F5Pc-Ltm

Front 1

What is the Big-IP LTM platform?

Back 1

A network appliance that manages and balances traffic for networking equipment.

Front 2

What are 3 tools that are used to perform the initial setup?

Back 2

-Configuration Utility
-Licensing
-Setup Utility

Front 3

What can the configuration utility do?

Back 3

Allows the admin to change the initial IP address and set the gateway for the management inteface.

Front 4

What can the licensing tool do?

Back 4

Enable features purchased for your Big-IP LTM system.

Front 5

What can the setup utility do?

Back 5

Set general admin access and network settings for the Big-IP LTM system.

Front 6

What is the system's default address?

Back 6

192.168.1.245/24 on the administrative interface with NO default route.

Front 7

How can you change the system's default address?

Back 7

Through the configuration utility or on the LCD panel.

Front 8

How do you run the configuration utility?

Back 8

Type "config" in the CLI.

Front 9

What two items are needed to gain a license certificate?

Back 9

-Registration key
-Dossier

Front 10

Where is the registration key located on new hardware?

Back 10

/config/RegKey.license

Front 11

What is the string size for registration keys?

Back 11

-Version 4.5 or 4.6 = 25 character string
-Version 9 = 27 character string

Front 12

Where is the dossier obtained?

Back 12

From the software, it is an encrypted list of key characteristics used to id the platform.

Front 13

What are the steps to obtain a license?

Back 13

1. Access the Big-IP LTM system.
2. Enter the registration key.
3. Access the dossier.
4. Send the registration key and dossier to the license server.
5. Install the bigip.license file.
6. Reboot the system.

Front 14

What happens to the registration key when upgrading the Big-IP LTM software?

Back 14

The key is lost. Users should save the registration key off to a safe location for use later. Registration keys can also be obtained from F5 support.

Front 15

What can be configured by the setup utility?

Back 15

-Self IP addresses and netmasks for VLANs
-IP address of the default route
-Root password for CLI
-Admin UN & PW for Config Utility
-IP address (or range) for SSH

Front 16

Can setup utility be accessed before licensing?

Back 16

No

Front 17

What does the web configuration utility use to provide security?

Back 17

SSL & Access control lists

Front 18

Where do you access the SNMP MIB for Big-IP LTM?

Back 18

Web Configuration Utility

Front 19

What are the default settings for the serial console?

Back 19

19,200 bps N-8-1

Front 20

What has access to the serial console CLI and SSH by default?

Back 20

Root, any other desired user must be configured in the setup utility.

Front 21

What is the file extension for Big-IP LTM configurations?

Back 21

.ucs

Front 22

Which Big-IP LTM models can utilize redundant power supplies?

Back 22

8800/8400/6800/6400

Front 23

Which model has available PCI slots for HTTP compression cards?

Back 23

6400

Front 24

What does SCCP stand for?

Back 24

Switch Card Control Processor

Front 25

What key combination from the console is used to access the SCCP?

Back 25

Escape followed by Shift + 9

ESC (

Front 26

If a pool is directly or indirectly associated with a virtual server, what happens to the pool?

Back 26

It is not used for load-balancing.

Front 27

What is a pool member?

Back 27

An IP address and service port that is hosted by a physical server.

Front 28

Node equals ?
Pool member equals ?

Back 28

IP address
Node + Port

Front 29

What is the primary mechanism Big-IP LTM uses to manage and track traffic?

Back 29

Virtual Servers

Front 30

What is a virtual server?

Back 30

A combination of a virtual IP and virtual service port.

Front 31

How are virtual services represented?

Back 31

By a single "IP address : service" combination.

Front 32

Virtual Servers are usually mapped to...

Back 32

...multiple actual servers via one or more pools.

Front 33

What are the default functions on Big-IP LTM systems for virtual servers?

Back 33

-Check availability of all actual servers associated with the virtual server
-Load balance traffic across a group of actual servers
-Translate virtual server IP address to the actual servers' IP address
-Translate virtual server TCP/UDP port to the actual servers' port

Front 34

Which tool allows a user to view some detailed system statistics?

Back 34

Configuration Utility

Front 35

Name at least 3 statistics that the configuration utility can show a user.

Back 35

-NAT Stats
-SNAT stats
-IP filter stats
-Rate filter stats
-Pool members grouped by individual members or member IP or port
-Virtual servers grouped by individual virtual server or virtual IP or virtual port
-Main system stats (time since last reboot, number of packets or connections handled by the system, number of dropped)

Front 36

Which tool allows users to view log files?

Back 36

Configuration Utility

Front 37

Name the 4 types of logs for the Big-IP LTM system.

Back 37

-System
-Packet Filter
-Local Filter
-Audit

Front 38

What provides a visual hierarchy of the names and status of virtual servers, pools, pool members, nodes, and iRules?

Back 38

Object Map

Front 39

What type of load balancing distributes traffic across members based on admin defined patterns?

Back 39

Static Load Balancing

Front 40

What are the 2 types of static load balancing?

Back 40

Round Robin & Ratio

Front 41

Which static load balancing mode distributes connection evenly across all available nodes, passing a new connection to the next node in line?

Back 41

Round Robin

Front 42

Which static load balancing mode distributes new connections across nodes in proportion to a user-defined ratio?

Back 42

Ratio

Front 43

What type of load balancing distribute traffic across members based on current server load?

Back 43

Dynamic Load Balancing

Front 44

How many dynamic load balancing modes are there?

Back 44

5 (Least connections, Fastest, Observed, Predictive, Dynamic Ratio)

Front 45

How is the next member determined in Fastest mode dynamic load balancing?

Back 45

Node that currently has the fewest outstanding layer 7 requests.

Front 46

How is the next member determined in Observed mode?

Back 46

Node with the highest performance rating based on combination of fewest connections and best response time. (best at that time)

Front 47

How is the next member determined in Predictive mode?

Back 47

Node with the highest performance rating based on combination of fewest connections and best response time OVER TIME. (Avg. of response times)

Front 48

Least connections load balancing mode is most useful for what type of connections?

Back 48

Long-lived connections like FTP or Telnet.

Front 49

How often is the load balancing decision computed?

Back 49

Once per second

Front 50

What is the difference between a node and a member?

Back 50

Pool Member = IP + Service (Port)

Node = IP (All services or ports)

Front 51

What 3 main points do health monitors perform?

Back 51

Test specific devices (1) for an expected response (2) within a defied time interval (3)

Front 52

Will the LTM system continue to monitor a system even when it is marked as down?

Back 52

Yes

Front 53

What is the "goal" of content checking?

Back 53

To have some portion of the server's response match the receive rule.

Front 54

What is a reverse setting monitor?

Back 54

A monitor that is defined to mark a server as down when a receive rule is matched.

Front 55

Where are sample interactive checks located on the system?

Back 55

/usr/bin/monitors

Front 56

What are the 3 monitors specifically designed to determine a server's service level for use with dynamic load balancing?

Back 56

WMI - Windows Management Instrumentation
Real_Server (Real Server traffic loads)
SNMP_dca (SNMP Data Collection Agent)

Front 57

Is there a default assignment to monitors in version 9.x?

Back 57

No

Front 58

What are the 3 options for assigning a monitor to pool members?

Back 58

-Inherit from Pool
-Member Specific
-None

Front 59

What are the 3 options for assigning a monitor to nodes?

Back 59

-Node Default
-Node Specific
-None

Front 60

What is the 4 level hierarchy for Big-IP LTM objects?

Back 60

-Virtual Server
-Pools
-Pool Members
-Nodes

Front 61

What are the 5 types of default profiles?

Back 61

-Protocols (connection oriented)
-Services (data type oriented)
-Persistence (session oriented)
-SSL (encryption oriented)
-Authentication (security oriented)

Front 62

Protocols support which parameters?

Back 62

-Timeouts
-Connection Management

Front 63

What does a profile tell a virtual server?

Back 63

How to process packets it receives based upon the profile's configured parameters.

Front 64

Can TCP and UDP profiles co-exist on one virtual server?

Back 64

No, just like FTP & SSL profiles could not co-exist.

Front 65

When using Source Address Persistence, does the timeout reset for each new connection by default?

Back 65

Yes.

Front 66

When using Source Address persistence, a netmask of 255.255.0.0 would 200.10.2.5 and 200.10.2.10 as the same session or different sessions?

Back 66

Same, 200.10.3.5 would be a new session.

Front 67

What are the four types of cookie persistence?

Back 67

-Insert
-Rewrite
-Passive
-Hash

Front 68

What is the name of the cookie that is created in Insert mode?

Back 68

BIGIPServer, inserted in the HTTP response from the server that contains the information about the chosen server.

Front 69

What does rewrite mode do to cookies?

Back 69

Takes the BIGIPCookie sent from the server and rewrites it BIGIPServer.

Front 70

What is an advantage of rewrite mode cookie persistence?

Back 70

Reduces the workload on the Big-IP LTM.

Front 71

When using Passive Mode cookie persistence, how do you add the cooked to every web page header?

Back 71

By adding an entry to the httpd.conf file.

Front 72

What is a drawback to passive mode cookie persistence?

Back 72

Each server needs to be configured to generate a specific cookie.

Front 73

What is hash mode cookie persistence used for?

Back 73

It is used to send groups of client to specific members.

Front 74

What is the difference between client-side and server-side SSL?

Back 74

Client side sends unencrypted information to the servers while server side re-encrypts the traffic to the servers.

Front 75

What 3 ways can SNATs be configured?

Back 75

One-to-one, many-to-one, all-to-one

Front 76

Can SNATs share IP addresses with Virtual Servers?

Back 76

Yes

Front 77

What does UIE stand for?

Back 77

Universal Inspection Engine

Front 78

What are 4 failover triggers?

Back 78

Process failure, VLAN functionality, number of pool members available, the switch board

Front 79

What 5 daemons are monitored?

Back 79

bigd - Health Monitors
mcpd - Messaging & Config
tmm - Traffic Management
sod - Failover
bcm56xxd - Switch Hardware Monitoring

Front 80

What happens with VLAN failsafe when half the timeout has elapsed and no traffic has been detected?

Back 80

The Big-IP attempts to ping a known device across the VLAN to generate traffic.

Front 81

Where do you configure the pool minimum up failover trigger?

Back 81

It can only be configured via CLI

Front 82

What is the default setting when failure of BIGD daemon is detected?

Back 82

Restart service

Front 83

What is the default setting for switchboard failsafe?

Back 83

Fail-over

Front 84

Is VLAN failsafe enabled or disabled by default?

Back 84

Disabled for ALL VLANs

Front 85

Is Gateway failsafe disabled by default?

Back 85

Yes

Front 86

How does hardware failover work?

Back 86

Uses a direct serial connection between the 2 devices and just detects voltage across the connection.

Front 87

How does network failover work by default with hardware failover?

Back 87

It works in addition to hardware failover since hardware failover cannot be disabled. It must have both in a failed state for hardware failover and then it will failover when the network failover timeout is reached.