New Year Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: 70special

Citrix 1Y0-241 Deploy and Manage Citrix ADC with Traffic Management Exam Practice Test

Page: 1 / 11
Total 111 questions

Deploy and Manage Citrix ADC with Traffic Management Questions and Answers

Testing Engine

  • Product Type: Testing Engine
$37.5  $124.99

PDF Study Guide

  • Product Type: PDF Study Guide
$33  $109.99
Question 1

A Citrix Network Engineer informs a Citrix Administrator that a data interface used by Citrix ADC SDX is being saturated.

Which action could the administrator take to address this bandwidth concern?

Options:

A.

Add a second interface to each Citrix ADC VPX instance.

B.

Configure a failover interface set on each Citrix ADC VPX instance.

C.

Configure LACP on the SDX for the data interface.

D.

Configure LACP on the SDX for management interface.

Question 2

To protect an environment against Hash DoS attacks, which two configurations can a Citrix Administrator use to block all post requests that are larger than 10,000 bytes? (Choose two.)

Options:

A.

> add policy expression expr_hashdos_prevention “http.REQ.METHOD.EQ(\”POST\”)&&

http.REQ.CONTENT_LENGTH.GT(10000)”

> add rewrite policy drop_rewrite expr_hashdos_prevention DROP

> bind rewrite global drop_rewrite 100 END –type REQ_OVERRIDE

B.

> add policy expression expr_hashdos_prevention “http.REQ.METHOD.EQ(\”POST\”)&&

http.REQ.CONTENT_LENGTH.GT(10000)”

> add responder policy pol_resp_hashdos_prevention expr_hashdos_prevention DROP NOOP

> bind responder global pol_resp_hashdos_prevention 70 END –type REQ_OVERRIDE

C.

> add policy expression expr_hashdos_prevention “http.REQ.METHOD.EQ(\”POST\”) ||

http.REQ.CONTENT_LENGTH.GT(10000)”

> add responder policy pol_resp_hashdos_prevention expr_hashdos_prevention DROP NOOP

> bind responder global pol_resp_hashdos_prevention 70 END –type REQ_OVERRIDE

D.

> add policy expression expr_hashdos_prevention “http.REQ.METHOD.EQ(\”POST\”) ||

http.REQ.CONTENT_LENGTH.GT(10000)”

> add rewrite policy drop_rewrite expr_hashdos_prevention DROP

> bind rewrite global drop_rewrite 70 END –type REQ_OVERRIDE

E.

> add policy expression expr_hashdos_prevention “http.REQ.METHOD.EQ(\”POST\”) ||

http.REQ.CONTENT_LENGTH.GT(10000)”

> add responder policy pol_resp_hashdos_prevention expr_hashdos_prevention DROP NOOP

> bind responder global pol_resp_hashdos_prevention 100 END –type REQ_OVERRIDE

F.

> add policy expression expr_hashdos_prevention “http.REQ.METHOD.EQ(\”POST\”) ||

http.REQ.CONTENT_LENGTH.GT(10000)”

> add rewrite policy drop_rewrite expr_hashdos_prevention DROP

> bind rewrite global drop_rewrite 100 END –type REQ_OVERRIDE

Question 3

What is the effect of the “set cs vServer-CS-1 –redirectURL command?

Options:

A.

If the vServer-CS-1 encounters a high connection rate, then users will be redirected to http://www.newdomain.com/mysite/.

B.

If the status of vServer-CS-1 is DOWN, then users will be redirected to http://www.newdomain .com/mysite/.

C.

All the requests to vServer-CS-1 will be redirected to http://www.newdomain.com/mysite/.

D.

All the requests without URL path/mysite/ will be redirected to http://www.newdomain.com/mysite/.

Question 4

Which two policies can a Citrix Administrator configure using only the advanced policy expression? (Choose two.)

Options:

A.

DNS

B.

Integrated caching

C.

SSL

D.

System

Question 5

Scenario: A Citrix Administrator is configuring load balancing on a Citrix ADC appliance for company web servers. The administrator needs to create a custom monitor that will look for a specific keyword response from the website, which will be used to keep services in an UP state.

Which monitor can the administrator create to meet this requirement?

Options:

A.

An HTTP-ECV monitor with the keyword in the Special Parameters - Receive String field

B.

An HTTP-ECV monitor with the keyword in the Basic Parameters - Receive String field

C.

An HTTP-ECV monitor with the keyword in the Special Parameters - Receive String field, and the Reverse option enabled

D.

An HTTP-ECV monitor with the keyword in the Basic Parameters - Send String field

Question 6

A Citrix Administrator needs to block all DNS requests from subnet 10.107.149.0/24.

Which expressions can the administrator use to match the required traffic?

Options:

A.

CLIENT.IP.SRC(10.107.149.0) && (client.UDP.DSTPORT.EQ(53) || client TCP DSTPORT.EQ(53))

B.

CLIENT.IP.SRC IN_SUBNET(10 107.149.0/24) && client.UDP.DSTPORT.EQ(53) || client.TCP.DSTPORT.EQ(53)

C.

CLIENT.IP.SRC(10.107.149.0) && client UDP.DSTPORT.EQ(53) || client.TCP.DSTPORT.EQ(53)

D.

CLIENT.IP.SRC IN_SUBNET(10.107.149.0/24) && (client.UDP.DSTPORT.EQ(53) || client.TCP.DSTPORT.EQ(53))

Question 7

Scenario: A Citrix Administrator configured Citrix ADC load balancing to send requests to one of three identical backend servers. Each server handles multiple protocols, and load balancing is set up in round-robin mode.

The current load-balancing setup on the Citrix ADC is:

  • One load-balancing vServer with one externally accessible VIP
  • One service created for each protocol type
  • One server entity for each backend resource

During business hours, the administrator wants to make changes to one backend server without affecting the other servers.

What is the most efficient way for the administrator to ensure that all traffic is routed away from the server without impeding responses from other resources?

Options:

A.

Disable the backend service entity targeted for change.

B.

Disable the backend server entity targeted for change.

C.

Disable the load-balancing vServer.

D.

Unbind the correct server entity from the load-balancing vServer.

Question 8

Scenario: A Citrix Administrator manages an environment that has a Citrix ADC high availability (HA) pair running on two MPX appliances. The administrator notices that the state of the secondary Citrix ADC is ‘Unknown’.

What is causing the secondary state to be ‘Unknown’?

Options:

A.

The synchronization on the secondary appliance is disabled.

B.

TCP port 22 is disabled between the primary and secondary ADCs.

C.

The administrator made both Citrix ADCs primary.

D.

The remote procedure call (RPC) nodes are incorrectly configured.

Question 9

Scenario: The policies below are bound to a content switching vServer.

bind cs vServer vserver1 –policyName CSPOL_7 –priority 100 –gotoPriorityExpression NEXT

bind cs vServer vserver1 –policyName CSPOL_5 –priority 90

bind cs vServer vserver1 –policyName CSPOL_9 –priority 110

bind cs vServer vserver1 –policyName CSPOL_4 –priority 120

bind cs vServer vserver1 –policyName CSPOL_8 –priority 210

Policy CSPOL_7 has been invoked.

Which policy will be invoked next?

Options:

A.

CSPOL_4

B.

CSPOL_5

C.

CSPOL_9

D.

CSPOL_8

Question 10

Which profile can a Citrix Administrator create to configure a default profile that disables TLSv1?

Options:

A.

DTLS

B.

TCP

C.

SSL

D.

HTTP

Question 11

A Citrix Administrator receives user complaints about latency while accessing an application that is load balanced on the Citrix ADC.

Which tool can the administrator use to gather information regarding response time, client network latency, and server-side processing time?

Options:

A.

Citrix Application Delivery Management (ADM)

B.

HDX Insight

C.

WAN Insight

D.

Security Insight

Question 12

set gslb parameter - GSLBSvcStateDelayTime 10

When metrics exchange protocol (MEP) is enabled what is the effect of the above command on the global server load balancing (GSLB) environment?

Options:

A.

The GSLB services will be marked as DOWN if the MEP connection has been DOWN for 10 seconds.

B.

The MEP will be marked as DOWN if the GSLB service has been DOWN for 10 seconds.

C.

The MEP will be marked as DOWN if the GSLB vServer has been DOWN for 10 seconds.

D.

The GSLB services will be marked as DOWN if the LB server has been DOWN for 10 seconds.

Question 13

Scenario: A Citrix Administrator needs to integrate LDAP for Citrix ADC system administration using current active directory (AD) groups. The administrator created the group on the Citrix ADC, exactly matching the group name in LDAP.

What can the administrator bind to specify the permission level and complete the LDAP configuration?

Options:

A.

A command policy to the group

B.

A nested group to the new group

C.

Users to the group on the Citrix ADC

D.

An authentication, authorization, and auditing (AAA) action to the group

Question 14

Scenario: A Citrix Administrator configured a Citrix ADC active-passive, high availability (HA) pair. The HA pair failed over and customers were unable to access hosted websites. The administrator troubleshoots and discovers that the upstream router is NOT updating its ARP table.

What can the administrator configure to resolve this issue?

Options:

A.

Independent Network Configuration (INC) mode

B.

Route monitor

C.

HA monitor

D.

Virtual MAC

Question 15

How can a Citrix Administrator configure a rewrite policy to change the version of HTTP from 1.1 to 1.0 in every request?

Options:

A.

>add rewrite action RW_ACT replace http.res.version “\”HTTPS/1.0\””

> add rewrite policy RW_POL true RW_ACT

B.

>add rewrite action RW_ACT replace http.req.version “\”HTTPS/1.1\””

> add rewrite policy RW_POL true RW_ACT

C.

>add rewrite action RW_ACT replace http.res.version “\”HTTPS/1.1\””

> add rewrite policy RW_POL true RW_ACT

D.

>add rewrite action RW_ACT replace http.req.version “\”HTTPS/1.0\””

> add rewrite policy RW_POL true RW_ACT

Question 16

Which step can a Citrix Administrator take to use default compression policies?

Options:

A.

Select the compression algorithm (gzip/deflate/identity).

B.

Disable the Citrix ADC compression feature at a global level.

C.

Enable compression on the associated bound services.

D.

Bind the default compression policies to the vServer.

Question 17

Scenario: A Citrix Administrator needs to configure persistence on a global server load balancing (GSLB) vServer to which a service is bound. Service must continue to handle requests from the client even after it is disabled manually – accepting new requests or connections only to honor persistence. After a configured period of time, no new requests or connections are directed to the service and all existing connections are closed.

To achieve these requirements, which parameter can the administrator configure while disabling the service?

Options:

A.

Persistence threshold

B.

Persistence time-Out

C.

Wait time

D.

Request threshold

Question 18

Scenario: A Citrix Administrator would like to grant access to a Junior Citrix Administrator on the Citrix ADC.

The administrator would like to grant full access to everything except the following:

  • Shell
  • User configuration
  • Partition configuration

Which preexisting command policy would meet the needs of this scenario?

Options:

A.

Sysadmin

B.

Operator

C.

Network

D.

Superuser

Question 19

Which Citrix ADC platform offers an out-of-the-box multi-tenant solution?

Options:

A.

VPX

B.

SDX

C.

MPX

D.

CPX

Question 20

Scenario: Client connections to certain vServers are abnormally high. A Citrix Administrator needs to be alerted whenever the connections pass a certain threshold.

How can the administrator use Citrix Application Delivery Management (ADM) to accomplish this?

Options:

A.

Configure network reporting on the Citrix ADM by setting the threshold and email address.

B.

Configure SMTP reporting on the Citrix ADM by adding the threshold and email address.

C.

Configure TCP Insight on the Citrix ADM.

D.

Configure specific alerts for vServers using Citrix ADM.

Question 21

A Citrix Administrator wants to configure independent and isolated access on a single appliance to allow three different departments to manage and isolate their own applications.

What can the administrator configure to isolate department-level administration?

Options:

A.

Admin partitions that use dedicated VLANs

B.

A SNIP in each partition, and bind a VLAN for the department

C.

Policy-based routes for each department in the nsroot partition

D.

Dedicated routes in the admin partitions for each department

Question 22

Scenario: A Citrix ADC is configured with Interface 1/1 and bound to VLAN 40. A Citrix Administrator executed the below command:

> bind vlan 10 –ifnum 1/1

What is the result of executing this command on the Citrix ADC?

Options:

A.

Interface 1/1 is bound to VLAN 20, and native VLAN is 20.

B.

Interface 1/1 is bound to VLAN 20, and native VLAN is NOT changed.

C.

Interface 1/1 is bound to VLAN 20, and native VLAN is 40.

D.

Interface 1/1 is bound to VLAN 20, and native VLAN is 1.

Question 23

Scenario: Users are trying to access but are receiving the error below:

HTTP 503 Service Unavailable

What can a Citrix Administrator change in the Citrix ADC configuration to fix this?

Options:

A.

Enable the content switching feature.

B.

Disable the spillover redirect URL.

C.

Bind a certificate.

D.

Bind the default load-balancing vServer.

Question 24

A Citrix Administrator is creating a new SSL vServer and notices the ns_default_ssl_profile frontend SSL profile is automatically bound to the SSL vServer.

Which two actions can the administrator perform to change or remove the ns_default_ssl_profile_frontend SSL

profile once it is enabled? (Choose two.)

Options:

A.

Globally unbind the ns_default_ssl_profile_frontend SSL.

B.

Unbind the default SSL profile and bind the newly created SSL profile.

C.

Create a separate SSL profile.

D.

Unbind the ns_default_ssl_profile_frontend SSL profile from the SSL vServer without binding a replacement SSL profile.

E.

Globally disable the ns_default_ssl_profile_frontend SSL profile.

Question 25

Scenario: A Citrix Administrator executed the following commands on the Citrix ADC:

> add policy dataset Admin_group ipv4

> bind policy dataset Admin_group 192.168.149.10 –index 11

> bind policy dataset Admin_group 192.168.149.39 –index 12

> bind policy Admin_group 192.168.149.49 –index 13

> add responder policy POL_1 “!(CLIENT.IP.SRC.TYPECAST_TEXT_T.CONTAINS_ANY(\”Admin_group\”))”

RESET

> bind lb vServer lb_vsrv_www –policyName POL_1 –priority 100 –gotoPriorityExpression END –type

REQUEST

What will be the effect of these commands?

Options:

A.

Only users with a source IP address of 192.168.149.10, 192.168.149.39, or 192.168.149.49 will be allowed

to connect to vServer lb_vsrv_www.

B.

Only users with a source IP address of 192.168.149.10, 192.168.149.39, or 192.168.149.49 will be blocked

when attempting to connect to vServer lb_vsrv_www.

C.

Only users with a source IP address of 192.168.149.10 or 192.168.149.39 will be allowed to connect to

vServer lb_vsrv_www.

D.

All traffic from users with a source IP address of 192.168.149.10, 192.168.149.39, or 192.168.149.49 will be

blocked through the Citrix ADC.

Question 26

Scenario: A company acquires three smaller companies which adds more than 1,500 employees to the organization. The current Citrix ADC appliance does NOT support adding that many users.

A Citrix Administrator needs to use a multi-tenant solution, giving each newly acquired company its own Citrix ADC for VPN access load balancing, and a minimum of 20 Gbps of throughput.

How can the administrator meet the needs of these newly acquired companies?

Options:

A.

Purchase a Citrix ADC CPX for each

B.

Install XenServer and configure a Citrix ADC VPX 3000 for each

C.

Purchase a Citrix ADC MPX appliance for each

D.

Purchase a Citrix ADC SDX appliance, and configure a Citrix ADC instance for each

Question 27

Users are experiencing resets from the intranet server website, which is load balanced through the Citrix ADC.

Which Citrix ADC tool can a Citrix Administrator use to troubleshoot the reset issue?

Options:

A.

View the newnslog from the command line interface (CLI) to look for packet resets from the Citrix ADC.

B.

Use the nslog to look for packet resets on the Citrix ADC.

C.

Take a packet trace with nstrace and analyze with Wireshark.

D.

Look in the event viewer for packet resets from the Citrix ADC

Question 28

Scenario: A Citrix Administrator configured a load-balancing vServer. The URL for this vServer is vpn.citrix.com. The backend server has the host name configured as server1.citrix.com.

The administrator needs to implement the policy to change the host name from vpn.citrix.com to server1.citrix.com, and vice versa.

Which does the administrator need to configure to meet this requirement?

Options:

A.

set transform action “host change” –priority 10 –reqUrlFrom “https://vpn.citrix.com/*” –reqUrlInto “https://

server1.citrix.com/*” –resUrlFrom “https://server1.citrix.com/*” –resUrlInto “https://vpn.citrix.com/*”

B.

set transform action “host change” –priority 10 –reqUrlFrom “https://server1.citrix.com/*” –reqUrlInto “https://

vpn.citrix.com/*” –resUrlFrom “https://server1.citrix.com/*” –resUrlInto “https://vpn.citrix.com/*”

C.

set transform action “host change” –priority 10 –reqUrlFrom “https://server1.citrix.com/*” –reqUrlInto “https://

vpn.citrix.com/*” –resUrlFrom “https://vpn.citrix.com/*” –resUrlInto “https://server1.citrix.com/*”

D.

set transform action “host change” –priority 10 –reqUrlFrom “https://vpn.citrix.com/*” –reqUrlInto “https://

server1.citrix.com/*” –resUrlFrom “https://vpn.citrix.com/*” –resUrlInto “https://server1.citrix.com/*”

Question 29

Scenario: A Citrix Administrator configures an Access Control List (ACL) to block traffic from the IP address 10.102.29.5:

add simpleacl rule1 DENY -srcIP 10.102 29.5

A week later the administrator discovers that the ACL is no longer present on the Citrix ADC.

What could be the reason for this?

Options:

A.

The administrator did NOT run the apply ACL command.

B.

The simple ACLs remain active for only 600 seconds.

C.

The simple ACLs remain active for only 60 seconds.

D.

The Citrix ADC has been restarted without saving the configurations.

Question 30

Which setting is responsible for reducing the server load, improving response time, and increasing the number of SSL transactions per second on an SSL vServer?

Options:

A.

SSLv3

B.

Session timeout

C.

SSLv2 redirect

D.

Session reuse

Question 31

What can a Citrix Administrator use to restrict access to the Citrix ADC management IP (NSIP) address?

Options:

A.

Command policy

B.

Access Control List (ACL)

C.

Authentication policy

D.

Authorization policy

Question 32

Scenario: A Citrix Administrator needs to improve website loading speed. End users are reporting slow GIF

image rendering speeds as they scroll down a website, which affects overall page load time.

Which Citrix ADC feature can the administrator enable to improve website performance?

Options:

A.

Domain sharding

B.

Image lazy loading

C.

Image optimization

D.

Image shrink-to attributes

Question 33

Scenario: A Citrix Administrator downloaded and deployed Citrix Application Delivery Management (ADM) in an environment consisting of six Citrix ADCs and 100 virtual servers. When viewing the Citrix ADM console, the administrator sees only 30 virtual servers.

Why is the administrator unable to see all 100 virtual servers?

Options:

A.

The nsroot passwords are NOT the same across all the Citrix ADCs.

B.

Citrix ADM is using a free license.

C.

Additional Citrix ADM systems need to be deployed to see all virtual servers.

D.

The Citrix ADC and Citrix ADM firmware versions are NOT the same.

Page: 1 / 11
Total 111 questions