F50-536 Online Practice Questions and Answers

Which of the following are correct regarding Wildcard entities? (Choose 2)

A. Wildcard entities are the basis for positive security logic.

B. Wildcard entities are the basis for negative security logic.

C. Wildcard entities require the need to learn only from violations.

D. Wildcard entities can be applied to file types, URLs, cookies and parameters.

Which of the following does not pertain to protecting the Requested Resource (URI) element?

A. File type validation

B. URL name validation

C. Domain cookie validation

D. Attack signature validation

Which of the following protocol protections is not provided by the Protocol Security Manager?

A. FTP

B. SSH

C. HTTP

D. SMTP

Which of the following methods of protection is not available within the Protocol Security Manager for HTTP traffic?

A. Data guard

B. Attack signatures

C. Evasion techniques

D. File type enforcement

When we have a * wildcard entity configured in the File Type section with tightening enabled, the following may occur when requests are passed through the policy. Which is the most accurate statement?

A. File type violations will not be triggered.

B. File type violations will be triggered and learning will be available based on these violations.

C. File type entities will automatically be added to the policy (policy will tighten).

D. File type violations will not be triggered and the entity learning section will be populated with file type recommendations.

There are multiple HTTP class profiles assigned to a virtual server. Each profile has Application Security enabled. Which statement is true?

A. Traffic will process through every HTTP class profile every time.

B. Traffic will process through the first HTTP class profile that it matches and then stops.

C. Traffic will process through one HTTP class profile and if the traffic matches another profile, BIG-IP System will send a redirect to the client.

D. Traffic will only process through the HTTP class profile that it matches but always processes through the whole list and will process through each HTTP class profile it matches.

When building a policy based on live traffic using the automated policy builder, which of the following elements will not be taken into account when analyzing the traffic?

A. The size of the response

B. The requested resource (URI)

C. The response code from the web server

D. The parameter values of static based parameters

On a BIG-IP ASM 3600, in standalone mode, which of the following pool configurations is valid?

A. Pool named vs_pool with 1 pool member, no persistence, and no load balancing method

B. Pool named vs_pool with 1 pool member, cookie persistence, and ratio load balancing method

C. Pool named vs_pool with 2 pool members, cookie persistence, and ratio load balancing method

D. Pool named vs_pool with 3 pool members, source IP persistence, and least connections load balancing method

Which level of parameter assumes the highest precedence in BIG-IP ASM System processing logic?

A. Flow

B. Object

C. Global

D. URL

Which of the following storage type combinations are configurable in an ASM logging profile?

A. Local and Syslog

B. Local and Remote

C. Remote and Syslog

D. Remote and Reporting Server