最高の301bのPDF問題集100%PassTest試験合格率保証 [2023年07月]
PassTestの問題集で100%あなたの301b LTM Specialist: Maintain & Troubleshoot試験を一発合格
質問 # 63
An LTM device is deployed in a one-armed topology. The virtual server, clients, and web servers are connected on the LTM device internal VLAN. A client tries to connect to the virtual server and is unable to establish a connection. A packet capture from the LTM device internal VLAN shows that the HTTP request is being forwarded to the web server.
From which two additional locations should protocol analyzer data be collected? (Choose two.)
- A. any network interface of the Internet firewall
- B. network interface of client machine
- C. internal VLAN interface of LTM device
- D. external VLAN interface of LTM device
- E. network interface of web server
正解:B、E
解説:
Explanation
質問 # 64
-- Exhibit -
-- Exhibit -
Refer to the exhibit.
Which pool can be removed without affecting client traffic?
- A. ftp_pool
- B. http_pool
- C. server1_80
- D. server_pool
正解:D
質問 # 65
-- Exhibit -
-- Exhibit --
Refer to the exhibit.
An LTM Specialist has uploaded a qkview to F5 iHealth.
Within the GUI, what is the correct procedure to comply with the recommendation shown in the exhibit?
- A. Obtain product version image from release.f5.com.
Overwrite existing image with new product version image.
Select product version image and click Install.
Select the available disk and volume set name. - B. Obtain product version image from downloads.f5.com.
Import product version image.
Install image onto BIG-IP platform.
Select product version image and click Install.
Select the available disk and volume set name. - C. Log a call requesting the product version image via websupport.f5.com Import product version image.
Install image onto BIG-IP platform.
Select product version image and click Install.
Select the available disk and volume set name. - D. Obtain product version image from images.f5.com.
Overwrite existing image with new product version image.
Select product version image and click Install.
Select the available disk and volume set name.
正解:B
質問 # 66
-- Exhibit-
-- Exhibit -
Refer to the exhibit.
Users receive an error when attempting to connect to the website https://website.com. The website has a DNS record of 195.56.67.90. The upstream ISP has confirmed that there is nothing wrong with the routing between the user and the LTM device.
The following tcpdump outputs have been captured:
External Vlan, filtered on IP 168.210.232.5
00:25:07.598519 IP 168.210.232.5.33159 > 195.56.67.90.https: S 1920647964:1920647964(0) win 8192 <mss 1450,nop,nop,sackOK>
00:25:07.598537 IP 195.56.67.90.https > 168.210.232.5.33159: S 2690691360:2690691360(0) ack 1920647965 win 4350 <mss 1460,sackOK,eol>
00:25:07.598851 IP 168.210.232.5.33160 > 195.56.67.90.https: S 2763858764:2763858764(0) win 8192 <mss 1450,nop,nop,sackOK>
00:25:07.598858 IP 195.56.67.90.https > 168.210.232.5.33160: S 1905576176:1905576176(0) ack 2763858765 win 4350 <mss 1460,sackOK,eol>
Internal Vlan, filtered on IP 168.210.232.5
00:31:46.171124 IP 168.210.232.5.33202 > 192.168.100.20.http: S 2389057240:2389057240(0) win 4380 <mss 1460,nop,wscale 0,sackOK,eol>
What is the problem?
- A. The DNS entry for website.com is incorrect.
- B. The virtual server 'WEBSERVICES1' is listening on the incorrect port.
- C. The subnet masks of the pool members of pool WebServices1 and the f5 'Internal' Vlan are incorrect.
- D. The firewall is dropping the connection coming from the pool members returned to the client.
- E. The filters on the tcpdumps are incorrect.
正解:D
質問 # 67
An LTM Specialist loads a UCS file generated on a different LTM device and receives the following error message:
"mcpd[2395]: 01070608:0: License is not operational (expired or digital signature does not match contents)" Which command should the LTM Specialist use to prevent the error?
- A. tmsh load /sys ucs <path/to/UCS> no-license
- B. tmsh load /sys /ucs rma <path/to/UCS>
- C. bigpipe config save /config.ucs
- D. tmsh show /sys hardware
- E. tmsh show /sys license
正解:A
質問 # 68
-- Exhibit -
-- Exhibit --
Refer to the exhibit.
Which pool can be removed without affecting client traffic?
- A. ftp_pool
- B. http_pool
- C. server1_80
- D. server_pool
正解:D
質問 # 69
-- Exhibit -
-- Exhibit --
Refer to the exhibit.
Which URL should be reported to the server/application team as getting user-visible errors?
- A. /browserspecific.html
- B. /reflector.php
- C. /page14.cgi
- D. /env.cgi
正解:C
質問 # 70
-- Exhibit -
-- Exhibit -
Refer to the exhibits.
Users are able to access the application when connecting directly to the web server but are unsuccessful when connecting to the virtual server.
What is the cause of the application access problem?
- A. The virtual server has address translation disabled.
- B. The virtual server is NOT configured to listen on port 80.
- C. The client has no route to the web server.
- D. The web server is NOT responding on the correct port.
- E. The virtual server has SNAT disabled.
正解:A
質問 # 71
Windows PC clients are connecting to a virtual server over a high-speed, low-latency network with no packet loss.
Which built-in client-side TCP profile provides the highest throughput for HTTP downloads?
- A. tcp-legacy
- B. tcp-lan-optimized
- C. tcp-wan-optimized
- D. tcp
正解:B
質問 # 72
Which iRule statement demotes a virtual server from CMP?
- A. persist source_addr 1800
- B. set static::foo 123
- C. set ::foo 123
- D. [ class match $HTTP_CONTENT contains my_data_class ]
正解:C
質問 # 73
-- Exhibit -

-- Exhibit -
Refer to the exhibits.
After upgrading LTM from v10 to v11, users are unable to connect to an application. The virtual server is using a client SSL profile for re-terminating SSL for payload inspection, but a server SSL profile is being used to re-encrypt the request.
A client side ssldump did NOT show any differences between the traffic going directly to the server and the traffic being processed by the LTM device. However, packet capture was done on the server, and differences were noted.
Which modification will allow the LTM device to process the traffic correctly?
- A. Change to different ciphers on the server SSL profile.
- B. Enable ProxySSL option in the server SSL profile.
- C. Enable Strict Resume.
- D. Change Secure Renegotiation to "Request."
正解:D
質問 # 74
An LTM Specialist troubleshooting an issue looks at the following /var/log/ltm entries:
Oct 2 04:52:42 slot1/tmm7 crit tmm7[21734]: 01010201:2: Inet port exhaustion on 10.143.109.5 to
10.143.147.150:53
(proto 17)
Oct 2 05:37:16 slot1/tmm7 crit tmm7[21734]: 01010201:2: Inet port exhaustion on 10.143.109.5 to
10.143.147.150:53
(proto 17)
Oct 2 05:57:32 slot1/tmm2 crit tmm2[21729]: 01010201:2: Inet port exhaustion on 10.143.109.5 to
10.143.147.150:53
(proto 17)
Oct 2 06:30:03 slot1/tmm7 crit tmm7[21734]: 01010201:2: Inet port exhaustion on 10.143.109.5 to
10.143.147.150:53
(proto 17)
Oct 2 06:37:44 slot1/tmm2 crit tmm2[21729]: 01010201:2: Inet port exhaustion on 10.143.109.5 to
10.143.147.150:53
(proto 17)
Oct 2 06:47:05 slot1/tmm5 crit tmm5[21732]: 01010201:2: Inet port exhaustion on 10.143.109.5 to
10.143.147.150:53
(proto 17)
Which configuration item should the LTM Specialist review to fix the issue?
- A. Pool Member
- B. Virtual Server Port Translation
- C. SNAT Pool
- D. Port Lockdown
正解:C
質問 # 75
-- Exhibit-

-- Exhibit -
Refer to the exhibits.
An LTM device has been configured for load balancing a number of different application servers. Configuration changes need to be made to the LTM device to allow administrative management of the servers in 172.16.10/24, 172.16.20/24, and 172.16.30/24 networks. The servers require outbound access to numerous destinations for operations.
Which solution has the simplest configuration changes while maintaining functionality and basic security?
- A. Enable 172.16.10.0:0/24, 172.16.20.0:0/24, and 172.16.30.0:0/24 on ingress VLAN(s), and enable 0.0.0.0:0/0.0.0.0 on egress VLAN(s).
- B. Replace 172.16.10.0:0/24, 172.16.20.0:0/24, and 172.16.30.0:0/24, with 172.16.0.0:0/16, and keep 0.0.0.0:0/0.0.0.0.
- C. Enable 172.16.10.0:0/24, 172.16.20.0:0/24, and 172.16.30.0:0/24 on egress VLAN(s), and enable 0.0.0.0:0/0.0.0.0 on ingress VLAN(s).
- D. Remove 172.16.10.0:0/24, 172.16.20.0:0/24, and 172.16.30.0:0/24, and keep 0.0.0.0:0/0.0.0.0 enabled on all VLANs.
正解:A
質問 # 76
An LTM Specialist is running the following packet capture on an LTM device:
ssldump -Aed -ni vlan301 'port 443'
Which two SSL record message details will the ssldump utility display by default? (Choose two.)
- A. ServerHello
- B. ClientHello
- C. User-Agent
- D. Issuer
- E. HTTP Version
正解:A、B
質問 # 77
The LTM device is configured to provide load balancing to a set of web servers that implement access control lists (ACL) based on the source IP address of the client. The ACL is at the network level and the web server is configured to send a TCP reset back to the client if it is NOT permitted to connect.
The virtual server is configured with the default OneConnect profile.
The ACL is defined on the web server as:
Permit: 192.168.136.0/24
Deny: 192.168.116.0/24
The packet capture is taken of two individual client flows to a virtual server with IP address
192.168.136.100.
Client A - Src IP 192.168.136.1 - Virtual Server 192.168.136.100:
Clientside:
09:35:11.073623 IP 192.168.136.1.55684 > 192.168.136.100.80: S 869998901:869998901(0) win 8192
<mss 1460,nop,wscale 2,nop,nop,sackOK>
09:35:11.073931 IP 192.168.136.100.80 > 192.168.136.1.55684: S 2273668949:2273668949(0) ack
869998902 win 4380 <mss 1460,nop,wscale 0,sackOK,eol>
09:35:11.074928 IP 192.168.136.1.55684 > 192.168.136.100.80: . ack 1 win 16425
09:35:11.080936 IP 192.168.136.1.55684 > 192.168.136.100.80: P 1:299(298) ack 1 win 16425
09:35:11.081029 IP 192.168.136.100.80 > 192.168.136.1.55684: . ack 299 win 4678 Serverside:
09:35:11.081022 IP 192.168.136.1.55684 > 192.168.116.128.80: S 685865802:685865802(0) win 4380
<mss 1460,nop,wscale 0,sackOK,eol>
09:35:11.081928 IP 192.168.116.128.80 > 192.168.136.1.55684: S 4193259095:4193259095(0) ack
685865803 win 5840 <mss 1460,nop,nop,sackOK,nop,wscale 6>
09:35:11.081943 IP 192.168.136.1.55684 > 192.168.116.128.80: . ack 1 win 4380
09:35:11.081955 IP 192.168.136.1.55684 > 192.168.116.128.80: P 1:299(298) ack 1 win 4380
09:35:11.083765 IP 192.168.116.128.80 > 192.168.136.1.55684: . ack 299 win 108 Client B - Src IP 192.168.116.1 - Virtual Server 192.168.136.100:
Clientside:
09:36:11.244040 IP 192.168.116.1.55769 > 192.168.136.100.80: S 3320618938:3320618938(0) win 8192
<mss 1460,nop,wscale 2,nop,nop,sackOK>
09:36:11.244152 IP 192.168.136.100.80 > 192.168.116.1.55769: S 3878120666:3878120666(0) ack
3320618939 win 4380 <mss 1460,nop,wscale 0,sackOK,eol>
09:36:11.244839 IP 192.168.116.1.55769 > 192.168.136.100.80: . ack 1 win 16425
09:36:11.245830 IP 192.168.116.1.55769 > 192.168.136.100.80: P 1:299(298) ack 1 win 16425
09:36:11.245922 IP 192.168.136.100.80 > 192.168.116.1.55769: . ack 299 win 4678 Serverside:
09:36:11.245940 IP 192.168.136.1.55684 > 192.168.116.128.80: P 599:897(298) ack 4525 win 8904
09:36:11.247847 IP 192.168.116.128.80 > 192.168.136.1.55684: P 4525:5001(476) ack 897 win 142 Why was the second client flow permitted by the web server?
- A. A global SNAT is defined.
- B. A source address persistence profile is assigned to the virtual server.
- C. The idle TCP session from the first client was re-used.
- D. SNAT automap was enabled on the virtual server.
正解:C
質問 # 78
Which two items can be logged by the Application Visibility Reporting analytics profile? (Choose two.)
- A. HTTP version
- B. Per Virtual Server CPU Utilization
- C. User Agent
- D. HTTP Response Codes
正解:C、D
質問 # 79
-- Exhibit -
-- Exhibit -
Refer to the exhibit.
A company uses a complex piece of client software that connects to one or more virtual servers (VS) hosted on an LTM device. The client software is experiencing issues. An LTM Specialist must determine the cause of the problem.
The LTM Specialist is seeing a client source IP of 168.210.232.5 in the tcpdump. However, the client source IP is actually 10.123.17.12.
Why does the IP address of 10.123.17.12 fail to appear in the tcpdump?
- A. The individual's data stream is being routed to the LTM device by a means other than the default route.
- B. The Secure Network Address Translation (SNAT) pool on the virtual server is activated.
- C. Network Address Translation (NAT) has occurred in the path between the client and the LTM device.
- D. The LTM device performed NAT on the individual's IP address.
正解:C
質問 # 80
-- Exhibit -
-- Exhibit --
Refer to the exhibit.
A user is unable to access an application.
What is the root cause of the problem?
- A. The User-Agent is incorrect.
- B. The user failed authentication.
- C. The GET request uses the wrong syntax.
- D. The 'Content-Length' is zero.
正解:B
質問 # 81
......
トレンドな301bのPDF問題集を受験前に使おう:https://www.passtest.jp/F5/301b-shiken.html
リアル試験問題と解答でF5 301b問題集が待ってます:https://drive.google.com/open?id=1hPAJtC4fSBLmwKBnpH2TU6gf0hmMWj8F