Cisco
CompTIA
ISC
EC-Council
EXIN
Fortinet
ITIL
Juniper
Microsoft
VMware
Avaya
SAP
Google
NVIDIA
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk
ServiceNow
All Vendors
  2. Home
  3. Exams
  4. F5
  5. 301a

F5 301a Exam
BIG-IP LTM Specialist: Architect, Set up, Deploy (Page 5 )

Updated On: 1-Feb-2026
Page 5 of 31
PDF with 147 Questions

An LTM Specialist reports that an application si no longer reachable after it has been upgraded. Nothing has been changed in the configuration on the LTM device. The logs indicates that health monitors to all servers have failed as shown:
What should the LTM Specialist verify next?

  1. That the TCP hand shake with the servers is stall completed using tcpdump
  2. That the custom receive string for the HTTP monitor has changed with the upgrade
  3. That the can still ping the servers from te BIG_ IP device.
  4. That the firewall between the BIG-ip device and servers is still allowing HTTP

Answer(s): B

Explanation:

The log shows that tcp detection is normal, but http detection is abnormal. So we should pay attention to the detection problem of http level



An LTM Specialist has detected that a brute force login attack is occurring against the SSH service via a BIG-IP management interface. Login attempts are occurring from many IPs within the internal company network. BIG-IP SSH access restrictions are in place as follows:



The LTM Specialist has determined that SSH access should only occur from the 192.168.1.0/24 and 172.16.254.0/23 networks.
Which tmsh command should the LTM Specialist use to permit access from the desired networks only?

  1. modify.sys sshd allow add {''192.168. 10/24 , '' ''172. 16 2540/23'')
  2. modify /sys sshd login disable (''10.0.00/8'', ''172 16.0 0/12'', ''192. 168.0.0/16'')
  3. modify/sys allow replace-all-with {''192.168.1.00/24'', ''192.16.254.0/23''}
  4. modify/sys sshd login enable {''192.166.10/24'''' ''172.16 254 0/23

Answer(s): C

Explanation:

Select C to overwrite the existing network's allow configuration over the specified network segment.



Refer to the exhibit.



The LTM devices LTM3 and LTM2 have four Traffic Groups defined with approximately the sar of failover objects defined in each group.
- Traffic Groups A and C have Default Device set to LTM1
- Traffic Groups Band D have Default Device set to LTM2.
- Traffic Groups B and C do NOT have Auto Failback enabled. Traffic Groups A and D have Auto Failback enabled with a timeout value of 60 seconds.
- Traffic Groups A and D have Auto Fallback enabled with a timeout value of 60 seconds. Both LTM devices are healthy and able to pass traffic for any Traffic Group. LTM1 loses connectivity on interface 1.4. The LTM Specialists notified 60 seconds after the interface
goes down.
What is the state of the Traffic Groups on each LTM device?

  1. LTM1: Traffic Group C
    LTM2: Traffic Groups A, B, and 0
  2. LTM1: No Traffic Groups
    LTM2: Traffic Groups A, B, C, and D
  3. LTM1: Traffic Groups A, B, C, and D
    LTM2: No Traffic Groups
  4. LTM1: Traffic Groups B and C
    LTM2: Traffic Groups A and 0

Answer(s): B

Explanation:

If the 1.4 port is down and failsafe is triggered, the whole machine will become a standby, and all Traffic Groups will be cut away, and no Traffic Group will remain.



An LTM specialist needs to create a new account with the admin role called "newadmin' and access to all partitions.
Which tmsh command should be executed?

  1. create /auth user newadmin partition-access add {all-partitions {role admin }} prompt for- password.
  2. create /users newadmin partition-access add {all-partitions {role admin JJ prompt for-password.
  3. create /user newadmin partition-access add (all-partitions {role admin }} prompt- for-password.
  4. create / sys user newadmin partition-access add (all-partitions {role admin )} prompt-for- password.

Answer(s): A

Explanation:

Examining the use of commands, the creation of user is subordinate to auth



An LTM Specialist discovers an issue with the custom http monitor that returns in a false positive status.
The end users cannot get the right website, but the http monitor marks the pool member UP.
What is causing the false positive result?

  1. The end user should use another type of browser.
  2. The response is chunked.
  3. The response is compressed.
  4. The Content-Type has value "iso-8859-200".

Answer(s): D



Viewing page 5 of 31
Viewing questions 21 - 25 out of 147 questions



Post your Comments and Discuss F5 301a exam prep with other Community members:

Join the 301a Discussion