862 お客様のコメント
質問 1:
What is the default Minimum Scale per Virtual Service value in Active-Active HA, if one exists?
A. 1
B. 3
C. A default value does not exist.
D. 2
正解:D
質問 2:
An operator has been asked to provide a list of SSL/TLS ciphers used for the last 100 requests of a Virtual Service. The operator can't find this information in the GUI.
Which action, if any, retrieves this information?
A. The operator will need to export the logs in a CSV file to retrieve the list of ciphers.
B. The operator will need to enable Log all Headers in the VS configuration.
C. The operator will need to use the API since this list can only be retrieved through API.
D. The operator can't retrieve this through the GUI since Avi does not record the ciphers for compliance reasons.
正解:D
質問 3:
Which Network Security Policy action is valid?
A. Rate Limit
B. Continue
C. Send Local Response
D. Redirect
正解:D
質問 4:
The engineering team has created a new Virtual Service for the latest application in Amazon Web Services. The help desk has reported that clients are unable to access this web application and have discovered that the DNS name is resolving to a private address that is not accessible over the internet. Avi is used for DNS resolution of the cloud services.
What is the most likely cause of this issue?
A. The AWS Security Groups are not configured correctly.
B. A Network Security Policy is assigned to the Virtual Service.
C. The engineer incorrectly entered the IP address in the DNS entry.
D. "Assign Elastic IP for External Client Access" was not checked.
正解:A
質問 5:
Which setting should be configured to prevent source NAT of the client IP in the back-end connection?
A. X-Forwarded-For HTTP Header in the HTTP Application Profile
B. Proxy Protocol in the L4 Application Profile
C. Preserve Client IP in the Application Profile
D. Connection Multiplexing in the Application Profile
正解:C
質問 6:
An administrator needs to determine the rate of 5xx errors being returned by the Pool servers.
Which metrics graph in the Virtual Service Analytics tab can be used to complete this task?
A. Client Insights
B. End to End Timing
C. Requests
D. Conns
正解:A
質問 7:
A Service Engine on which the Virtual Service is placed is experiencing a high level of memory utilization, but users of the application are not experiencing any issues.
What impact, if any, will this have on the Health Score of the Virtual Service?
A. The Security Penalty will be increased.
B. The Virtual Service's Health Score will not be impacted.
C. The Performance score will be reduced.
D. The Resource Penalty will be increased.
正解:C
質問 8:
Which three options can be configured via the HTTP Application Profile? (Choose three.)
A. PROXY Protocol
B. Web Application Firewall
C. Caching
D. Rate limiting
E. X-Forwarded-For header
F. HTTP cookie persistence
正解:C,E,F
質問 9:
Which two mechanisms for alerting an operator that an SSL/TLS certificate is about to expire are enabled by default? (Choose two.)
A. Health Score of VS which contain an expired SSL/TLS certificate will show up at the top in the Application Dashboard.
B. The Avi Controller will send an email to alert the operator.
C. The Health Score of the VS will be lowered by a security penalty.
D. The Avi Controller will send an SNMP trap to alert the operator.
E. In Template/Security/SSL TLS Certificates, the certificates that are about to expire will appear in yellow, orange, or red.
正解:B,E
What is the default Minimum Scale per Virtual Service value in Active-Active HA, if one exists?
A. 1
B. 3
C. A default value does not exist.
D. 2
正解:D
質問 2:
An operator has been asked to provide a list of SSL/TLS ciphers used for the last 100 requests of a Virtual Service. The operator can't find this information in the GUI.
Which action, if any, retrieves this information?
A. The operator will need to export the logs in a CSV file to retrieve the list of ciphers.
B. The operator will need to enable Log all Headers in the VS configuration.
C. The operator will need to use the API since this list can only be retrieved through API.
D. The operator can't retrieve this through the GUI since Avi does not record the ciphers for compliance reasons.
正解:D
質問 3:
Which Network Security Policy action is valid?
A. Rate Limit
B. Continue
C. Send Local Response
D. Redirect
正解:D
質問 4:
The engineering team has created a new Virtual Service for the latest application in Amazon Web Services. The help desk has reported that clients are unable to access this web application and have discovered that the DNS name is resolving to a private address that is not accessible over the internet. Avi is used for DNS resolution of the cloud services.
What is the most likely cause of this issue?
A. The AWS Security Groups are not configured correctly.
B. A Network Security Policy is assigned to the Virtual Service.
C. The engineer incorrectly entered the IP address in the DNS entry.
D. "Assign Elastic IP for External Client Access" was not checked.
正解:A
質問 5:
Which setting should be configured to prevent source NAT of the client IP in the back-end connection?
A. X-Forwarded-For HTTP Header in the HTTP Application Profile
B. Proxy Protocol in the L4 Application Profile
C. Preserve Client IP in the Application Profile
D. Connection Multiplexing in the Application Profile
正解:C
質問 6:
An administrator needs to determine the rate of 5xx errors being returned by the Pool servers.
Which metrics graph in the Virtual Service Analytics tab can be used to complete this task?
A. Client Insights
B. End to End Timing
C. Requests
D. Conns
正解:A
質問 7:
A Service Engine on which the Virtual Service is placed is experiencing a high level of memory utilization, but users of the application are not experiencing any issues.
What impact, if any, will this have on the Health Score of the Virtual Service?
A. The Security Penalty will be increased.
B. The Virtual Service's Health Score will not be impacted.
C. The Performance score will be reduced.
D. The Resource Penalty will be increased.
正解:C
質問 8:
Which three options can be configured via the HTTP Application Profile? (Choose three.)
A. PROXY Protocol
B. Web Application Firewall
C. Caching
D. Rate limiting
E. X-Forwarded-For header
F. HTTP cookie persistence
正解:C,E,F
質問 9:
Which two mechanisms for alerting an operator that an SSL/TLS certificate is about to expire are enabled by default? (Choose two.)
A. Health Score of VS which contain an expired SSL/TLS certificate will show up at the top in the Application Dashboard.
B. The Avi Controller will send an email to alert the operator.
C. The Health Score of the VS will be lowered by a security penalty.
D. The Avi Controller will send an SNMP trap to alert the operator.
E. In Template/Security/SSL TLS Certificates, the certificates that are about to expire will appear in yellow, orange, or red.
正解:B,E
Imai -
本日5V0-43.21受験しました。合格できました。
こちらの問題集から、9割以上出ました。大変助かりました。