New 2022 301a Dumps for LTM Specialist Certified Exam Questions & Answer
Realistic Verified 301a exam dumps Q&As - 301a Free Update
NEW QUESTION 27
Refer to the exhibit.
The pool shown is configured with four pool members in a variety of states. The application is receiving a large number of request. The LTM Specialist needs to make changes to make sure that all members receive the same levels of traffic.
Which changes need to be made?
- A. Enable 10.80.1.40 and 10.80.1.20 disable priority group activation, enable ratio.
- B. Enable 10.80.1.40 disable priority group activation, enable ratio
- C. Enable 10.80.1.20 disable priority group activation, enable Round Robin
- D. Enable 10.80.1.40 and 10.80.1.1.20 disable group activation, enable Round Robin
Answer: D
NEW QUESTION 28
An LTM Specialist reports that an application si no longer reachable after it has been upgraded.
Nothing has been changed in the configuration on the LTM device.
The logs indicates that health monitors to all servers have failed as shown:
What should the LTM Specialist verify next?
- A. That the TCP hand shake with the servers is stall completed using tcpdump
- B. That the firewall between the BIG-ip device and servers is still allowing HTTP
- C. That the custom receive string for the HTTP monitor has changed with the upgrade
- D. That the can still ping the servers from te BIG_ IP device.
Answer: C
Explanation:
The log shows that tcp detection is normal, but http detection is abnormal. So we should pay attention to the detection problem of http level
NEW QUESTION 29
An LTM is configure an application that is separated into several subdomains across multiple virtual servers. Many of these subdomains require encryption and could be accessed by anyone on the internet. The configuration must NOT result in SSL warnings to end users.
How should the LTM Specialist configure the SSL profiles for these virtual servers?
- A. Obtain an SSL certificate for each subdomain, make a ServerSSL profile for each subdomain, and apply to the related SSL Virtual Server.
- B. Create a self-singed SSL certificate for each subdomain make a ClientSSL profile for each subdomain, and apply to the related SSL Virtual server
- C. Create a self-singed SSL certificate for each subdomain make a Client profile for each SSL Virtual Server
- D. Obtain a wildcard certificate, create one ClientSSL profile and apply to all SSL Virtual Servers
Answer: D
Explanation:
The topic is that there are multiple domain names in the business, and HTTPS services are provided to the internet, and users cannot be allowed to generate SSL alarms. The require client ssl and use CA certificate instead of self-singed certificate. And multiple domain names, you can use wildcard certificates.
NEW QUESTION 30
An organization's development team creates an application to put behind the F5 LTM device. The application can be quite load intensive at first, and then evens out over time. The team's load balancing method needs to select a pool after taking into account the pool member's response over the time to avoid landing on a busy pool member.
Which of the following load balancing methods meets this requirement?
- A. Fastest (application)
- B. Observed (member)
- C. Dynamic (node)
- D. Predictive (member)
Answer: D
NEW QUESTION 31
An LTM Specialist needs to assign a health monitor to a pool with two pool members 10.10.10 101 and 10.10.10.102 Both pool members are listening on port 8080 with TCP. The health of the application depends on the health of an another server (10 10 10 100) that runs port 9080 with TCP.
Which two custom TCP monitors should be selected as the pool's health monitors' (Choose two)
- A. a custom TCP monitor that works on port 9080 with 10,10.10.101 as alias address
- B. a custom TCP monitor that works on port 8080 with 10.10.10.101 as alias address
- C. a custom TCP monitor that works on port 9080,
- D. a custom TCP monitor that works on port 8080 with 10.10.10.102 is alias address
- E. a custom TCP monitor that works on port 8080
- F. a custom TCP monitor that works on port 9080 with 10.10.10.100 as alias address
Answer: E,F
NEW QUESTION 32
An LTM Specialist is removing some of the load off an existing cluster by adding a adding a third BIG-IP device to the device group. The new device can deliver twice the performance of the other two devices.
The LTM Specialist needs to make sure that the BIG-IP device with the highest available capacity is always selected to take over a traffic group in the event of a failover.
Which failover method is most appropriate?
- A. HA Capacity
- B. HA Group
- C. Ordered List
- D. Load Aware
Answer: C
NEW QUESTION 33
An LTM device needs to be configured a virtual server. The application requires SSL encryption from the client to the server and an X-Forwarded-For added by the LTM device.
Which virtual server type should the LTM Specialist use?
- A. Performance (HTTP)
- B. Stateless
- C. Performance
- D. Forwarding (IP)
- E. Standard
Answer: E
NEW QUESTION 34
Refer to the exhibit.
The http monitor is applied to a pool. All members are enabled. One server responds as follows.
What is the resulting status of this poo! member?
- A. Unavailable (Disabled)
- B. Offline (Disabled)
- C. Offline (Enabled)
- D. Available (Enabled)
Answer: C
Explanation:
The first picture "Send String" and "Receive String" are not clear. Send String should be "GOOD", the response packet does not contain this keyword. Receive Disable String is completely unclear. If the response packet contains the content of Receive Disable String at this time, it will be Available (Disabled), If the content of Receive Disable String is not included, then Offline (Enabled).
NEW QUESTION 35
While working with a web developer, it is determined that additional logic is required to assess the pool member availability.
Which two monitor types should be used in this scenario? (Choose two)
- A. Scripted
- B. TCP
- C. Gateway ICMP
- D. External
- E. TCP Echo
Answer: A,D
NEW QUESTION 36
An LTM Specialist needs to configure a setup for antivirus scanning of HTTP traffic with an internet Contact adaption Protocol (ICAP) server.
Which two server type should be used? (Choose two.)
- A. Forwarding IP
- B. Performance HTTP
- C. Stateless
- D. Internal
- E. Standard
Answer: D,E
NEW QUESTION 37
An LTM Specialist plans to enable connection mirroring for a virtual server in an HA environment.
What must the LTM Specialist consider before implementing the configuration change?
- A. Impact on system performance that might be noticeable
- B. The add-on license that is required for this feature to be available
- C. Creating the required separate interface for connection mirroring
- D. Decreased number of possible concurrent connections to that virtual server
Answer: A
Explanation:
Connection mirroring will bring performance consumption
NEW QUESTION 38
A virtual server is configured to handle https traffic. The clientssl profile is configured to use a2048-bit RSA key. Due to security requirements, is the LTM Specialist needs to use a 4096-bit RSA key in the future.
What two effects will this change have on the BIG-IP device? (Choose two)
- A. Decrease to 20% of licensed TPS
- B. Decrease to 90% of licensed TPS
- C. Increase of CPU usage on the BIG-IP device
- D. Increased of concurrent connection on client-side
- E. Increase of TLS Renegotiation
Answer: A,C
NEW QUESTION 39
An LTM Specialist configures a new HTTPS virtual server that contains a valid example.com ssl certificate. The LTM Special receives an error in the browser when connecting.
What must be added to the SSL Client profile to fix this issue?
- A. A new example com certificate
- B. A public root certificate
- C. A sell-sign certificate
- D. An intermediate certificate
Answer: D
NEW QUESTION 40
An LTM Specialist is configuring a client profile to offload processing a new application Company policy requires that clients can resume session for up to 30 minutes, but must renegotiate a new session after that.
Which setting should the LTM Specialist change to satisfy this requirement?
- A. Renegotiation period
- B. Cache timeout
- C. Renegotiate Max Record Delay
- D. Cache size
Answer: B
Explanation:
Question stem requires that you can resume SSL session within 30 minutes, then you need to define the ssl cache time in 30 minutes
NEW QUESTION 41
An LTM device provides load balancing to a web application? The LTM device has two dual-core processors and a licensed SSL Transactions Per Second (TPS) limit of 500 CMP is enabled.
TLS connections are used between client systems and virtual servers on the LTM device, as well as from the LTM device to servers used as part of LTM pool.
TLS enabled virtual servers utilize certificates based on 2048-bit keys During a peak period. 2560 new TLS transactions per second are attempted to the web application via the LTM device.
What will happen in this scenario?
- A. 2060 new TLS transactions will be silently discarded due to the SSL TPS license limit
- B. Nothing: TLS transactions per second are NOT affected by an SSL TPS license limit
- C. 560 new TLS transactions will be silently discarded due to the SSL TPS license limit
- D. Nothing: 2560 TLS transactions per second is within the SSI TPS license limit.
Answer: C
NEW QUESTION 42
An LTM Specialist needs to configures virtual server that uses PVA or OPVA Which virtual server type should be used?
- A. Performance (HTTP)
- B. Standard
- C. Stateless
- D. Performance (Layer 4)
Answer: D
NEW QUESTION 43
An LTM Specialist needs to provide statistics regarding the round-trip time between the clients and the servers.
Which metric should be part of the analytics profile to provide that information?
- A. Max TPS and Throughout
- B. Page Load Time
- C. Response Codes
- D. User Sessions
Answer: B
NEW QUESTION 44
A BIG IP system load balances connections to a web application. A TCP-based Denial of Service attack against the web application is occurring, which has caused very high memory utilization on the LTM device due to stale TCP connections.
Which TCP profile option should be used to reduce memory utilization?
- A. Multipath TCP
- B. Slow Start
- C. Idle timeout
- D. Reset on timeout
Answer: C
NEW QUESTION 45
When importing a PEM formatted SSL certificate, which text needs to appear first in the file?
- A. ...BEGIN CERTIFICATE....
- B. ...SSL CERTIFICATE....
- C. ...SECURITY CERTIFICATE....
- D. --START CERTIFICATE....
Answer: A
NEW QUESTION 46
......
Use Real 301a Dumps - 100% Free 301a Exam Dumps: https://www.vcetorrent.com/301a-valid-vce-torrent.html
301a Exam Dumps, Test Engine Practice Test Questions: https://drive.google.com/open?id=1NNJp2kblz2xwQkjmleI1JecEWVrt7KMk