An LTM Specialist configures two LTM devices in a high-availability pair with trusts established and device groups configured properly using network failover. After several months, the LTM Specialist notices that changes made to one LTM device do NOT cause the synchronization status to update to "changes pending," and this device does NOT synchronize with the device group.
Which two steps should the LTM Specialist take to identify the issue? (Choose two.)

• A.Verify the network connectivity between the devices.
• B.Verify that port lockdown on the ConfigSync interface is set to allow port 1026.
• C.Verify that NTP is synchronized.
• D.Verify that ConfigSync is using the management IP address.
• E.Verify that the devices are not using self-signed certificates.

Comment: *

Name: *

Email: *

Verification: *

An LTM Specialist sees these entries in /var/log/ltm:
Oct 25 03:34:31 tmm warning tmm[7150]: 01260017:4: Connection attempt to insecure SSL server (see RFC5746) aborteD. 172.16.20.1:443
Oct 25 03:34:32 tmm warning tmm[7150]: 01260017:4: Connection attempt to insecure SSL server (see RFC5746) aborteD. 172.16.20.1:443
Oct 25 03:34:32 tmm warning tmm[7150]: 01260017:4: Connection attempt to insecure SSL server (see RFC5746) aborteD. 172.16.20.1:443
Oct 25 03:34:32 tmm warning tmm[7150]: 01260017:4: Connection attempt to insecure SSL server (see RFC5746) aborteD. 172.16.20.1:443
Oct 25 03:34:32 tmm warning tmm[7150]: 01260017:4: Connection attempt to insecure SSL server (see RFC5746) aborteD. 172.16.20.1:443
Oct 25 03:34:33 tmm warning tmm[7150]: 01260017:4: Connection attempt to insecure SSL server (see RFC5746) aborteD. 172.16.20.1:443
Assume 172.16.20.0/24 is attached to the VLAN "internal."
What should the LTM Specialist use to troubleshoot this issue?

• A.ssldump -i internal host 172.16.20.1
• B.tcpdump -s 64 -i internal -w /shared/ssl.pcap host 172.16.20.1
  ssldump -r /shared/ssl.pcap
• C.curl -d - -k https://172.16.20.1
• D.tcpdump -i internal host 172.16.20.1 > /shared/ssl.pcap
  ssldump < /shared/ssl.pcap

Comment: *

Name: *

Email: *

Verification: *

-- Exhibit -

-- Exhibit --
Refer to the exhibit.
An LTM Specialist configures a virtual server to load balance to a pool of FTP servers. File transfers are failing. The virtual server is configured as follows:
ltm virtual ftp_vs {
destination 10.10.1.103:ftp
ip-protocol tcp
mask 255.255.255.255
pool ftp_pool
profiles {
tcp { }
}
vlans-disabled
}
Which change will resolve the problem?

• A.Add an FTP profile to the virtual server.
• B.Enable loose initiation in the TCP profile.
• C.Increase the TCP timeout value in the TCP profile.
• D.Add an FTP monitor to the pool.

Comment: *

Name: *

Email: *

Verification: *

An LTM Specialist has a single HTTPS virtual server doing SSL termination. No server SSL profile is defined. The pool members are on the internal VLAN answering on HTTP port 80. Users with certain browsers are experiencing issues.
Which two locations are most appropriate to gather packets needed to determine the SSL issue? (Choose two.)

• A.user's computer
• B.LTM device's internal VLAN
• C.LTM device's external VLAN
• D.LTM device's management interface
• E.server interface

Comment: *

Name: *

Email: *

Verification: *

An LTM device has been configured to log the reasons for generating TCP RST packets.
The following log entry occurs:
"01230140:3: RST sent from 192.168.1.100:80 to 192.168.1.124:39272, [0x112d82a:1721] {peer} TCP RST from remote system." Which condition will trigger this log entry?

• A.The LTM device has reached the maximum number of allowed attempts to send the data segment to the affected TCP connection.
• B.The host at the other end terminated the TCP connection.
• C.A virtual server connection limit has been reached.
• D.The LTM device reset the connection because no pool members are available.

Comment: *

Name: *

Email: *

Verification: *