F5 F5 Certification 101 Questions & Answers

• Question 691:

  CORRECT TEXT LTM runs on________F5's proprietary product platform. (Fill in the correct answer)

  Correct Answer: TMOS

• Question 692:

  CORRECT TEXT A _______ object maps a FQDN to virtual servers. (Fill in)

  Correct Answer: Wide IP

• Question 693:

  CORRECT TEXT GTM uses the F5 ___________ protocol to synchronize performance metrics between GTM devices. (Fill in)

  Correct Answer: iQuery

• Question 694:

  CORRECT TEXT The layer 3 security feature _______ Cookies that protects against SYN floods, DoS, and DDoS attacks. (Fill in)

  Correct Answer: contain / include

• Question 695:

  DRAG DROP

  Match these terms with their description.

  Select and Place:

  

  Correct Answer:

  

  Disaster recovery SLA Measured by RPOs and RTOs Recovery point objective The amount of data that can be lost Recovery time objective How fast operations need to return to normal

• Question 696:

  DRAG DROP

  Place the following items in the order that the BIG-IP device uses when processing a packet.

  Select and Place:

  

  Correct Answer:

  

  1) Check for a match with a self-IP

  2) Search for an existing connection

  3) Examine source IP for a standalone SNAT

  4) Check if the destination matches a NAT

  5) Look for a virtual server address match

  6) Look for a match in a packet filter rule

• Question 697:

  DRAG DROP

  Match the security-related term with the correct definition.

  1.

  Demilitarized zone (DMZ)

  2.

  Denial of service (DoS)

  3.

  DNS Express

  4.

  DNS Security Extensions (DNSSEC)

  5.

  Endpoint inspection

  Select and Place:

  

  Correct Answer:

  

  1.

  Demilitarized zone (DMZ) - A portion of an enterprise network that sits behind a firewall but outside of or segmented from the internal network.

  2.

  Denial of service (DoS) - An attack that floods a network or server with requests and data making it unavailable.

  3.

  DNS Express - A high-speed in-memory authoritative DNS slave that can dramatically reduce the DNS server infrastructure.

  4.

  DNS Security Extensions (DNSSEC) - A set of standards created to address vulnerabilities in the Domain Name System (DNS) and protect it from online threats.

  5.

  Endpoint inspection - Ensures a client device does not present a security risk before it is granted a remote-access connection to the network.

• Question 698:

  DRAG DROP

  Match the security-related term with the correct definition.

  1.

  OWASP Top 10

  2.

  Secure Socket Layer (SSL)

  3.

  Bot

  4.

  Certificate

  5.

  Content scrubbing

  Select and Place:

  

  Correct Answer:

  

  1.

  OWASP Top 10 A list of the 10 most dangerous current Web application security flaws, along with the effective methods of dealing with those flaws.

  2.

  Secure Socket Layer (SSL) A cryptographic protocol used to secure communications over the Internet.

  3.

  Bot Malicious software placed on other people's computers to perform automated tasks over the Internet.

  4.

  Certificate A digitally signed statement issued by a trusted organization that contains information about an entity and the entity's public key.

  5.

  Content scrubbing Obfuscating identity information to prevent confidential information from being sent in a web application response.

• Question 699:

  DRAG DROP

  Match the five elements of the intelligent file virtualization with the appropriate ARX feature:

  Select and Place:

  

  Correct Answer:

  A. Real Time

  B. Non-Disruptive

  C. Heterogeneous

  D. Data Integrity

  E. Scale and Performance