Pass the F5 BIG-IP ASM 303 Questions and answers with CertsForce

An LTM Specialist has detected that a brute force login attack is occurring against the SSH service via a BIG-IP management interface. Login attempts are occurring from many IPs within the internal company network. BIG-IP SSH access restrictions are in place as follows:

The LTM Specialist has determined that SSH access should only occur from the 192.168.1.0/24 and 172.16.254.0/23 networks.

Whichtmsh command should the LTM Specialist use to permit access from the desired networks only?

An LTM Specialist loads a UCS file generated on a different LTM device and receives the following error message:

"mcpd[2395]: 01070608:0: License is not operational (expired or digital signature does not match contents)"

Which command should the LTM Specialist use to prevent the error?

A new HITP server has been deployed on an LTM device. The application running on the server must be monitored by the LIM device. The following is required:

A new HITP server has been deployed on an LTM device. The application running on theserver must be monitored by the LIM device. The following is required:

When the server is unavailable, it will send an HTTP status code of 200 in response to a request for the status html page.

When the server is available. I will send and HTTP status code of 201 in response to a request for the status html page.

When the 200 status code is received, the pool member should receive No new connections.

Which configuration change should be made to meet these requirements?

An LTM HTTP pool has an associated monitor that sends a string equal to 'GET /test.html'.

Which two configurations could an LTM Specialist implement to allow server administrators to disable their pool member servers without logging into the LTM device? (Choose two.)

Refer to the exhibit.

A BIG-IP Administrator needs to deploy an application on the BIG-IP system to perform SSL offload and

re-encrypt the traffic to pool members.

During testing, users are unable to connect to the application.

What must the BIG-IP Administrator do to resolve the issue?

A BIG-IP Administrator is configuring an SSH Pool with five members.

Which Health Monitor should be applied to ensure that available pool members are monitored

accordingly?

An LTM Specialist discovers an issue with the custom http monitor that returns in a false positive status.

The end users cannot get the right website, but thehttp monitor marks the pool member UP.

What is causing the false positive result?

Some users who connect to a busy Virtual Server have connections reset by the BIG-IP system. Pool member resources are NOT a factor in this behavior. What is a possible cause for this behavior?

An LTM device receives a response string containing "error"

Which monitor type and parameter will mark the HTTP server as down?

A BIG-IP Administrator receives an RMA replacement for a failed F5 device. The BIG-IP Administrator

tries to restore a UCS taken from the previous device, but the restore fails. The following error appears

inthe/var/log/itm.

mcpd [****J: •*****»;0; License is not operational (expired or digital signature does not match

contents.)

What should the BIG-IP Administrator do to avoid this error?

Which two items can be logged by the Application Visibility Reporting analytics profile? (Choose two.)

An LTM Specialist must reconfigure a BIG-IP system that load balances traffic to a web application. The security department has informed the LTM Specialist that the following cipher string must be used for TLS connections from BIG-IP to the web application.

NATIVE:IMDS:EXPORT:IDHE:EDH@SPEED

In which virtual server profile should the cipher string be configured?

in which Application Visibility and Reporting (AYR) profile must the SMTP profile be defined to configure notifications via email?

A BIG-IP Administrator needs to purchase new licenses for a BIG-IP appliance.

The administrator needs to know if a module is licensed and the memory requirement for that module.

Where should the administrator view this information in the System menu?

An HA pair of LTM devices configured in Active-Standby mode stops responding to traffic and causes an outage. The Active device becomes Standby, but the partner device stays in Standby mode instead of taking over as Active. A reboot and restart of the services brings the LTM device to Active mode for a short time, but then it goes into Standby mode again.

Which two configuration components caused this condition? (Choose two.)