Fast2test 1Y0-241問題集でリアル試験問題でテストエンジン問題集でトレーニング [Q64-Q86]

Share

Fast2test 1Y0-241問題集でリアル試験問題でテストエンジン問題集でトレーニング

Citrix 1Y0-241テスト問題集とオンライン試験エンジン

質問 # 64
To protect an environment against Hash DoS attacks, which two configurations can a Citrix Administrator use to block all post requests that are larger than 10,000 bytes? (Choose two.)

  • A. > add policy expression expr_hashdos_prevention "http.REQ.METHOD.EQ(\"POST\") ||
    http.REQ.CONTENT_LENGTH.GT(10000)"
    > add responder policy pol_resp_hashdos_prevention expr_hashdos_prevention DROP NOOP
    > bind responder global pol_resp_hashdos_prevention 100 END -type REQ_OVERRIDE
  • B. > add policy expression expr_hashdos_prevention "http.REQ.METHOD.EQ(\"POST\") ||
    http.REQ.CONTENT_LENGTH.GT(10000)"
    > add responder policy pol_resp_hashdos_prevention expr_hashdos_prevention DROP NOOP
    > bind responder global pol_resp_hashdos_prevention 70 END -type REQ_OVERRIDE
  • C. > add policy expression expr_hashdos_prevention "http.REQ.METHOD.EQ(\"POST\") ||
    http.REQ.CONTENT_LENGTH.GT(10000)"
    > add rewrite policy drop_rewrite expr_hashdos_prevention DROP
    > bind rewrite global drop_rewrite 100 END -type REQ_OVERRIDE
  • D. > add policy expression expr_hashdos_prevention "http.REQ.METHOD.EQ(\"POST\") ||
    http.REQ.CONTENT_LENGTH.GT(10000)"
    > add rewrite policy drop_rewrite expr_hashdos_prevention DROP
    > bind rewrite global drop_rewrite 70 END -type REQ_OVERRIDE
  • E. > add policy expression expr_hashdos_prevention "http.REQ.METHOD.EQ(\"POST\")&&
    http.REQ.CONTENT_LENGTH.GT(10000)"
    > add rewrite policy drop_rewrite expr_hashdos_prevention DROP
    > bind rewrite global drop_rewrite 100 END -type REQ_OVERRIDE
  • F. > add policy expression expr_hashdos_prevention "http.REQ.METHOD.EQ(\"POST\")&&
    http.REQ.CONTENT_LENGTH.GT(10000)"
    > add responder policy pol_resp_hashdos_prevention expr_hashdos_prevention DROP NOOP
    > bind responder global pol_resp_hashdos_prevention 70 END -type REQ_OVERRIDE

正解:A、F


質問 # 65
Which two steps are necessary to configure global server load balancing (GSLB) service selection using content switching (CS)? (Choose two.)

  • A. Bind the domain to the CS vServer instead of the GSLB vServer.
  • B. Bind the GSLB domain to the GSLB vServer.
  • C. Configure a CS vServer of target type GSLB.
  • D. Configure CS policies that designate a load-balancing vServer as the target vServer.

正解:C、D

解説:
Explanation/Reference: https://docs.citrix.com/en-us/citrix-adc/current-release/global-server-load-balancing/how-to/ configure-gslb-content-switch.html


質問 # 66
Which step can a Citrix Administrator take to use default compression policies?

  • A. Enable compression on the associated bound services.
  • B. Bind the default compression policies to the vServer.
  • C. Disable the Citrix ADC compression feature at a global level.
  • D. Select the compression algorithm (gzip/deflate/identity).

正解:A

解説:
Explanation
To put a compression policy into effect, you must bind it either globally, so that it applies to all traffic that flows through the Citrix ADC, or to a specific virtual server, so that the policy applies only to requests whose destination is the VIP address of that virtual server.
By default, compression is disabled on the Citrix ADC. You must enable the feature before configuring it. You can enable it globally so that it applies to all HTTP and SSL services, or you can enable it just for specific services.
https://docs.citrix.com/en-us/citrix-adc/current-release/load-balancing/load-balancing-advanced-settings/enable-c


質問 # 67
A Citrix Administrator configured an external syslog server but is NOT seeing detailed TCP information?
What could be causing this?

  • A. Log facility is NOT configured.
  • B. User-defined audit log is NOT configured.
  • C. TCP logging is NOT enabled.
  • D. Log level is NOT enabled.

正解:C

解説:
https://support.citrix.com/article/CTX226058


質問 # 68
Scenario: A load-balancing vServer is configured to utilize the least bandwidth load-balancing method. A service attached to this vServer is brought into the effective state during production hours.
During the startup of a vServer, which load-balancing method is used by default?

  • A. Custom load
  • B. Round-robin
  • C. Least bandwidth
  • D. Least connections

正解:D


質問 # 69
Which two steps are necessary to configure global server load balancing (GSLB) service selection using content switching (CS)? (Choose two.)

  • A. Bind the domain to the CS vServer instead of the GSLB vServer.
  • B. Bind the GSLB domain to the GSLB vServer.
  • C. Configure a CS vServer of target type GSLB.
  • D. Configure CS policies that designate a load-balancing vServer as the target vServer.

正解:C、D


質問 # 70
Which two options are only allowed when creating advanced policies? (Choose two.)

  • A. CLIENT
  • B. TCP
  • C. IP
  • D. SQL
  • E. DNS

正解:A、E

解説:
Explanation
https://developer-docs.citrix.com/projects/citrix-adc-advanced-policy-expression-reference/en/latest/ answer: C. CLIENT and D. DNS Short Explanation with reference:
When creating advanced policies, you can use the following expression prefixes: HTTP, SYS, CLIENT, SERVER, DNS, DATE, TIME, and URL1. TCP and IP are not valid prefixes for advanced policies2. SQL is not a supported feature for advanced policies3.
1: Summary examples of advanced policy expressions and policies - NetScaler 2: Configure advanced policy infrastructure | AppExpert - NetScaler 3: Shift your gears to Advanced policy infrastructure in Citrix ADC


質問 # 71
A Citrix Administrator needs to match the host name 'www.example.com' in all HTTP requests.
Which expression, when used, meets this requirement?

  • A. HTTP.REQ.HOSTNAME.EQ("www.example.com")
  • B. HTTP.REQ.HOSTNAME("example.com")
  • C. HTTP.RES.HOSTNAME.EQ("www.example.com")
  • D. HTTP.RES.HOSTNAME.CONTAINS("www.example.com")

正解:D


質問 # 72
set gslb vServer-GSLB-1-MIR ENABLED
What will the Citrix ADC appliance send when the above command is executed?

  • A. The Remote GSLB service as the first record in the response and adds the remaining active services as additional records
  • B. Only the best GSLB service in the response
  • C. The Local GSLB service as the first record in the response and adds the remaining active services as additional records
  • D. The best global server load balancing (GSLB) service as the first record in the response, and the remaining active services as additional records

正解:D

解説:
https://docs.citrix.com/en-us/citrix-adc/current-release/global-server-load-balancing/how-to/protect-setup-against-failure.html
"if you enable multiple IP responses (MIR), the Citrix ADC appliance sends the best GSLB service as the first record in the response and adds the remaining active services as extra records. "


質問 # 73
Scenario: A Citrix Administrator configured a responder policy as follows:
> add responder action Redirect_Act respondwith
"DIAMETER.NEW_REDIRECT(\"aaa://host.example.com\")"
> add responder policy Redirect_Pol "diameter.req.avp(264).value.eq(\"host1.example.net\")" Redirect_Act
> bind lb vServer vs1 -policyName Redirect_Pol -priority 10 -type REQUEST What will be the effect of this configuration?

  • A. Request originated from "host1.example.net" will be redirected to "host.example.com".
  • B. Response originated from "host.example.net" will be redirected to "host1.example.com".
  • C. Request originated from "host.example.net" will be redirected to "host1.example.com".
  • D. Response originated from "host1.example.net" will be redirected to "host.example.com".

正解:A

解説:
Explanation
https://docs.citrix.com/en-us/citrix-adc/current-release/appexpert/responder/diameter-support-responder.html


質問 # 74
Scenario: A Citrix Administrator needs to configure persistence on a global server load balancing (GSLB) vServer to which a service is bound. Service must continue to handle requests from the client even after it is disabled manually - accepting new requests or connections only to honor persistence. After a configured period of time, no new requests or connections are directed to the service and all existing connections are closed.
To achieve these requirements, which parameter can the administrator configure while disabling the service?

  • A. Request threshold
  • B. Wait time
  • C. Persistence time-Out
  • D. Persistence threshold

正解:B

解説:
Explanation
https://docs.citrix.com/en-us/citrix-adc/current-release/load-balancing/load-balancing-advanced-settings/graceful


質問 # 75
Scenario: After deploying a Citrix ADC in production, a Citrix Administrator notices that client requests are NOT being evenly distributed among backend resources. The administrator wants to change from the default load-balancing method to one that will help distribute the load more evenly.
Which load-balancing method would ensure that the server with the least amount of network utilization is receiving new connections?

  • A. Least response time
  • B. Least bandwidth
  • C. Least packets
  • D. Least connection

正解:D

解説:
Explanation/Reference: https://docs.citrix.com/en-us/citrix-adc/current-release/getting-started-with-citrix-adc/load- balancing.html


質問 # 76
Scenario: A Citrix Administrator is configuring a Citrix ADC high availability (HA) pair. The administrator needs to ensure that one Citrix ADC is UP and primary at all times to guarantee that business websites are always available.
In the event that both nodes become unavailable or fail a health check, what does the administrator need to do to ensure that the Citrix ADCs still handle web traffic?

  • A. Configure HA fail-safe mode on the primary Citrix ADC only.
  • B. Disable HA fail-safe mode on each Citrix ADC independently.
  • C. Configure HA fail-safe mode on each Citrix ADC independently.
  • D. Disable HA fail-safe mode on the primary Citrix ADC only.

正解:C


質問 # 77
Scenario: A Citrix Administrator configures an Access Control List (ACL) to block traffic from the IP address
10.102.29.5:
add simpleacl rule1 DENY -srcIP 10.102 29.5
A week later the administrator discovers that the ACL is no longer present on the Citrix ADC.
What could be the reason for this?

  • A. The simple ACLs remain active for only 600 seconds.
  • B. The Citrix ADC has been restarted without saving the configurations.
  • C. The simple ACLs remain active for only 60 seconds.
  • D. The administrator did NOT run the apply ACL command.

正解:B


質問 # 78
Scenario: A Citrix Administrator configured a Citrix ADC active-passive, high availability (HA) pair. The HA pair failed over and customers were unable to access hosted websites. The administrator troubleshoots and discovers that the upstream router is NOT updating its ARP table.
What can the administrator configure to resolve this issue?

  • A. Route monitor
  • B. Virtual MAC
  • C. HA monitor
  • D. Independent Network Configuration (INC) mode

正解:B

解説:
Explanation
answer: D. Virtual MAC
Short Explanation with reference:
Virtual MAC (VMAC) is a feature that allows the Citrix ADC appliance to use a common MAC address for both the primary and secondary units in a high availability (HA) pair1. This prevents the upstream router from having to update its ARP table when a failover occurs, as the MAC address of the active unit remains unchanged2. VMAC can be enabled or disabled by using the -vmac option in the CLI or by checking or unchecking the Enable VMAC check-box in the GUI1. Therefore, the correct answer is D. Virtual MAC.
1: Configuring VMACs | NetScaler 2: How to Set Up a High Availability Pair on ADC - Citrix Customer Support


質問 # 79
Scenario: The primary content switching vServer has gone down. To troubleshoot, a Citrix Administrator has issued the following command:
> show csvserver CSV
CSV (10.1.100.100:443) - HTTPS Type: CONTENT
State: UP
Last state change was at Mon Jun 29 15:20:43 2020
Time since last state change: 1 day, 06:47:58 610
Client Idle Timeout: 180 sec
Down state flush: ENABLED
Disable Primary vServer On Down: DISABLED
Appflow logging: ENABLED
Port Rewrite: DISABLED
State Update: DISABLED
Default: Content Precedence: URL
vServer IP and Port insertion: OFF
Persistence:
NONE redirect: http://www.site1.com/mysite1/maintenance
Backup: vServer-LB-2
Listen Policy: NONE
IcmpResponse: PASSIVE
RHIstate: PASSIVE
Traffic Domain: 0
Based on this output, where will the subsequent request be redirected?

  • A. 10.1.100.100:443
  • B. Backup content switching vServer
  • C. vServer-LB-2
  • D. http://www.site1.com/mysite1/maintenance

正解:D


質問 # 80
A Citrix Administrator needs to configure a Citrix ADC high availability (HA) pair with each Citrix ADC in a different subnet.
What does the administrator need to do for HA to work in different subnets?

  • A. Turn on HA monitoring on all interfaces
  • B. Configure SyncVlan
  • C. Turn on fail-safe mode.
  • D. Turn on Independent Network Configuration (INC) mode.

正解:D


質問 # 81
Scenario: A Citrix Administrator configured a rewrite action as follows:
> add rewrite action sync_date replace http.res.date.sys.time
What is the correct way to interpret this rewrite action?

  • A. It replaces the date header in the HTTP response with the Citrix ADC system time in a conventional date format.
  • B. It replaces the date header in the HTTP response with the Greenwich Mean Time (GMT) time stamp.
  • C. It is invalid, as system time CANNOT be referenced in the system policy.
  • D. It replaces the Citrix ADC system time with the date header in a conventional date format.

正解:A

解説:
Explanation
answer: A. It replaces the date header in the HTTP response with the Citrix ADC system time in a conventional date format.
Short Explanation with reference:
A rewrite action is a set of rules that defines how the Citrix ADC appliance modifies the requests and responses that it processes. A rewrite action can use different parameters, such as target, expression, and pattern, to specify what part of the message to modify and how to modify it. The target parameter specifies the part of the message that is modified, such as the header or the body. The expression parameter specifies the new value that replaces the target. The pattern parameter specifies a string or a regular expression that matches the part of the target that is replaced.
In this scenario, the administrator configured a rewrite action as follows:
add rewrite action sync_date replace http.res.date.sys.time
This rewrite action uses the replace parameter, which replaces the entire target with the expression. The target is http.res.date, which is the date header in the HTTP response. The expression is sys.time, which is a built-in function that returns the Citrix ADC system time in a conventional date format, such as "Wed, 06 Sep 2023
12:45:12 GMT". Therefore, this rewrite action replaces the date header in the HTTP response with the Citrix ADC system time in a conventional date format. This can be useful for synchronizing the time between the server and the client, or for preventing caching issues.
Therefore, the correct way to interpret this rewrite action is A. It replaces the date header in the HTTP response with the Citrix ADC system time in a conventional date format.
Configuring rewrite actions | NetScaler : How to Configure Rewrite Action - Citrix Customer Support : How to Use Built-in Functions in Expressions - Citrix Customer Support


質問 # 82
A Citrix Administrator needs to protect the HTTP backend server type without actually removing the header.
Which rewrite action type can the administrator apply to the Citrix ADC configuration to accomplish this?

  • A. REPLACE
  • B. REPLACE_HTTP_REQ
  • C. CORRUPT_HTTP_HEADER
  • D. REPLACE_ALL

正解:A

解説:
https://docs.citrix.com/en-us/citrix-adc/current-release/appexpert/rewrite/rewrite-action-policy-examples/example-mask-http-server-type.html


質問 # 83
Scenario: A Citrix Administrator configured a responder policy as follows:
> add responder action Redirect_Act respondwith
"DIAMETER.NEW_REDIRECT(\"aaa://host.example.com\")"
> add responder policy Redirect_Pol "diameter.req.avp(264).value.eq(\"host1.example.net\")" Redirect_Act
> bind lb vServer vs1 -policyName Redirect_Pol -priority 10 -type REQUEST What will be the effect of this configuration?

  • A. Request originated from "host1.example.net" will be redirected to "host.example.com".
  • B. Response originated from "host.example.net" will be redirected to "host1.example.com".
  • C. Request originated from "host.example.net" will be redirected to "host1.example.com".
  • D. Response originated from "host1.example.net" will be redirected to "host.example.com".

正解:A


質問 # 84
Scenario: A Citrix Administrator downloaded and deployed Citrix Application Delivery Management (ADM) in an environment consisting of six Citrix ADCs and 100 virtual servers. When viewing the Citrix ADM console, the administrator sees only 30 virtual servers.
Why is the administrator unable to see all 100 virtual servers?

  • A. The nsroot passwords are NOT the same across all the Citrix ADCs.
  • B. Citrix ADM is using a free license.
  • C. Additional Citrix ADM systems need to be deployed to see all virtual servers.
  • D. The Citrix ADC and Citrix ADM firmware versions are NOT the same.

正解:C


質問 # 85
Which two items must be true for a client to connect to an SSL offload vServer without any SSL errors? (Choose two.)

  • A. The server certificate is from a private certificate authority (CA).
  • B. The server certificate is bound to the load-balancing vServer.
  • C. The root certificate is installed on the client s device.
  • D. The root certificate is installed on the Citrix ADC.

正解:C、D


質問 # 86
......


Citrix 1Y0-241認定試験は、Citrix ADC 13 with Traffic Managementのインストール、設定、管理の経験を持つITプロフェッショナルに最適です。この認証は、Citrix ADC 13 with Traffic Managementの導入と管理における専門知識を検証し、業界での差別化を図ります。この認証はグローバルに認められ、ネットワークやトラフィック管理の分野でキャリアアップを目指すITプロフェッショナルにとって貴重な資産です。

 

Citrix 1Y0-241問題を提供していますCCA-AppDS問題集と完璧な解答付き:https://jp.fast2test.com/1Y0-241-premium-file.html

信頼され続ける1Y0-241試験のコツとPDF試験材料:https://drive.google.com/open?id=1DrpSSoXaZa6Jkz_jM4fEkD5UWBq9ta5a


弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

我々の働いている時間: ( GMT 0:00-15:00 )
月曜日から土曜日まで

サポート: 現在連絡 

English Deutsch 繁体中文 한국어