F5 BIG-IP LTM Specialist: Maintain and Troubleshoot — Question 89

A client (10.10.1.30) connecting to an HTTPS virtual server (10.10.1.100) with a clientssl profile is getting an SSL error.
Which options will trace this issue?

Answer options

• A. tcpdump -i external -X -e -nn -vvv -w /shared/ssl_problem.cap port 443 and host 10.10.1.30 ssldump -r /shared/ssl_problem.cap -n -x
• B. tcpdump -i external -s 0 -w /shared/ssl_problem.cap port 443 and host 10.10.10.30 and host 10.10.1.100 ssldump -r /shared/ssl_problem.cap -n -x
• C. tcpdump -i external -X -s 0 -vvv src host 10.10.10.30 and dst host 10.10.1.100 and port 443 > /shared/ssl_problem.cap ssldump -r /shared/ssl_problem.cap -n -x
• D. tcpdump -i external -X -e -nn -vv port 443 and host 10.10.1.100 and host 10.10.1.30 > /shared/ssl_problem.cap

Correct answer: B

Explanation

Option B is correct because it accurately captures traffic from the client to the server using the appropriate filters and syntax. The other options contain incorrect host addresses or do not properly capture the necessary traffic for analysis, which is essential for troubleshooting the SSL error.