Which statement is true regarding failover?
A. Hardware failover is disabled by default.
B. Hardware failover can be used in conjunction with network failover.
C. If the hardware failover cable is disconnected, both BIG-IP devices will always assume the active role.
D. By default, hardware failover detects voltage across the failover cable and monitors traffic across the internal VLAN.
Which of the following storage type combinations are configurable in an ASM logging profile?
A. Local and Syslog
B. Local and Remote
C. Remote and Syslog
D. Remote and Reporting Server
A customer wants the best possible throughput but only has a maximum of 3RU rack space. Which F5 platform should you recommend?
A. BIG-IP 11050
B. VIPRION with only 1 performance blade
C. BIG-IP 8950
D. BIG-IP 8900
E. VIPRION with 4 performance blades
Why is BIG-IP ASM ideally suited to protect against layer 7 attacks, including HTTP and HTTPS/SSL traffic, when compared to an intrusion prevention system (IPS)?
A. An intrusion prevention system (IPS) is based on Packet Filtering.
B. An IPS doesn't have the visibility into HTTPS traffic. it doesn't understand what applications are in the network.
C. An IPS only focus on operating system attacks; it doesn't understand what application are in the network.
D. An IPS can only look at overall traffic patterns; it doesn't understand what applications are in the network.
A site wishes to perform source address translation on packets arriving from the Internet for clients sing some pools but not others. The determination is not based on the client's IP address, but on the pool they are load balanced to. What could best accomplish this goal?
A. A SNAT for all addresses could be defined, and then disable the SNAT processing for select pools.
B. The decision to perform source address translation is always based on VLAN. Thus, the goal cannot be achieved.
C. For each virtual server, regardless their default load balancing pools, association with SNAT pools could vary dependent upon need.
D. The decision to perform source address translation is always based on a client's address (or network). Thus, this goal cannot be achieved.
Which of the following statements about Web server offload is NOT true?
A. It performs rate shaping to reduce overflow.
B. It forces the client browser to use multiple connections streams.
C. It uses OneConnect to reduce multiple TCP connections.
D. It utilizes cached content to prevent unnecessary trips for the same content.
E. It uses specialized hardware for SSL offload.
Which IP address will the client address be changed to when SNAT automap is specified within a Virtual Server configuration?
A. The floating self IP address on the VLAN where the packetleaves the system.
B. The floating self IP address on the VLAN where the packet arrives on the system.
C. It will alternate between the floating and nonfloating self IP address on the VLAN where the packet leaves the system so that port exhaustion is avoided.
D. It will alternate between the floating and nonfloating self IP address on the VLAN where the packet arrives on the system so that port exhaustion is avoided.
Which of the following are methods BIG-IP ASM utilizes to mitigate web scraping vulnerabilities?
(Choose two.)
A. Monitors mouse and keyboard events
B. Detects excessive failures to authenticate
C. Injects JavaScript code on the server side
D. Verifies the client supports JavaScript and cookies
Customers can purchase LTM as a stand-alone product, or layer it with additional software modules to increase the functionality of the BIG-IP device.
A. True
B. False
Which statement is true concerning SSL termination.
A. A virtual server that has both ClientSSL and ServerSSL profiles can still support cookie persistence.
B. Decrypting traffic at the BIG-IP allows the use of iRules for traffic management, but increases the load on the pool member.
C. When any virtual server uses a ClientSSL profile, all SSL traffic sent to the BIG-IP is decrypted before it is forwarded to servers.
D. If a virtual server has both a ClientSSL and ServerSSL profile, the pool members have less SSL processing than if the virtual server had only a ClientSSL profile.
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only F5 exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 101 exam preparations and F5 certification application, do not hesitate to visit our Vcedump.com to find your solutions here.