ExamGecko
Search Search Login
Home Home / Citrix / 1Y0-241

Citrix 1Y0-241 Practice Test - Questions Answers, Page 6

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Scenario: The primary content switching vServer has gone down. To troubleshoot, a Citrix Administrator has issued the following command: > show csvserver CSV CSV (10.1.100.100:443) – HTTPS Type: CONTENT State: UP Last state change was at Mon Jun 29 15:20:43 2020 Time since last state change: 1 day, 06:47:58 610 Client Idle Timeout: 180 sec Down state flush: ENABLED Disable Primary vServer On Down: DISABLED Appflow logging: ENABLED Port Rewrite: DISABLED State Update: DISABLED Default: Content Precedence: URL vServer IP and Port insertion: OFF Persistence: NONE redirect: http://www.site1.com/mysite1/maintenance Backup: vServer–LB–2 Listen Policy: NONE IcmpResponse: PASSIVE RHIstate: PASSIVE Traffic Domain: 0 Based on this output, where will the subsequent request be redirected?
In a global server load balancing (GSLB) active-active environment, the connection proxy is used as the site persistence method. What is used to source the traffic when the connection is proxied?
Scenario: A load-balancing vServer is configured to utilize the least bandwidth load-balancing method. A service attached to this vServer is brought into the effective state during production hours. During the startup of a vServer, which load-balancing method is used by default?
Scenario: A Citrix Administrator is configuring a Citrix ADC high availability (HA) pair. The administrator needs to ensure that one Citrix ADC is UP and primary at all times to guarantee that business websites are always available. In the event that both nodes become unavailable or fail a health check, what does the administrator need to do to ensure that the Citrix ADCs still handle web traffic?
A Citrix Administrator needs to confirm that all client certificates presented to the authentication vServer are valid until the year 2023. Which expression can the administrator use to meet this requirement?
Scenario: A Citrix Administrator needs to configure persistence on a global server load balancing (GSLB) vServer to which a service is bound. Service must continue to handle requests from the client even after it is disabled manually – accepting new requests or connections only to honor persistence. After a configured period of time, no new requests or connections are directed to the service and all existing connections are closed. To achieve these requirements, which parameter can the administrator configure while disabling the service?
How can a Citrix Administrator configure a rewrite policy to change the version of HTTP from 1.1 to1.0 in every request?
Scenario: To receive data alerts for failures, a Citrix Administrator is configuring SNMP on the Citrix ADC. The administrator is confident that the manager, alarms and SNMP traps are configured correctly. The following week, there is a Citrix ADC-related outage and the administrator does NOT receive any alerts. What could be the reason for this alert failure?
Where do the monitor probes originate by default, after creating and correctly configuring a custom user monitor?

Question 51

Report
Export
Collapse

Scenario: A Citrix ADC is configured with Interface 1/1 and bound to VLAN 40. A Citrix Administrator executed the below command:

> bind vlan 10 –ifnum 1/1

What is the result of executing this command on the Citrix ADC?

A.
Interface 1/1 is bound to VLAN 20, and native VLAN is 20.
A.
Interface 1/1 is bound to VLAN 20, and native VLAN is 20.
Answers
B.
Interface 1/1 is bound to VLAN 20, and native VLAN is NOT changed.
B.
Interface 1/1 is bound to VLAN 20, and native VLAN is NOT changed.
Answers
C.
Interface 1/1 is bound to VLAN 20, and native VLAN is 40.
C.
Interface 1/1 is bound to VLAN 20, and native VLAN is 40.
Answers
D.
Interface 1/1 is bound to VLAN 20, and native VLAN is 1.
D.
Interface 1/1 is bound to VLAN 20, and native VLAN is 1.
Answers
Suggested answer: A

Explanation:

https://www.citrix.com/blogs/2014/12/29/netscaler-vlans-demystified/

https://support.citrix.com/article/CTX115575

Question 52

Report
Export
Collapse

Scenario: A Citrix Administrator needs to improve website loading speed. End users are reporting slow GIF image rendering speeds as they scroll down a website, which affects overall page load time.

Which Citrix ADC feature can the administrator enable to improve website performance?

A.
Domain sharding
A.
Domain sharding
Answers
B.
Image lazy loading
B.
Image lazy loading
Answers
C.
Image optimization
C.
Image optimization
Answers
D.
Image shrink-to attributes
D.
Image shrink-to attributes
Answers
Suggested answer: C

Explanation:

Reduces the image to the size indicated in the image tag by Citrix ADC, enabling client browsers to load images faster. https://docs.citrix.com/en-us/citrix-adc/current-release/optimization/front-endoptimization. html

Question 53

Report
Export
Collapse

A Citrix Administrator needs to confirm that all client certificates presented to the authentication vServer are valid until the year 2023.

Which expression can the administrator use to meet this requirement?

A.
CLIENT.SSL.CLIENT_CERT.VALID_NOT_AFTER.EQ(GMT2023)
A.
CLIENT.SSL.CLIENT_CERT.VALID_NOT_AFTER.EQ(GMT2023)
Answers
B.
CLIENT.SSL.CLIENT_CERT.VALID_NOT_BEFORE.EQ(GMT2023)
B.
CLIENT.SSL.CLIENT_CERT.VALID_NOT_BEFORE.EQ(GMT2023)
Answers
C.
CLIENT.SSL.ORIGIN_SERVER_CERT.VALID_NOT_AFTER.EQ(GMT2023)
C.
CLIENT.SSL.ORIGIN_SERVER_CERT.VALID_NOT_AFTER.EQ(GMT2023)
Answers
D.
CLIENT.SSL.CLIENT_CERT.DAYS_TO_EXPIRE.EQ(2023)
D.
CLIENT.SSL.CLIENT_CERT.DAYS_TO_EXPIRE.EQ(2023)
Answers
Suggested answer: A

Explanation:

https://docs.citrix.com/en-us/citrix-adc/current-release/appexpert/policies-and-expressions/advpolicy-exp-working-with-dates-times-and-numbers/exp-for-ssl-certificate-date.html

Reference: https://docs.citrix.com/en-us/citrix-adc/current-release/ssl/ssl-actions-andpolicies/config-built-in-sslactions.html

Question 54

Report
Export
Collapse

Scenario: A Citrix Administrator would like to grant access to a Junior Citrix Administrator on the Citrix ADC.

The administrator would like to grant full access to everything except the following:

Shell User configuration

Partition configuration

Which preexisting command policy would meet the needs of this scenario?

A.
Sysadmin
A.
Sysadmin
Answers
B.
Operator
B.
Operator
Answers
C.
Network
C.
Network
Answers
D.
Superuser
D.
Superuser
Answers
Suggested answer: A

Explanation:

A sysadmin is lower than a superuser is terms of access allowed on the appliance. A sysadmin user can perform all Citrix ADC operations with the following exceptions: no access to the Citrix ADC shell, cannot perform user configurations, cannot perform partition configurations, and some other configurations as stated in the sysadmin command policy https://docs.citrix.com/en-us/citrixadc/ current-release/system/authentication-and-authorization-for-system-user/user-usergroupscommand- policies.html

Question 55

Report
Export
Collapse

Scenario: A Citrix Administrator configured SNMP to send traps to an external SNMP system. When reviewing the messages, the administrator notices several entity UP and entity DOWN messages.

To what are these messages related?

A.
Load-balancing vServers
A.
Load-balancing vServers
Answers
B.
Network interface
B.
Network interface
Answers
C.
High availability nodes
C.
High availability nodes
Answers
D.
SSL profile
D.
SSL profile
Answers
Suggested answer: A

Question 56

Report
Export
Collapse

To protect an environment against Hash DoS attacks, which two configurations can a Citrix Administrator use to block all post requests that are larger than 10,000 bytes? (Choose two.)

A.
> add policy expression expr_hashdos_prevention “http.REQ.METHOD.EQ(\”POST\”)&&http.REQ.CONTENT_LENGTH.GT(10000)”> add rewrite policy drop_rewrite expr_hashdos_prevention DROP> bind rewrite global drop_rewrite 100 END –type REQ_OVERRIDE
A.
> add policy expression expr_hashdos_prevention “http.REQ.METHOD.EQ(\”POST\”)&&http.REQ.CONTENT_LENGTH.GT(10000)”> add rewrite policy drop_rewrite expr_hashdos_prevention DROP> bind rewrite global drop_rewrite 100 END –type REQ_OVERRIDE
Answers
B.
> add policy expression expr_hashdos_prevention “http.REQ.METHOD.EQ(\”POST\”)&&http.REQ.CONTENT_LENGTH.GT(10000)”> add responder policy pol_resp_hashdos_prevention expr_hashdos_prevention DROP NOOP> bind responder global pol_resp_hashdos_prevention 70 END –type REQ_OVERRIDE
B.
> add policy expression expr_hashdos_prevention “http.REQ.METHOD.EQ(\”POST\”)&&http.REQ.CONTENT_LENGTH.GT(10000)”> add responder policy pol_resp_hashdos_prevention expr_hashdos_prevention DROP NOOP> bind responder global pol_resp_hashdos_prevention 70 END –type REQ_OVERRIDE
Answers
C.
> add policy expression expr_hashdos_prevention “http.REQ.METHOD.EQ(\”POST\”) ||http.REQ.CONTENT_LENGTH.GT(10000)”> add responder policy pol_resp_hashdos_prevention expr_hashdos_prevention DROP NOOP> bind responder global pol_resp_hashdos_prevention 70 END –type REQ_OVERRIDE
C.
> add policy expression expr_hashdos_prevention “http.REQ.METHOD.EQ(\”POST\”) ||http.REQ.CONTENT_LENGTH.GT(10000)”> add responder policy pol_resp_hashdos_prevention expr_hashdos_prevention DROP NOOP> bind responder global pol_resp_hashdos_prevention 70 END –type REQ_OVERRIDE
Answers
D.
> add policy expression expr_hashdos_prevention “http.REQ.METHOD.EQ(\”POST\”) ||http.REQ.CONTENT_LENGTH.GT(10000)”> add rewrite policy drop_rewrite expr_hashdos_prevention DROP> bind rewrite global drop_rewrite 70 END –type REQ_OVERRIDE
D.
> add policy expression expr_hashdos_prevention “http.REQ.METHOD.EQ(\”POST\”) ||http.REQ.CONTENT_LENGTH.GT(10000)”> add rewrite policy drop_rewrite expr_hashdos_prevention DROP> bind rewrite global drop_rewrite 70 END –type REQ_OVERRIDE
Answers
E.
> add policy expression expr_hashdos_prevention “http.REQ.METHOD.EQ(\”POST\”) ||http.REQ.CONTENT_LENGTH.GT(10000)”> add responder policy pol_resp_hashdos_prevention expr_hashdos_prevention DROP NOOP> bind responder global pol_resp_hashdos_prevention 100 END –type REQ_OVERRIDE
E.
> add policy expression expr_hashdos_prevention “http.REQ.METHOD.EQ(\”POST\”) ||http.REQ.CONTENT_LENGTH.GT(10000)”> add responder policy pol_resp_hashdos_prevention expr_hashdos_prevention DROP NOOP> bind responder global pol_resp_hashdos_prevention 100 END –type REQ_OVERRIDE
Answers
F.
> add policy expression expr_hashdos_prevention “http.REQ.METHOD.EQ(\”POST\”) ||http.REQ.CONTENT_LENGTH.GT(10000)”> add rewrite policy drop_rewrite expr_hashdos_prevention DROP> bind rewrite global drop_rewrite 100 END –type REQ_OVERRIDE
F.
> add policy expression expr_hashdos_prevention “http.REQ.METHOD.EQ(\”POST\”) ||http.REQ.CONTENT_LENGTH.GT(10000)”> add rewrite policy drop_rewrite expr_hashdos_prevention DROP> bind rewrite global drop_rewrite 100 END –type REQ_OVERRIDE
Answers
Suggested answer: A, B

Question 57

Report
Export
Collapse

Scenario: A Citrix Administrator suspects an attack on a load-balancing vServer (IP address 192.168.100.25).

The administrator needs to restrict access to this vServer for 10 minutes.

Which Access Control List (ACL) will accomplish this?

A.
add simpleacl rule1 DENY –srcIP 192.168.100.25 –TTL 600000
A.
add simpleacl rule1 DENY –srcIP 192.168.100.25 –TTL 600000
Answers
B.
add simpleacl rule1 DENY –srcIP 192.168.100.25 –TTL 600
B.
add simpleacl rule1 DENY –srcIP 192.168.100.25 –TTL 600
Answers
C.
add ns acl rule1 DENY –destIP 192.168.100.25 –TTL 600000
C.
add ns acl rule1 DENY –destIP 192.168.100.25 –TTL 600000
Answers
D.
add ns acl rule1 DENY –destIP 192.168.100.25 –TTL 600
D.
add ns acl rule1 DENY –destIP 192.168.100.25 –TTL 600
Answers
Suggested answer: D

Explanation:

https://docs.citrix.com/en-us/citrix-adc/current-release/networking/access-control-listsacls/extended-acls-and-extended-acl6s.htmlBy binding a multiple SAN certificate, we only need to adapt the DNS entries of the websites to pointto the same IP (1 IP with 3 DNS) and we will be able to forward the requests to any backend serversince all of them are serving the same content.

Question 58

Report
Export
Collapse

Scenario: A Citrix Administrator manages an environment that has three SSL websites, all serving the same content. www.company.com www.company.net www.company.org The administrator would like to consolidate the websites into a single, load-balanced SSL vServer.

What can the administrator bind to use a single SSL vServer?

A.
A wildcard certificate to a single SSL vServer
A.
A wildcard certificate to a single SSL vServer
Answers
B.
A wildcard certificate to a content-switching vServer
B.
A wildcard certificate to a content-switching vServer
Answers
C.
The certificate of each website to a single SSL vServer
C.
The certificate of each website to a single SSL vServer
Answers
D.
A multiple SAN certificate to a single SSL vServer
D.
A multiple SAN certificate to a single SSL vServer
Answers
Suggested answer: C

Question 59

Report
Export
Collapse

Scenario: The primary content switching vServer has gone down. To troubleshoot, a Citrix Administrator has issued the following command:

> show csvserver CSV

CSV (10.1.100.100:443) – HTTPS Type: CONTENT

State: UP

Last state change was at Mon Jun 29 15:20:43 2020

Time since last state change: 1 day, 06:47:58 610

Client Idle Timeout: 180 sec

Down state flush: ENABLED

Disable Primary vServer On Down: DISABLED

Appflow logging: ENABLED

Port Rewrite: DISABLED

State Update: DISABLED

Default: Content Precedence: URL vServer IP and Port insertion: OFF Persistence: NONE redirect: http://www.site1.com/mysite1/maintenance Backup: vServer–LB–2 Listen Policy: NONE IcmpResponse: PASSIVE RHIstate: PASSIVE Traffic Domain: 0 Based on this output, where will the subsequent request be redirected?

A.
http://www.site1.com/mysite1/maintenance
A.
http://www.site1.com/mysite1/maintenance
Answers
B.
vServer–LB-2
B.
vServer–LB-2
Answers
C.
Backup content switching vServer
C.
Backup content switching vServer
Answers
D.
10.1.100.100:443
D.
10.1.100.100:443
Answers
Suggested answer: B

Explanation:

https://docs.citrix.com/en-us/citrix-adc/current-release/content-switching/protecting-againstfailure.html#configuring-a-redirection-url“If a content switching virtual server is configured with both a backup virtual server and a redirectURL, the backup virtual server takes precedence over the redirect URL. A redirect URL is used whenthe primary and backup virtual servers are down.”

Question 60

Report
Export
Collapse

A Citrix Administrator needs to use a client’s IP address as the source IP address for Citrix ADC-toserver connections.

Which Citrix ADC mode can the administrator use to meet this requirement?

A.
USNIP
A.
USNIP
Answers
B.
Layer 2
B.
Layer 2
Answers
C.
Layer 3
C.
Layer 3
Answers
D.
USIP
D.
USIP
Answers
Suggested answer: D

Explanation:

When you enable the USIP address mode of a NetScaler appliance, the appliance forwards each packet to the appropriate back end server with the client IP address.

https://support.citrix.com/article/CTX121974

Total 112 questions
Go to page: of 12
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms