2023 Easily pass 101 Exam with our Dumps & PDF Test Engine [Q15-Q39]

Rate this post

2023 Easily pass 101 Exam with our Dumps & PDF Test Engine

101 PDF Pass Leader, 101 Latest Real Test

The F5 101 exam is designed to test the candidate’s knowledge and skills in the fundamentals of application delivery, including networking, security, and application delivery technologies. It covers a range of topics, such as load balancing, SSL/TLS, DNS, and HTTP protocols.

Q15. When using a redundant pair of LTMs, it is most advantageous to use them in an Active/Active scenario because this provides additional load balancing capabilities.

True

False

Q16. Which is an advantage of terminating SSL communication at the BIG-IP rather than the ultimate web server.

Terminating SSL at the BIG-IP can eliminate SSL processing at the web servers.

Terminating SSL at the BIG-IP eliminates all unencrypted traffic from the nternal.network.

Terminating SSL at the BIG-IP eliminates all unencrypted traffic from the .nternal.network.

Terminating SSL at the BIG-IP eliminates the need to purchase SSL certificates from a certificate authority.

Terminating SSL at the BIG-IP eliminates the need to use SSL acceleration hardware anywhere in the network.

Q17. Although APM can interoperate with LTM, it is unable to use iRules for advanced processing.

True

false

Q18. What occurs when a load?command is issued?What occurs when a ? load?command is issued?

rootBIG-IPsystem[Active][tmos.Itm.pool]#create pooh members add {170.16.20.1:80}

rootBIG-IPsystem[Active][tmos.Itm.pool]#create pooh members add {172.16.20.1:80}

rootBIG-IPsystem[Active][tmos.Itm.pool]#create pooh members add {172.16.20.1:80{} }

rootBIG-IPsystem[Active][tmos.Itm.pool]#create pooh members add {172.16.20.1:80{priority group 2}}

Q19. What is the purpose of the IP addresses listed in the Trusted IP section when using Policy Builder?

Incoming requests with these IP addresses will never get blocked by BIG-IP ASM.

Incoming requests with these IP addresses will not be taken into account as part of the learning process, they will be allowed to do anything.

Incoming requests with these IP addresses will automatically be accepted into the security 87 F5 101 Exam policy, Policy Builder will validate that future requests with this traffic will not create a violation.

Incoming requests with these IP addresses will be used by Policy Builder to create an alternate more advanced security policy, this additional policy will not be enabled unless forced by the administrator.

Q20. Why does deploying LTM into an existing network immediately improve security?

Only requests for specific ports are allowed through LTM.

All traffic through LTM is checked for DDoS attacks.

No traffic A allowed through LTM until it has been specified.

All users must authenticate before accessing applications through LTM.

Only LAN administrators can access resources through LTM.

Q21. When using a routed configuration, the real server must point to the LTM as the ________.

NTP Server

DNS Server

Virtual IP

WINS server

Default gateway

Q22. When DNS_REV is used as the probe protocol by the GTM System, which information is expected in the response from the probe?

a reverse name lookup of the GTM System

the list of root servers known by the local DNS

the FQDN of the local DNS being probed for metric information

the revision number of BIND running on the requesting DNS server

Q23. Which of the following statements is true about ARX’s capacity balancing ability?

When new files are created,the ARX can determine in real time where to place each file based on the available space on each storage device

When configuring the ARX, customers can choose to implement either an age-based policy or a capacity based policy, but are not able to run both policies at the same time

All files created at approximately the same time (within 10 minutes) will be stored on the same tier of storage to minimize latency and improve the user experience

The ARX balances capacity within tiers A storage, but cannot balance capacity across tiers of storage

Q24. What are two advantages of the Quality of Service (QoS) load balancing method? (Choose two.)

It resolves requests to the site with the highest QoS value in the IP header.

It combines multiple load balancing metric values in a single load balancing method.

It allows the GTM administrator to place relative values on each metric used to determine the optimum site.

It allows the GTM System to select the optimum virtual server based on all available path and server metrics.

Q25. Which three must be done so that Generic Host Servers can be monitored using SNMP? (Choose three.)

The SNMP monitor must be added to all BIG-IP Systems.

The Generic Host Server must be running the big3d agent.

The GTM System must be configured for the appropriate MIB.

The Generic Host Server must be added to the GTM Configuration.

The Generic Host Server must be enabled to answer SNMP queries.

Q26. Which statement is correct concerning differences between BIG-IP ASM platforms?

The 3900 has more ports than the 6800.

The 3900 and 6800 have the same number of ports.

The 3900 and 6800 can support both the module and standalone versions of BIG-IP ASM.

The 3900 can support both module and standalone versions of BIG-IP ASM whereas the 6800 can support only the module version of BIG-IP ASM.

Q27. A, steaming profile will do which of the following?

Search and replace all occurrences of a specified string only is responses processed by a virtual server.

Search and replace all occurrences of a specified string only in request processed by a virtual server.

Search and replace all occurrences of a specified string in requests and responses processed by a virtual server.

Search and replace the first occurrence of a specified of a specified string in either a request or response processed by a virtual server.

Q28. Without creating a user-defined region, what is the most specific group a topology record can identify?

city

country

continent

state/province

region of country

Q29. An LTM has the 3 virtual servers, 2 SNATs, four self IP addresses defined and the networks shown in the exhibit. Selected options for each object are shown below. Settings not shown are at their defaults. Assume port exhaustion has not been reached.

A connection attempt is made with a source IP and port of 10.20.100.50:2222 and a destination IP and port of
10.10.2.102:443.
When the request is processed, what will be the source and destination IP addresses?

Source IP: 10.10.2.103; Destination IP: pool member in the 192.168/16 network

Source IP: 10.10.201; Destination IP: pool member in the 192.168/16 network G

Source IP: 10.10.2.103; Destination IP: 10.10.2.102

The request will be dropped.

Source IP: 10.20.10.50; Destination IP: pool member in the 192.168/16 network

Source IP: 10.10.201; Destination IP: 10.102.102

Q30. The BIG-IP full proxy architecture has full visibility from the client to the server and from the server to the client.
What security benefit does this provide to customers?

Offloads security functionality from other devices such as network firewalls and Intrusion Prevention Systems (IPS), which may experience performance degradation when inspecting DNS queries and responses.

provides enhanced support for DNS servers.

Establishes highly detailed policies based on your customer’s business in requirements, performs multiple factors of authentication, detects corporate versus non-corporate devices, checks OS patch levels, and determines antivirus patch levels.

Provides industry-leading knowledge of application behavior as it travels through a network, and it applies that knowledge to security because it knows how an application behaves at any point in the reply request process

Q31. Assume a client’s traffic is being processed only by a NAT; no SNAT or virtual server processing takes place. Also assume that the NAT definition specifies a NAT address and an origin address while all other settings are left at their defaults. If the origin server were to initiate traffic via the BIG-IP, what changes, if any, would take place when the BIGIP processes such packets.

The BIG-IP would drop the request since the traffic didn arrive destined to the NAT address. The BIG-IP would drop the request since the traffic didn. arrive destined to the NAT address.

The source address would not change, but the destination address would be changed to the NAT address.

The source address would be changed to the NAT address and destination address would be left unchanged.

The source address would not change, but the destination address would be changed to a self-IP of the BIG-IP.

Q32. A site is load balancing to a pool of web servers. Which statement is true concerning BIGElIP’s ability to verify whether the web servers are functioning properly or not.

Web server monitors can test the content of any page on the server.

Web server monitors always verify the contents of the index.html page.

Web server monitors can test whether the server’s address is reachable, but cannot test a page’s content.

Web server monitors can test the content of static web pages, but cannot test pages that would require the web server to dynamically build content.

Q33. Which three parameters could be used to determine whether a connection request will have the source address translated as the request is processed? (Choose three.)

the client’s router’s IP address

the client’s browser’s preferred language

the client’s IP netmask

the client’s TCP port

the client’s IP address

the client IP fragment offset

Q34. Another name for the F5 OneConnect feature is TCP multiplexing.

True

False

Q35. How is traffic flow through transparent virtual servers different from typical virtual servers?

any text string within a cookie

any bytes within the initial client request packet

an IP address

the value in the tcp acknowledgement field

Q36. DRAG DROP
Match the security-related term with the correct definition.
1. OWASP Top 10
2. Secure Socket Layer (SSL)
3. Bot
4. Certificate
5. Content scrubbing
Select and Place:

Q37. Data centers often rely on either traditional firewalls or next generation firewalls. Select the core weakness of the traditional or next generation firewalls when it comes to DDoS attacks.

They are limited in amount of connections per second and the amount of sustained connections they can handle

The cost performance ratio of next generation firewalls is too high.

The agility of traditional firewalls is too limited when it comes to DDoS attacks.

Data center traffic is primarily outbound.

Q38. APM can verify which four of the following details before granting a user access to a resource?

The user’s Web brower

The user’s computer

User’s hard drive encryption software

Groups the user is a member of

The network speed

The user’s username

Q39. Another name for the F5 OneConnect feature is TCP multiplexing.

True

False

The F5 101 exam is a foundational exam that serves as a prerequisite for other F5 certification exams. It is an online, proctored exam that consists of 80 multiple-choice questions that must be completed within 90 minutes. The exam is available in multiple languages and can be taken at any time. Passing the F5 101 exam is a significant achievement that demonstrates a candidate’s proficiency in the fundamental concepts and technologies related to application delivery networking. By passing the exam, candidates can demonstrate their ability to design, deploy, and manage F5 solutions and products, which can lead to greater career opportunities and increased earning potential in the IT industry.

101 Dumps Ensure Your Passing: https://www.dumpstorrent.com/101-exam-dumps-torrent.html

2023 Easily pass 101 Exam with our Dumps & PDF Test Engine [Q15-Q39]

admin

Leave a Reply Cancel reply