
[2023年06月] ベストCCA-AppDS学習ガイドは1Y0-241試験問題集
1Y0-241認定ガイド問題と解答トレーニング
質問 # 42
Which mode on a Citrix ADC can a Citrix Administrator utilize to avoid asymmetrical packet flows and multiple route/ARP lookups?
- A. MAC-based forwarding (MBF)
- B. Layer 2
- C. Layer 3
- D. Use Subnet IP (USNIP)
正解:C
質問 # 43
Scenario: A Citrix Administrator needs to improve website loading speed. End users are reporting slow GIF image rendering speeds as they scroll down a website, which affects overall page load time.
Which Citrix ADC feature can the administrator enable to improve website performance?
- A. Image optimization
- B. Image lazy loading
- C. Image shrink-to attributes
- D. Domain sharding
正解:A
解説:
Reduces the image to the size indicated in the image tag by Citrix ADC, enabling client browsers to load images faster. https://docs.citrix.com/en-us/citrix-adc/current-release/optimization/front-end-optimization.html
質問 # 44
Which Citrix ADC monitor can a Citrix Administrator use to check the authentication service of the Active Directory (AD) domain controller?
- A. A ping monitor with the IP address of the AD domain controller in the special parameters
- B. A MYSQL-ECV monitor with the Base DN, Bind DN, Filter, Attribute, and Password parameters configured in the basic parameters
- C. An LDAP monitor with the LDAP Script Name, Configured Base DN, Bind DN, Filter, Attribute and Password parameters in the basic parameters.
- D. A TCP monitor with the LDAP Base DN configured in the basic parameters.
正解:C
解説:
https://docs.citrix.com/en-us/citrix-adc/current-release/load-balancing/load-balancing-builtin-monitors/monitor-ldap-services.html
質問 # 45
A Citrix Administrator configured global server load balancing (GSLB) for www.citrix.com, with two ADNS services named Citrix ADC 1 and Citrix ADC 2 in the setup.
Which record does the administrator need to add on the parent DNS server to delegate requests from www.citrix.com to Citrix ADC 1 and Citrix ADC 2?
- A. Address (A) record
- B. Name Server (NS) record
- C. Pointer Record (PTR)
- D. Canonical Name (CNAME)
正解:B
解説:
Explanation/Reference: https://docs.citrix.com/en-us/citrix-adc/current-release/dns/configure-citrix-adc-adns-server.html
質問 # 46
Scenario: A Citrix Administrator suspects an attack on a load-balancing vServer (IP address 192.168.100.25).
The administrator needs to restrict access to this vServer for 10 minutes.
Which Access Control List (ACL) will accomplish this?
- A. add simpleacl rule1 DENY -srcIP 192.168.100.25 -TTL 600
- B. add ns acl rule1 DENY -destIP 192.168.100.25 -TTL 600
- C. add simpleacl rule1 DENY -srcIP 192.168.100.25 -TTL 600000
- D. add ns acl rule1 DENY -destIP 192.168.100.25 -TTL 600000
正解:B
質問 # 47
Scenario: A Citrix ADC is configured with Interface 1/1 and bound to VLAN 40. A Citrix Administrator executed the below command:
> bind vlan 10 -ifnum 1/1
What is the result of executing this command on the Citrix ADC?
- A. Interface 1/1 is bound to VLAN 20, and native VLAN is 40.
- B. Interface 1/1 is bound to VLAN 20, and native VLAN is 20.
- C. Interface 1/1 is bound to VLAN 20, and native VLAN is 1.
- D. Interface 1/1 is bound to VLAN 20, and native VLAN is NOT changed.
正解:B
解説:
https://www.citrix.com/blogs/2014/12/29/netscaler-vlans-demystified/
https://support.citrix.com/article/CTX115575
質問 # 48
Scenario: A Citrix Administrator executed the command below in an active-active, global server load balancing (GSLB) setup.
set gslb parameter -ldnsprobeOrder DNS PING TCP
The order to calculate the _____ for dynamic proximity will be the DNS UDP query followed by the ping and then TCP. (Choose the correct option to complete the sentence.)
- A. Empty Domain Service (EDS)
- B. Time to live (TTL)
- C. Round-trip time (RTT)
- D. Multiple IP responses (MIR)
正解:C
解説:
https://docs.citrix.com/en-us/citrix-adc/current-release/global-server-load-balancing/methods/dynamic-round-trip-time-method.html
質問 # 49
Which log records detailed information such as statistics, metrics, and debug information in a proprietary binary format on the Citrix ADC?
- A. Syslog
- B. Nsconfig
- C. Nstrace
- D. Nslog
正解:C
質問 # 50
Scenario: A Citrix Administrator manages a Citrix SDX appliance with several instances configured. The administrator needs to enable Layer 2 mode on two instances.
When using a shared network interface, what must the administrator do to ensure that traffic flows correctly?
- A. Ensure Layer 3 and Layer 2 modes are enabled.
- B. Disable Layer 2 mode on a Citrix ADC instance.
- C. Enable tagging on all interfaces.
- D. Enable MAC-based forwarding (MBF) mode.
正解:D
質問 # 51
What
is the effect of the "set cs vServer-CS-1 -redirectURL http://www.newdomain.com/mysite/" command?
- A. All the requests without URL path/mysite/ will be redirected to http://www.newdomain.com/mysite/.
- B. If
the status of vServer-CS-1 is DOWN, then users will be redirected to http://www.newdomain
.com/mysite/. - C. All
the requests to vServer-CS-1 will be redirected to http://www.newdomain.com/mysite/. - D. If
the vServer-CS-1 encounters a high connection rate, then users will be redirected to
http://www.newdomain.com/mysite/.
正解:B
質問 # 52
Scenario: A Citrix Administrator is configuring a Citrix ADC high availability (HA) pair. The administrator needs to ensure that one Citrix ADC is UP and primary at all times to guarantee that business websites are always available.
In the event that both nodes become unavailable or fail a health check, what does the administrator need to do to ensure that the Citrix ADCs still handle web traffic?
- A. Configure HA fail-safe mode on the primary Citrix ADC only.
- B. Configure HA fail-safe mode on each Citrix ADC independently.
- C. Disable HA fail-safe mode on each Citrix ADC independently.
- D. Disable HA fail-safe mode on the primary Citrix ADC only.
正解:B
質問 # 53
In a global server load balancing (GSLB) active-active environment, the connection proxy is used as the site persistence method.
What is used to source the traffic when the connection is proxied?
- A. Subnet IP (SNIP)
- B. Client source IP
- C. LDNS IP Address
- D. Virtual IP (VIP)
正解:B
質問 # 54
Which mode does a Citrix Administrator need to configure to allow a Citrix ADC to control the packetforwarding function based on the route table lookups?
- A. MBF
- B. USIP
- C. Layer 2
- D. Layer 3
正解:D
解説:
Layer 3 mode controls the Layer 3 forwarding function. You can use this mode to configure a Citrix ADC appliance to look at its routing table and forward packets that are not destined for it. https://docs.citrix.com/en-us/citrix-adc/current-release/getting-started-with-citrix-adc/configure-system-settings/configure-modes-packet-forwarding.html
質問 # 55
A Citrix Administrator needs to confirm that all client certificates presented to the authentication vServer are valid until the year 2023.
Which expression can the administrator use to meet this requirement?
- A. CLIENT.SSL.ORIGIN_SERVER_CERT.VALID_NOT_AFTER.EQ(GMT2023)
- B. CLIENT.SSL.CLIENT_CERT.VALID_NOT_AFTER.EQ(GMT2023)
- C. CLIENT.SSL.CLIENT_CERT.DAYS_TO_EXPIRE.EQ(2023)
- D. CLIENT.SSL.CLIENT_CERT.VALID_NOT_BEFORE.EQ(GMT2023)
正解:B
解説:
Explanation/Reference: https://docs.citrix.com/en-us/citrix-adc/current-release/ssl/ssl-actions-and-policies/config-built-in- ssl-actions.html
質問 # 56
To protect an environment against Hash DoS attacks, which two configurations can a Citrix Administrator use to block all post requests that are larger than 10,000 bytes? (Choose two.)
- A. > add policy expression expr_hashdos_prevention "http.REQ.METHOD.EQ(\"POST\") ||
http.REQ.CONTENT_LENGTH.GT(10000)"
> add responder policy pol_resp_hashdos_prevention expr_hashdos_prevention DROP NOOP
> bind responder global pol_resp_hashdos_prevention 70 END -type REQ_OVERRIDE - B. > add policy expression expr_hashdos_prevention "http.REQ.METHOD.EQ(\"POST\") ||
http.REQ.CONTENT_LENGTH.GT(10000)"
> add responder policy pol_resp_hashdos_prevention expr_hashdos_prevention DROP NOOP
> bind responder global pol_resp_hashdos_prevention 100 END -type REQ_OVERRIDE - C. > add policy expression expr_hashdos_prevention "http.REQ.METHOD.EQ(\"POST\")&&
http.REQ.CONTENT_LENGTH.GT(10000)"
> add responder policy pol_resp_hashdos_prevention expr_hashdos_prevention DROP NOOP
> bind responder global pol_resp_hashdos_prevention 70 END -type REQ_OVERRIDE - D. > add policy expression expr_hashdos_prevention "http.REQ.METHOD.EQ(\"POST\")&&
http.REQ.CONTENT_LENGTH.GT(10000)"
> add rewrite policy drop_rewrite expr_hashdos_prevention DROP
> bind rewrite global drop_rewrite 100 END -type REQ_OVERRIDE - E. > add policy expression expr_hashdos_prevention "http.REQ.METHOD.EQ(\"POST\") ||
http.REQ.CONTENT_LENGTH.GT(10000)"
> add rewrite policy drop_rewrite expr_hashdos_prevention DROP
> bind rewrite global drop_rewrite 100 END -type REQ_OVERRIDE - F. > add policy expression expr_hashdos_prevention "http.REQ.METHOD.EQ(\"POST\") ||
http.REQ.CONTENT_LENGTH.GT(10000)"
> add rewrite policy drop_rewrite expr_hashdos_prevention DROP
> bind rewrite global drop_rewrite 70 END -type REQ_OVERRIDE
正解:B、C
質問 # 57
Scenario: A Citrix Administrator made changes to a Citrix ADC, deleting parts of the configuration and saving some new ones. The changes caused an outage that needs to be resolved as quickly as possible. There is no Citrix ADC backup.
What does the administrator need to do to recover the configuration quickly?
- A. Run saved versus running configuration.
- B. Restore from the revision history.
- C. Restart the Citrix ADC.
- D. Run highly availability (HA) file synchronization.
正解:B
質問 # 58
Which setting is responsible for reducing the server load, improving response time, and increasing the number of SSL transactions per second on an SSL vServer?
- A. SSLv3
- B. Session reuse
- C. Session timeout
- D. SSLv2 redirect
正解:B
質問 # 59
Scenario: A Citrix Administrator configured a global server load balancing (GSLB) setup for internal and external users using the same host name. For internal users, cvad.citrite.net should go to the Citrix StoreFront site; for external users, it should connect to the Citrix ADC Gateway VPN site.
Which feature should the administrator configure to accomplish this?
- A. DNS Record
- B. DNS View
- C. DNS Proxy
- D. DNS Preferred Location
正解:B
質問 # 60
Scenario: A Citrix Administrator gives permissions to team members to access their own admin partition. This will allow them to add resources for different departments and manage them without making changes to the default Citrix ADC partition and configuration.
One team member typing to use the command line interface (CLI) to troubleshoot an authentication issue could NOT use aaad.debug. However, the team member has full permissions on the admin partition.
What can be the cause of this issue?
- A. The team member is NOT using the CLI correctly.
- B. The team member needs to troubleshoot the issue from the GUI.
- C. The team member does NOT have shell access by design.
- D. The team member does NOT have permission to use the CLI.
正解:A
質問 # 61
......
Citrix 1Y0-241試験は、Citrix ADCの経験がある個人が、この分野での知識とスキルをさらに高めたいと考えている場合に向けて設計されています。この試験では、Citrix ADC展開の設定と管理能力、および負荷分散、SSLオフロード、トラフィック管理などの重要なコンセプトの理解力がテストされます。
ベストCitrix 1Y0-241学習ガイドと問題集は2023年に更新されました:https://jp.fast2test.com/1Y0-241-premium-file.html
1Y0-241認定お試しPDF最新1Y0-241問題集:https://drive.google.com/open?id=1DrpSSoXaZa6Jkz_jM4fEkD5UWBq9ta5a