ExamGecko
Search Search Login
Home Home / F5 / 301b
Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

The LTM Specialist is writing a custom HTTP monitor for a web application and has viewed the content by accessing the site directly via their browser. The monitor continually fails. The monitor configuration is: ltm monitor http /Common/exampleComMonitor { defaults-from /Common/http destination *:* interval 5 recv 'Recent Searches' send 'GET /app/feed/current\?uid=20145 HTTP/1.1 \\r\\nHost : www.example.com\\r\\nAccept-EncodinG. gzip, deflate \\r\\nConnection : close\\r\\n \\r\\n' time-until-up 0 timeout 16 } A trace shows the following request and response: Request: GET /app/feed/current?uid=20145 HTTP/1.1 Host www.example.com Accept-Encoding gzip, deflate Connection: close Response: HTTP/1.1 302 Moved Temporarily Date Wed, 17 Oct 2012 18:45:52 GMT Server Apache Location https://example.com/login.jsp Content-Encoding gzip Content-Type text/html;charset=UTF-8 Set-CookiE. JSESSIONID=261EFFBDA8EC3036FBCC22D991AC6835; Path=/app/feed/current?uid=20145 What is the problem?
An LTM Specialist configures the following iRule on an LTM device: when HTTP_REQUEST { if {[string tolower [HTTP::uri]] contains '/URI1/' } { pool Pool1 } elseif {[string tolower [HTTP::uri]] contains '/URI2/' } { pool Pool2 } elseif {[string tolower [HTTP::uri]] contains '/URI3/' } { pool Pool3 } else { pool Pool4} } Given the following request: http://www.example.comURI1/index.html?fu=bar&pass=1234 Which pool will be selected by the iRule?
An LTM Specialist configures an HTTP monitor as follows: ltm monitor http stats_http_monitor { defaults-from http destination *:* interval 5 recv 'Health check: OK' send 'GET /stats/stats.html HTTP/1.1\\r \\nHost : www.example.com\\r\\nAccept-EncodinG. gzip, deflate \\r\\nConnection : close\\r\\n \\r\\n' time-until-up 0 timeout 16 } The monitor is marking all nodes as down. A trace of the HTTP conversation shows the following: GET /stats/stats.html HTTP/1.1 Host: www.example.com Accept-EncodinG. gzip, deflate Connection: close HTTP/1.1 401 Authorization Required DatE. Tue, 23 Oct 2012 19:38:56 GMT Server: Apache/2.2.15 (Unix) WWW-AuthenticatE. Basic realm='Please enter your credentials' Content-LengtH. 480 Connection: close Content-TypE. text/html; charset=iso-8859-1 Which action will resolve the problem?
-- Exhibit -- -- Exhibit -- Refer to the exhibit. An administrator created a monitor to a pool member web server, which resulted in a pool member that is marked red. The administrator knows the web server is working when it is accessed from another computer. What should the administrator do to correct the problem?
A client is attempting to log in to a web application that requires authentication. The following HTTP headers are sent by the client: GET /owa/ HTTP/1.1 Authorization: Basic dXNlcm5hbWU6cGFzc3dvcmQ= User-Agent: curl/7.26.0 Host: 10.0.0.14 Accept: */* Accept-EncodinG. gzip,deflate The web server is responding with the following HTTP headers: HTTP/1.1 401 Unauthorized Content-TypE. text/html Server: Microsoft-IIS/7.5 WWW-AuthenticatE. NTLM DatE. Wed, 16 Aug 1977 19:12:31 GMT Content-LengtH. 1293 The client has checked the login credentials and believes the correct details are being entered. What is the reason the destination web server is sending an HTTP 401 response?
Which three HTTP headers allow an application server to determine the client's language compatibility, browser, operating system type, and compression compatibility? (Choose three.)
set hsl [HSL::open -proto UDP -pool syslog_server_pool] HSL::send $hsl '<190> [HTTP::host] from [whereis [IP::client_addr] country continent state city zip] , IP: [IP::client_addr]' What do the following iRule commands do when they are used in the same iRule?
What is the effect of an iRule error such as referencing an undefined variable?
An LTM HTTP pool has an associated monitor that sends a string equal to 'GET /test.html'. Which two configurations could an LTM Specialist implement to allow server administrators to disable their pool member servers without logging into the LTM device? (Choose two.)
An LTM device is serving an FTP virtual server that has three pool members. The FTP pool members are monitored via TCP port 21. Customers are reporting that they are able to log in, but are sometimes unable to upload files to the server. Which monitor should the LTM Specialist configure to verify that the servers can handle file uploads?

Question 97 - 301b discussion

Report
Export

The LTM device is configured to provide load balancing to a set of web servers that implement access control lists (ACL) based on the source IP address of the client. The ACL is at the network level and the web server is configured to send a TCP reset back to the client if it is NOT permitted to connect.

The virtual server is configured with the default OneConnect profile.

The ACL is defined on the web server as:

Permit: 192.168.136.0/24

Deny: 192.168.116.0/24

The packet capture is taken of two individual client flows to a virtual server with IP address 192.168.136.100.

Client A - Src IP 192.168.136.1 - Virtual Server 192.168.136.100:

Clientside:

09:35:11.073623 IP 192.168.136.1.55684 > 192.168.136.100.80: S 869998901:869998901(0) win 8192 <mss 1460,nop,wscale 2,nop,nop,sackOK>

09:35:11.073931 IP 192.168.136.100.80 > 192.168.136.1.55684: S 2273668949:2273668949(0) ack 869998902 win 4380 <mss 1460,nop,wscale 0,sackOK,eol>

09:35:11.074928 IP 192.168.136.1.55684 > 192.168.136.100.80: . ack 1 win 16425

09:35:11.080936 IP 192.168.136.1.55684 > 192.168.136.100.80: P 1:299(298) ack 1 win 16425

09:35:11.081029 IP 192.168.136.100.80 > 192.168.136.1.55684: . ack 299 win 4678

Serverside:

09:35:11.081022 IP 192.168.136.1.55684 > 192.168.116.128.80: S 685865802:685865802(0) win 4380 <mss 1460,nop,wscale 0,sackOK,eol>

09:35:11.081928 IP 192.168.116.128.80 > 192.168.136.1.55684: S 4193259095:4193259095(0) ack 685865803 win 5840 <mss 1460,nop,nop,sackOK,nop,wscale 6>

09:35:11.081943 IP 192.168.136.1.55684 > 192.168.116.128.80: . ack 1 win 4380

09:35:11.081955 IP 192.168.136.1.55684 > 192.168.116.128.80: P 1:299(298) ack 1 win 4380

09:35:11.083765 IP 192.168.116.128.80 > 192.168.136.1.55684: . ack 299 win 108

Client B - Src IP 192.168.116.1 - Virtual Server 192.168.136.100:

Clientside:

09:36:11.244040 IP 192.168.116.1.55769 > 192.168.136.100.80: S 3320618938:3320618938(0) win 8192 <mss 1460,nop,wscale 2,nop,nop,sackOK>

09:36:11.244152 IP 192.168.136.100.80 > 192.168.116.1.55769: S 3878120666:3878120666(0) ack 3320618939 win 4380 <mss 1460,nop,wscale 0,sackOK,eol>

09:36:11.244839 IP 192.168.116.1.55769 > 192.168.136.100.80: . ack 1 win 16425

09:36:11.245830 IP 192.168.116.1.55769 > 192.168.136.100.80: P 1:299(298) ack 1 win 16425

09:36:11.245922 IP 192.168.136.100.80 > 192.168.116.1.55769: . ack 299 win 4678

Serverside:

09:36:11.245940 IP 192.168.136.1.55684 > 192.168.116.128.80: P 599:897(298) ack 4525 win 8904

09:36:11.247847 IP 192.168.116.128.80 > 192.168.136.1.55684: P 4525:5001(476) ack 897 win 142

Why was the second client flow permitted by the web server?

A.
A global SNAT is defined.
Answers
A.
A global SNAT is defined.
B.
SNAT automap was enabled on the virtual server.
Answers
B.
SNAT automap was enabled on the virtual server.
C.
The idle TCP session from the first client was re-used.
Answers
C.
The idle TCP session from the first client was re-used.
D.
A source address persistence profile is assigned to the virtual server.
Answers
D.
A source address persistence profile is assigned to the virtual server.
Suggested answer: C
Show Answer
asked 24/09/2024
Manuel Ortega
42 questions
PreviousPreviousNextNext
User
Your answer:
0 comments
Sorted by

Leave a comment first

ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms