Given:

Filesystem Size Used Avail Use% Mounted on

/dev/md11 248M 248M 0 100% /

/dev/md13 3.0G 76M 2.8G 3% /config

/dev/md12 1.7G 1.1G 476M 71% /usr

/dev/md14 3.0G 214M 2.6G 8% /var

/dev/md0 30G 2.2G 26G 8% /shared

/dev/md1 6.9G 288M 6.3G 5% /var/log

none 3.9G 452K 3.9G 1% /dev/shm

none 3.9G 19M 3.9G 1% /var/tmstat

none 3.9G 1.2M 3.9G 1% /var/run

prompt 4.0M 12K 4.0M 1% /var/prompt

/dev/md15 12G 8.3G 3.1G 74% /var/lib/mysql

Which command is used to produce this output?

There are three servers in the pool: 172.16.20.1, 172.16.20.2, and 172.16.20.3, with the virtual IP address 10.0.20.88.

A user CANNOT connect to an HTTP application. To understand the problem and find a solution, the LTM Specialist runs two concurrent traces on the LTM device, with the following results:

Trace on client side:

tcpdump: verbose output suppressed, use -v or -vv for full protocol decode

listening on 0.0, link-type EN10MB (Ethernet), capture size 96 bytes

22:22:07.423759 IP 172.16.20.100.53875 > 10.0.20.88.80: S 998346084:998346084(0) win 5840 < mss 1460,sackOK,timestamp 67942058 0,nop,wscale 4 >

22:22:07.424056 IP 10.0.20.88.80 > 172.16.20.100.53875: S 4671780:4671780(0) ack 998346085 win 4380 < mss 1460,nop,wscale 0,nop,nop,timestamp 2392362490 67942058,sackOK,eol >

22:22:07.424776 IP 172.16.20.100.53875 > 10.0.20.88.80: . ack 1 win 365 < nop,nop,timestamp 67942058 2392362490 >

22:22:07.424790 IP 172.16.20.100.53875 > 10.0.20.88.80: P 1:149(148) ack 1 win 365 < nop,nop,timestamp 67942058 2392362490 >

22:22:07.424891 IP 10.0.20.88.80 > 172.16.20.100.53875: . ack 149 win 4528 < nop,nop,timestamp 2392362491 67942058 >

22:22:12.024850 IP 10.0.20.88.80 > 172.16.20.100.53875: R 1:1(0) ack 149 win 4528

6 packets captured

6 packets received by filter

0 packets dropped by kernel

Trace on server side:

tcpdump: verbose output suppressed, use -v or -vv for full protocol decode

listening on internal, link-type EN10MB (Ethernet), capture size 96 bytes

22:22:07.424881 IP 172.16.20.100.53875 > 172.16.20.2.80: S 51116678:51116678(0) win 4380 < mss 1460,nop,wscale 0,nop,nop,timestamp 2392362491 0,sackOK,eol >

22:22:08.424893 IP 172.16.20.100.53875 > 172.16.20.2.80: S 51116678:51116678(0) win 4380 < mss 1460,nop,wscale 0,nop,nop,timestamp 2392363491 0,sackOK,eol >

22:22:09.625082 IP 172.16.20.100.53875 > 172.16.20.2.80: S 51116678:51116678(0) win 4380 < mss 1460,nop,wscale 0,nop,nop,timestamp 2392364691 0,sackOK,eol >

22:22:10.825194 IP 172.16.20.100.53875 > 172.16.20.2.80: S 51116678:51116678(0) win 4380 < mss 1460,sackOK,eol >

4 packets captured

4 packets received by filter

0 packets dropped by kernel

What should the LTM Specialist do to solve the problem?

An LTM Specialist configures a new virtual server with a single pool member. The LTM Specialist has NOT defined a health monitor for the pool, pool member or node.

What is the status of the virtual server?

The BIG-IP Administrator disable all pool members in a pool Users are still able to reach the pool

members.

What is allowing users to continue to reach the disabled poo! members?

-- Exhibit –

-- Exhibit --

Refer to the exhibit.

Users receive an error when attempting to connect to the website https://website.com. The website has a DNS record of 195.56.67.90. The upstream ISP has confirmed that there is nothing wrong with the routing between the user and the LTM device.

The following tcpdump outputs have been captured:

External Vlan, filtered on IP 168.210.232.5

00:25:07.598519 IP 168.210.232.5.33159 > 195.56.67.90.https: S 1920647964:1920647964(0) win 8192 < mss 1450,nop,nop,sackOK >

00:25:07.598537 IP 195.56.67.90.https > 168.210.232.5.33159: S 2690691360:2690691360(0) ack 1920647965 win 4350 < mss 1460,sackOK,eol >

00:25:07.598851 IP 168.210.232.5.33160 > 195.56.67.90.https: S 2763858764:2763858764(0) win 8192 < mss 1450,nop,nop,sackOK >

00:25:07.598858 IP 195.56.67.90.https > 168.210.232.5.33160: S 1905576176:1905576176(0) ack 2763858765 win 4350 < mss 1460,sackOK,eol >

Internal Vlan, filtered on IP 168.210.232.5

00:31:46.171124 IP 168.210.232.5.33202 > 192.168.100.20.http: S 2389057240:2389057240(0) win 4380 < mss 1460,nop,wscale 0,sackOK,eol >

What is the problem?

A local user account (Users) on the BIG-IP device is assigned the User Manager role. Userl attempts to

modify the properties of another account (User2), but the action fails. The BIG-IP Administrator can

successfully modify the User2 account.

Assuming the principle of least privilege, what is the correct way to allow User 1 to modify User2

properties?

in which Application Visibility and Reporting (AYR) profile must the SMTP profile be defined to configure notifications via email?

An LTM Specialist needs to configure a setup for antivirus scanning of HTTP traffic with an internet Contact adaption Protocol (ICAP) server.

Which two server type should be used? (Choose two.)

AN LTM Specialist is setting up a new HTTPS virtual server to decrypt client traffic. SNAT the traffic and send the encrypted traffic to the poor member, the client's IP address must be included in the traffic

sent to the pool member.

What is a complete set of profiles that must be configured for the virtual server to meet these requirements?

-- Exhibit –

-- Exhibit --

Refer to the exhibits.

How should the LTM Specialist minimize the configuration?

-- Exhibit --

-- Exhibit --

Refer to the exhibit.

A company uses a complex piece of client software that connects to one or more virtual servers (VS) hosted on an LTM device. The client software is experiencing issues. An LTM Specialist must determine the cause of the problem. The LTM Specialist has the tcpdump extract. The client loses connection with the LTM device.

Where is the reset originating?

What is the status of a pool member when manual resume is enabled and a health check first fails and then passes?

The web application team requests help from the LTM Specialist to Improve the performance of their web sites that are load balanced by the F5 LTM device with a Standard Virtual Server.

Which virtual server type will improve the performance of the web application servers?

To improve application security, an LTM Specialist must configure a BIG application access. The BIG IP system to authenticate the client certificate before permitting application access. The BIG-IP system must also support the ability to red to redirect users to a certificate enrolment system without generating a browser error.

Within the Client SSL profile, which value should the LTM Specialist select for the Client Certificate option?

A failover event is recorded in the log messages:

Jan 01 00:00:50 BIG-IP notice sod[5855]: 01140029:5: HA proc_running tmm fails action is go offline and down links.

Jan 01 00:00:50 BIG-IP notice sod[5855]: 010c0050:5: Sod requests links down.

Jan 01 00:00:50 BIG-IP notice sod[5855]: 010c0054:5: Offline for traffic group /Common/traffic-group-1.

Jan 01 00:00:50 BIG-IP notice sod[5855]: 010c003e:5: Offline

Jan 01 00:00:50 BIG-IP notice logger: /usr/bin/tmipsecd --tmmcount 4 == > /usr/bin/bigstart stop racoon

Jan 01 00:00:50 BIG-IP info lacpd[5502]: 01160016:6: Failover event detected. (Switchboard failsafe disabled while offline)

Jan 01 00:00:51 BIG-IP err bcm56xxd[5296]: 012c0010:3: Failover event detected. Marking external interfaces down. bsx.c(3633)

Jan 01 00:00:51 BIG-IP info bcm56xxd[5296]: 012c0015:6: Link: 1.1 is DOWN

Jan 01 00:00:56 BIG-IP notice mcpd[5318]: 0107143c:5: Connection to CMI peer 10.0.0.3 has been removed

Jan 01 00:00:56 BIG-IP notice mcpd[5318]: 0107143a:5: CMI reconnect timer: enabled

Jan 01 00:00:56 BIG-IP notice mcpd[5318]: 01071431:5: Attempting to connect to CMI peer 10.0.0.3 port 6699

What is the cause of the failover?