VLAN on BIG-IP Cluster Member A and attaches an Interface to it. Although the Auto Config Sync is in place, the new VLAN does NOT show up on Cluster Member B. What should the BIG-IP Administrator do to ensure the new VLAN is configured on each Cluster Member?

Active connections to pool members are unevenly distributed. The load balancing method is Least Connections (member) Priority Group Activation is disabled. What is a potential cause of the event distribution?

Refer to the exhibit.

An organization is reporting slow performance accessing their Intranet website, hosted in a public cloud. All employees use a single Proxy Server with the public IP of 104.219.110.168 to connect to the Internet. What should the BIG-IP Administrator of the Intranet website do to fix this issue?

Which action will take place when a failover trigger is detected by the active system?

A BIG-IP Administrator has configured a BIG-IP cluster with remote user authentication against dcOl

f5trn.com. Only local users can successfully log into the system. Configsync is also failing.

Which two tools should the 8IG-IP Administrator use to further investigate these issues? (Choose two)

A site has six members in a pool. All of the servers have been designed, built, and configured with the same applications. It is known that each client ' s interactions vary significantly and can affect the performance of the

servers. If traffic should be sent to all members on a regular basis, which loadbalancing mode is most effective if the goal is to maintain a relatively even load across all servers?

A BIG-IP Administrator needs to determine which pool members in a pool have been manually forced offline and are NOT accepting any new traffic. Which status icon indicates this?

A)

B)

C)

D)

Which two can be a part of a virtual server ' s definition? (Choose two.)

A BIG-IP Administrator must configure the BIG-IP device to send system log messages to a remote syslog server In addition, the log messages need to be sent over TCP for guaranteed delivery. What should the BIG-IP Administrator configure?

Refer to the exhibit.

Which two pool members are eligible to receive new connections? (Choose two)

A virtual server is listening at 10.10.1.100:any and has the following iRule associated with it:

when CLIENT_ACCEPTED { if {[TCP::local_port] equals 80 } { pool pool1 } elseif {[TCP::local_port] equals 443} { pool pool2 }

If a user connects to 10.10.1.100 and port 22, which pool will receive the request?

Some users who connect to a busy Virtual Server have connections reset by the BIG-IP system. Pool member resources are NOT a factor in this behavior. What is a possible cause for this behavior?

Refer to the exhibit

The BIG-IP Administrator is unable to access the management console via Self-IP 10.10 1.33 and port 443.

What is the reason for this problem?

Refer to the exhibit.

A BIG-IP Administrator needs to deploy an application on the BIG-IP system to perform SSL offload and

re-encrypt the traffic to pool members.

During testing, users are unable to connect to the application.

What must the BIG-IP Administrator do to resolve the issue?

A BIG-IP Administrator is unable to connect to the management interface via HTTPS. What is a possible reason for this issue?

A BIG-IP Administrator makes a configuration change to the BIG-IP device. Which file logs the message regarding the configuration change?

The ICMP monitor has been assigned to all nodes. In addition, all pools have been assigned custom monitors. The pool is marked available. If a pool is marked available (green) which situation is sufficient to cause this?

Which IP address will the client address be changed to when SNAT automap is specified within a Virtual Server configuration?

An ecommerce company is experiencing latency issues with online shops during Black Friday ' s peak season.

The BIG-IP Administrator detects an overall high CPU load on the BIG-IP device and wants to move the

top utilized Virtual Servers to a dedicated BIG-IP device.

Where should the BIG-IP Administrator determine the problematic Virtual Servers?

A new BIG-IP VE is deployed with default settings. The BIG-IP Administrator completes the setup utility in the Configuration Utility. The internal self IP address fails to respond to a ping request. What is a possible cause of this issue?

A local user account (Users) on the BIG-IP device is assigned the User Manager role. Userl attempts to

modify the properties of another account (User2), but the action fails. The BIG-IP Administrator can

successfully modify the User2 account.

Assuming the principle of least privilege, what is the correct way to allow User 1 to modify User2

properties?

Assuming that systems are synchronized, which action could take place if the fail over cable is connected correctly and working properly, but the systems cannot communicate over the network due to external network

problems?

A BIG-IP Administrator need to ensure that a pool member and down by the monitor the BIG-IP system

sends existing connections to another be pool member.

Which should the BIG-IP Administrator perform to meet this goal?

DNS queries from two internal DNS servers are being load balanced to external DNS Servers via a Virtual

Server on a BIG-P device. The DNS queries originate from 192.168.101.100 and 192.168.101.200 and

target 192.168.21.50

All DNS queries destined for the external DNS Servers fail

Which property change should the BIG-IP Administrator make in the Virtual Server to resolve this issue?

A BIG-IP Administrator is configuring an SSH Pool with five members.

Which Health Monitor should be applied to ensure that available pool members are monitored

accordingly?

As a part of the Setup Utility, the administrator sets the host name for the BIG IP. What would be the result if the two systems in a redundant pair were set to the same host name?

For a given Virtual Server, the BIG-IP must perform SSL Offload and negotiate secure communication

overTLSvl.2only.

What should the BIG-IP Administrator do to meet this requirement?

A virtual server is listening at 10.10.1.100:80 and has the following iRule associated with it:

when HTTP_REQUEST { if {[HTTP::uri] ends_with " txt " } { pool pool1 } elseif {[HTTP::uri] ends_with " php " } { pool pool2 }

If a user connects to http://10.10.1.100/foo.html, which pool will receive the request?

A virtual server is configured to offload SSL from a pool of backend servers. When users connect to the virtual server, they successfully establish an SSL connection but no content is displayed. A packet trace performed on the server shows that the server receives and responds to the request. What should a BIG-IP Administrator do to resolve the problem?

A BIG-IP Administrator creates an HTTP Virtual Server using an iApp template. After the Virtual Server is

created, the user requests to change the destination IP addresses. The BIG-IP Administrator tries to

change the destination IP address from 10.1.1.1 to 10.2.1.1 in Virtual Server settings, but receives the

following error:

The application service must be updated using an application management interface

What is causing this error?

Which two statements are true about SNATs? (Choose two.)

A BIG-IP Administrator is performing maintenance on the active BIG-IP device of an HA pair. The BIG-IP

Administrator needs to minimize traffic disruptions.

What should the BIG-IP Administrator do to start the maintenance activity?

A BIG-IP system has the following configuration:

* SNAT is set to Auto Map

* There are two VLANs internal and external

* Default route is pointed to the gateway on external VLAN

* Self P for internal VLAN is 1921.1.2

* Self IP for external VLAN is 192.1.2.2

* Floating IP addresses for internal VLAN is 192.1.1.1

* Floating IP addresses for external VLAN is 192.1.2.1

* The Virtual Server IP address is 192.1.1.100

Which IP address does the BIG-IP system use first when traffic reaches the servers on the internal VLAN?

The BIG-IP Administrator needs to perform a BIG-IP device upgrade to the latest version of TMOS. Where can the administrator obtain F5 documentation on upgrade requirements?

The incoming client IP address is 195.64.45.52 and the last five connections have been sent to members A, C, E, D and B. Given the virtual server, pool, and persistence definitions and statistics shown in the above graphic, which member will be used for the next connection?

How should a BIG-IP Administrator persistent sessions from being sent to a pool member so that the server administrator can perform maintenance?

Which VLANs must be enabled for a SNAT to perform as desired (translating only desired packets)?

A VLAN has the following objects configured:

Self-IP 10.10.10.100 with port lockdown set to Allow default

Virtual server 10.10.10.100:443 with UDP profile enabled

Virtual server 10.10.10.0/24 port forwarding virtual server

Global destination NAT forwarding 10.10.10.100 to internal server 172.168.10.100

Which object will process this request when https://10.10.10.100 is entered into a browser?

How is MAC masquerading configured?

You need to terminate client SSL traffic at the BIG-IP and also to persist client traffic to the same pool member based on a BIG IP supplied cookie. Which four are profiles that would normally be included in the virtual

server ' s definition? (Choose four.)

Refer to the exhibit.

A pool member fails the monitor checks for about 30 minutes and then starts passing the monitor

checks. New traffic is Not being sent to the pool member.

What is the likely reason for this problem?

Assume a virtual server has a ServerSSL profile. What SSL certificates are required on the pool members?

A site needs a virtual server that will use an iRule to parse HTTPS traffic based on HTTP header values. Which two profile types must be associated with such a virtual server? (Choose two.)

A standard virtual server has been associated with a pool with multiple members. Assuming all other settings are left at their defaults, which statement is always true concerning traffic processed by the virtual server?

Monitors can be assigned to which three resources? (Choose three.)

A site has assigned the ICMP monitor to all nodes and a custom monitor, based on the HTTP template, to a pool of web servers. The HTTP based monitor is working in all cases. The ICMP monitor is failing for 2 of the

pool member 5 nodes. All other settings are default. What is the status of the monitor is working in all cases?

Which statement describes a typical purpose of iRules?

A BIG-IP Administrator receives an RMA replacement for a failed F5 device. The BIG-IP Administrator

tries to restore a UCS taken from the previous device, but the restore fails. The following error appears

inthe/var/log/itm.

mcpd [****J: •*****»;0; License is not operational (expired or digital signature does not match

contents.)

What should the BIG-IP Administrator do to avoid this error?

A BIG-IP Administrator wants to add the ASM Module to an HA pair of BIG-IP devices. The BIG-IP Administrator has already installed a new Add-On License on both devices in the HA pair. What should the BIG-IP Administrator do next to use the module?

How is persistence configured?

Refer to the exhibit.

A user attempts to connect to 10.10.10.1.80 using FTP over SSL with an FTPS client. Which virtual server will match and attempt to process the request?

On the VCMP system, a BIG-IP host administrator imports a new ISO image into the host ' s /shared/images folder. The new ISO images that reside on the vCMP host are available for installation on the guest. How should the BIG-IP Administrator install one image from within the guest?