CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. F5
  5. 201

Free 201 Exam Braindumps (page: 19)

Page 18 of 60
PDF with 254 Questions

Assume a virtual server is configured with a ClientSSL profile. What would the result be if the virtual server's destination port were not 443?

  1. SSL termination could not be performed if the virtual server's port was not port 443.
  2. Virtual servers with a ClientSSL profile are always configured with a destination port of 443.
  3. As long as client traffic was directed to the alternate port, the virtual server would work as intended.
  4. Since the virtual server is associated with a ClientSSL profile, it will always process traffic sent to port 443.

Answer(s): C



Which statement is true concerning SSL termination?

  1. A virtual server that has both ClientSSL and ServerSSL profiles can still support cookie persistence.
  2. Decrypting traffic at the BIG‐IP allows the use of iRules for traffic management, but increases the load on the pool member.
  3. When any virtual server uses a ClientSSL profile, all SSL traffic sent to the BIG‐IP is decrypted before it is forwarded to servers.
  4. If a virtual server has both a ClientSSL and ServerSSL profile, the pool members have less SSL processing than if the virtual server had only a ClientSSL profile

Answer(s): A



A site wishes to perform source address translation on packets from some clients but not others. The determination is not based on the client's IP address, but on the virtual servers their packets arrive on. What could best accomplish this goal?

  1. A SNAT for all addresses could be defined, and then disable the SNAT processing for select VLANs.
  2. Some virtual servers could be associated with SNAT pools and others not associated with
    SNAT pools.
  3. The decision to perform source address translation is always based on VLAN. Thus, the goal cannot be achieved.
  4. The decision to perform source address translation is always based on a client's address (or network). Thus, this goal cannot be achieved.

Answer(s): B



Assume a client's traffic is being processed only by a NAT; no SNAT or virtual server processing takes place. Also assume that the NAT definition specifies a NAT address and an origin address while all other settings are left at their defaults. If a client were to initiate traffic to the NAT address, what changes, if any, would take place when the BIG‐IP processes such packets.

  1. The source address would not change, but the destination address would be translated to the origin address.
  2. The destination address would not change, but the source address would be translated to the origin address.
  3. The source address would not change, but the destination address would be translated to the NAT's address.
  4. The destination address would not change, but the source address would be translated to the NAT's address.

Answer(s): A






Post your Comments and Discuss F5 201 exam with other Community members:

201 Exam Discussions & Posts