Amazon
Avaya
Cisco
CompTIA
CrowdStrike
EC-Council
EXIN
Fortinet
Google
ISC
ISC2
ITIL
Juniper
Microsoft
NVIDIA
Okta
Palo Alto Networks
Salesforce
SAP
ServiceNow
All Vendors

F5 BIG-IP Administration Data Plane Configuration F5CAB3 Exam Questions in PDF

Free F5 F5CAB3 Dumps Questions (page: 3)

F5CAB3 PDF — 76 Questions

Which persistence profile would be the most appropriate to ensure an HTTP web request connects to the same pool member? (Choose one answer)

  1. Destination address
  2. Hash persistence
  3. SSL persistence
  4. Cookie persistence

Answer(s): D

Explanation:

For HTTP-based applications, cookie persistence is the most appropriate and commonly recommended persistence method.

According to the BIG-IP Administration: Data Plane Configuration documentation:

Cookie persistence inserts or uses an HTTP cookie to maintain session affinity.

It operates at Layer 7 (HTTP) and is application-aware.

It allows persistence to be maintained even when multiple clients are behind a NAT device.

Why the other options are incorrect:

A . Destination address

Destination address persistence is generally used for inbound traffic patterns such as firewall or proxy scenarios.

B . Hash persistence

Hash persistence is less granular and not HTTP-specific.

C . SSL persistence

SSL persistence is typically used when SSL session IDs are reused and is less reliable than cookies for HTTP applications.

Correct Resolution:

Using cookie persistence ensures that HTTP web requests are consistently directed to the same pool member.



A BIG-IP Administrator needs to apply persistence to a virtual server that is configured as a Performance (Layer 4) virtual server that allows access to a secure (TLS) e-commerce website.

What type of persistence profile can be used? (Choose one answer)

  1. Source Address Affinity
  2. Cookie persistence
  3. Microsoft RDP persistence
  4. Host persistence

Answer(s): A

Explanation:

A Performance (Layer 4) virtual server does not inspect or process application-layer data such as HTTP headers or cookies. Therefore, only Layer 4­compatible persistence methods can be used.

According to the BIG-IP Administration: Data Plane Configuration documentation:

Source Address Affinity persistence operates at Layer 4 and uses the client IP address to maintain session persistence.

It is fully compatible with Performance (Layer 4) virtual servers.

It works regardless of encryption, making it suitable for TLS-secured applications.

Why the other options are incorrect:

B . Cookie persistence

Requires an HTTP profile and Layer 7 inspection, which is not supported on Performance virtual servers.

C . Microsoft RDP persistence

Is protocol-specific and not applicable to web-based TLS traffic.

D . Host persistence

Requires HTTP host header inspection, which is not available at Layer 4.

Correct Resolution:

Source Address Affinity persistence is the appropriate choice for maintaining persistence on a Performance (Layer 4) virtual server handling TLS traffic.

Below is Batch 1 (Questions 1­10) extracted only from your uploaded document that are directly related to BIG-IP Administration: Data Plane Configuration topics (Virtual Servers, Pools, Load Balancing, Monitors, Persistence, SNAT, Profiles).

I have excluded system-only, licensing, support, hardware, HA management-only, and admin UI questions that are not Data Plane­focused.

Source: Your uploaded TMOS Administration v2.0 document

BATCH 1 (10 Questions)



A Virtual Server uses an iRule to send traffic to pool members depending on the URI. The BIG-IP Administrator needs to modify the pool member in the iRule.

Which event declaration does the BIG-IP Administrator need to change to accomplish this?

  1. CLIENT_ACCEPTED
  2. HTTP_RESPONSE
  3. HTTP_REQUEST
  4. SERVER_CONNECTED

Answer(s): C

Explanation:

URI-based traffic steering requires inspection of the HTTP request. BIG-IP processes HTTP headers and URIs in the HTTP_REQUEST event. Pool member selection based on URI must occur before the request is sent to the server, making HTTP_REQUEST the correct event.



A BIG-IP Administrator creates a new Virtual Server to load balance SSH traffic. Users are unable to log on to the servers.

What should the BIG-IP Administrator do to resolve the issue?

  1. Set Protocol to UDP
  2. Set HTTP Profile to None
  3. Set Source Address to 10.1.1.2
  4. Set Destination Address/Mask to 0.0.0.0/0

Answer(s): B

Explanation:

SSH is a TCP Layer 4 protocol. Applying an HTTP profile causes BIG-IP to expect HTTP headers, breaking SSH sessions. Removing the HTTP profile allows raw TCP forwarding.



A BIG-IP Administrator uses backend servers to host multiple services per server. There are multiple virtual servers and pools defined, referencing the same backend servers.

Which load balancing algorithm is most appropriate to have an equal number of connections on each backend server?

  1. Least Connections (member)
  2. Least Connections (node)
  3. Predictive (member)
  4. Predictive (node)

Answer(s): B

Explanation:

Least Connections (node) balances connections across the physical server regardless of how many services or pool members exist on that node.



What is the status of a pool member when manual resume is enabled and a health check first fails and then passes?

  1. Offline (Disabled)
  2. Offline (Enabled)
  3. Available (Disabled)
  4. Available (Enabled)

Answer(s): A

Explanation:

With manual resume enabled, BIG-IP does not automatically return a pool member to service after recovery. The member remains offline until manually re-enabled.



Some users who connect to a busy Virtual Server have connections reset by the BIG-IP system. Pool member resources are NOT a factor.

What is a possible cause?

  1. Connection Rate Limit is set too high
  2. Server SSL profile not reconfigured
  3. Connection Limit is set too low
  4. Rewrite profile not configured

Answer(s): C

Explanation:

When the connection limit is reached, BIG-IP resets new connections, even if pool members are healthy.



Which Virtual Server type prevents the use of a default pool?

  1. Performance (Layer 4)
  2. Forwarding (IP)
  3. Performance (HTTP)
  4. Standard

Answer(s): B

Explanation:

Forwarding (IP) virtual servers operate at Layer 3 and forward traffic based on routing, not pools.



Viewing page 3 of 7

Share your comments for F5 F5CAB3 exam with other users:

P
Passed
1/16/2022 9:40:00 AM

passed

GERMANY
H
Harsh
6/12/2023 1:43:00 PM

yes going good

Anonymous
S
Salesforce consultant
1/2/2024 1:32:00 PM

good questions for practice

FRANCE
R
Ridima
9/12/2023 4:18:00 AM

need dump and sap notes for c_s4cpr_2308 - sap certified application associate - sap s/4hana cloud, public edition - sourcing and procurement

Anonymous
T
Tanvi Rajput
10/6/2023 6:50:00 AM

question 11: d i personally feel some answers are wrong.

UNITED KINGDOM
A
Anil
7/18/2023 9:38:00 AM

nice questions

Anonymous
C
Chris
8/26/2023 1:10:00 AM

looking for c1000-158: ibm cloud technical advocate v4 questions

Anonymous
S
sachin
6/27/2023 1:22:00 PM

can you share the pdf

Anonymous
B
Blessious Phiri
8/13/2023 10:26:00 AM

admin ii is real technical stuff

Anonymous
L
Luis Manuel
7/13/2023 9:30:00 PM

could you post the link

UNITED STATES
V
vijendra
8/18/2023 7:54:00 AM

hello send me dumps

Anonymous
S
Simeneh
7/9/2023 8:46:00 AM

it is very nice

Anonymous
J
john
11/16/2023 5:13:00 PM

i gave the amazon dva-c02 tests today and passed. very helpful.

Anonymous
T
Tao
11/20/2023 8:53:00 AM

there is an incorrect word in the problem statement. for example, in question 1, there is the word "speci c". this is "specific. in the other question, there is the word "noti cation". this is "notification. these mistakes make this site difficult for me to use.

Anonymous
P
patricks
10/24/2023 6:02:00 AM

passed my az-120 certification exam today with 90% marks. studied using the dumps highly recommended to all.

Anonymous
A
Ananya
9/14/2023 5:17:00 AM

i need it, plz make it available

UNITED STATES
J
JM
12/19/2023 2:41:00 PM

q47: intrusion prevention system is the correct answer, not patch management. by definition, there are no patches available for a zero-day vulnerability. the way to prevent an attacker from exploiting a zero-day vulnerability is to use an ips.

UNITED STATES
R
Ronke
8/18/2023 10:39:00 AM

this is simple but tiugh as well

Anonymous
C
CesarPA
7/12/2023 10:36:00 PM

questão 4, segundo meu compilador local e o site https://www.jdoodle.com/online-java-compiler/, a resposta correta é "c" !

UNITED STATES
J
Jeya
9/13/2023 7:50:00 AM

its very useful

INDIA
T
Tracy
10/24/2023 6:28:00 AM

i mastered my skills and aced the comptia 220-1102 exam with a score of 920/1000. i give the credit to for my success.

Anonymous
J
James
8/17/2023 4:33:00 PM

real questions

UNITED STATES
A
Aderonke
10/23/2023 1:07:00 PM

very helpful assessments

UNITED KINGDOM
S
Simmi
8/24/2023 7:25:00 AM

hi there, i would like to get dumps for this exam

AUSTRALIA
J
johnson
10/24/2023 5:47:00 AM

i studied for the microsoft azure az-204 exam through it has 100% real questions available for practice along with various mock tests. i scored 900/1000.

GERMANY
M
Manas
9/9/2023 1:48:00 AM

please upload 1z0-1072-23 exam dups

UNITED STATES
S
SB
9/12/2023 5:15:00 AM

i was hoping if you could please share the pdf as i’m currently preparing to give the exam.

Anonymous
J
Jagjit
8/26/2023 5:01:00 PM

i am looking for oracle 1z0-116 exam

UNITED STATES
S
S Mallik
11/27/2023 12:32:00 AM

where we can get the answer to the questions

Anonymous
P
PiPi Li
12/12/2023 8:32:00 PM

nice questions

NETHERLANDS
D
Dan
8/10/2023 4:19:00 PM

question 129 is completely wrong.

UNITED STATES
G
gayathiri
7/6/2023 12:10:00 AM

i need dump

UNITED STATES
D
Deb
8/15/2023 8:28:00 PM

love the site.

UNITED STATES
M
Michelle
6/23/2023 4:08:00 AM

can you please upload it back?

Anonymous
AI Tutor 👋 I’m here to help!