New Year Special Limited Time Flat 70% Discount offer - Ends in 0d 00h 00m 00s - Coupon code: 70spcl

Citrix 1Y0-241 Deploy and Manage Citrix ADC with Traffic Management Exam Practice Test

Page: 1 / 11
Total 111 questions

Deploy and Manage Citrix ADC with Traffic Management Questions and Answers

Question 1

Scenario: A Citrix Administrator configured an authentication, authorization, and auditing (AAA) policy to allow

users access through the Citrix ADC. The administrator bound the policy to a specific vServer.

Which policy expression will allow all users access through the vServer?

Options:

A.

true

B.

false

C.

ns_true

D.

ns_false

Question 2

Scenario: A Citrix Administrator installed the compression feature on the web servers. To offload the compression on the Citrix ADC, the administrator configured the Citrix ADC appliance to remove the ‘Accept Encoding’ header from all HTTP client requests. However, the administrator observes that data is NOT being compressed by the Citrix ADC, even though the ‘Accept Encoding’ header is being removed from all requests.

What could be the cause of this issue?

Options:

A.

The rewrite policy is bound at an incorrect bind point

B.

The servers are automatically compressing all responses

C.

The compression policy needs to be reconfigured

D.

Servercmp is disabled on the Citrix ADC

Question 3

Scenario: The primary content switching vServer has gone down. To troubleshoot, a Citrix Administrator has issued the following command:

> show csvserver CSV

CSV (10.1.100.100:443) – HTTPS Type: CONTENT

State: UP

Last state change was at Mon Jun 29 15:20:43 2020

Time since last state change: 1 day, 06:47:58 610

Client Idle Timeout: 180 sec

Down state flush: ENABLED

Disable Primary vServer On Down: DISABLED

Appflow logging: ENABLED

Port Rewrite: DISABLED

State Update: DISABLED

Default: Content Precedence: URL

vServer IP and Port insertion: OFF

Persistence: NONE redirect: http://www.site1.com/mysite1/maintenance

Backup: vServer–LB–2

Listen Policy: NONE

IcmpResponse: PASSIVE

RHIstate: PASSIVE

Traffic Domain: 0

Based on this output, where will the subsequent request be redirected?

Options:

A.

http://www.site1.com/mysite1/maintenance

B.

vServer–LB-2

C.

Backup content switching vServer

D.

10.1.100.100:443

Question 4

Scenario: A Citrix Administrator configured a global server load balancing (GSLB) setup for internal and external users using the same host name. For internal users, cvad.citrite.net should go to the Citrix StoreFront site; for external users, it should connect to the Citrix ADC Gateway VPN site.

Which feature should the administrator configure to accomplish this?

Options:

A.

DNS Preferred Location

B.

DNS Record

C.

DNS View

D.

DNS Proxy

Question 5

Scenario: A Citrix Administrator executed the command below in an active-active, global server load balancing (GSLB) setup.

set gslb parameter –ldnsprobeOrder DNS PING TCP

The order to calculate the _____ for dynamic proximity will be the DNS UDP query followed by the ping and then TCP. (Choose the correct option to complete the sentence.)

Options:

A.

Time to live (TTL)

B.

Empty Domain Service (EDS)

C.

Multiple IP responses (MIR)

D.

Round-trip time (RTT)

Question 6

Scenario: A Citrix Administrator is configuring a Citrix ADC high availability (HA) pair. The administrator needs to ensure that one Citrix ADC is UP and primary at all times to guarantee that business websites are always available.

In the event that both nodes become unavailable or fail a health check, what does the administrator need to do to ensure that the Citrix ADCs still handle web traffic?

Options:

A.

Configure HA fail-safe mode on the primary Citrix ADC only.

B.

Disable HA fail-safe mode on each Citrix ADC independently.

C.

Configure HA fail-safe mode on each Citrix ADC independently.

D.

Disable HA fail-safe mode on the primary Citrix ADC only.

Question 7

Which Citrix ADC Access Control List (ACL) command can a Citrix Administrator use to bridge traffic originating from the IP address 192.168.10.200?

Options:

A.

add ns simpleacl6

B.

add ns simpleacl

C.

add ns acl

D.

add ns acl6

Question 8

Scenario: A Citrix Administrator gives permissions to team members to access their own admin partition. This will allow them to add resources for different departments and manage them without making changes to the default Citrix ADC partition and configuration.

One team member typing to use the command line interface (CLI) to troubleshoot an authentication issue could NOT use aaad.debug. However, the team member has full permissions on the admin partition.

What can be the cause of this issue?

Options:

A.

The team member is NOT using the CLI correctly.

B.

The team member needs to troubleshoot the issue from the GUI.

C.

The team member does NOT have permission to use the CLI.

D.

The team member does NOT have shell access by design.

Question 9

Scenario: A Citrix Administrator configured Citrix ADC load balancing to send requests to one of three identical backend servers. Each server handles multiple protocols, and load balancing is set up in round-robin mode.

The current load-balancing setup on the Citrix ADC is:

  • One load-balancing vServer with one externally accessible VIP
  • One service created for each protocol type
  • One server entity for each backend resource

During business hours, the administrator wants to make changes to one backend server without affecting the other servers.

What is the most efficient way for the administrator to ensure that all traffic is routed away from the server without impeding responses from other resources?

Options:

A.

Disable the backend service entity targeted for change.

B.

Disable the backend server entity targeted for change.

C.

Disable the load-balancing vServer.

D.

Unbind the correct server entity from the load-balancing vServer.

Question 10

Which two items must be true for a client to connect to an SSL offload vServer without any SSL errors? (Choose two.)

Options:

A.

The server certificate is from a private certificate authority (CA).

B.

The server certificate is bound to the load-balancing vServer.

C.

The root certificate is installed on the Citrix ADC.

D.

The root certificate is installed on the client s device.

Question 11

Scenario: A Citrix Administrator needs to configure a Responder policy, so that the string “/mytraining” is added

to every URL path received.

The administrator should use these commands to accomplish this:

>add responder action Redirect_Act redirect “HTTP.REQ.URL.PATH_AND_QUERY+\”mytraining\”” –

responseStatusCode 302

>add responder policy Redirect_Pol___________Redirect_Act

>bind lb vServer lb_vsrv_www –policyName Redirect_Pol –priority 100 –gotoPriorityExpression END –

type_______

(Choose the correct option to complete the set of commands.)

Options:

A.

“(HTTP.REQ.URL.STARTSWITH(\”mytraining\”))”

REQUEST

B.

“(HTTP.REQ.URL.STARTSWITH(\”mytraining\”))”

RESPONSE

C.

“!(HTTP.REQ.URL.ENDSWITH(\”mytraining\”))”

REQUEST

D.

“!(HTTP.REQ.URL.ENDSWITH(\”mytraining\”))”

RESPONSE

Question 12

Scenario: A Citrix Administrator suspects an attack on a load-balancing vServer (IP address 192.168.100.25).

The administrator needs to restrict access to this vServer for 10 minutes.

Which Access Control List (ACL) will accomplish this?

Options:

A.

add simpleacl rule1 DENY –srcIP 192.168.100.25 –TTL 600000

B.

add simpleacl rule1 DENY –srcIP 192.168.100.25 –TTL 600

C.

add ns acl rule1 DENY –destIP 192.168.100.25 –TTL 600000

D.

add ns acl rule1 DENY –destIP 192.168.100.25 –TTL 600

Question 13

A Citrix Administrator configured global server load balancing (GSLB) for www.citrix.com, with two ADNS services named Citrix ADC 1 and Citrix ADC 2 in the setup.

Which record does the administrator need to add on the parent DNS server to delegate requests from www.citrix.com to Citrix ADC 1 and Citrix ADC 2?

Options:

A.

Canonical Name (CNAME)

B.

Address (A) record

C.

Name Server (NS) record

D.

Pointer Record (PTR)

Question 14

Scenario: A Citrix Administrator downloaded and deployed Citrix Application Delivery Management (ADM) in an environment consisting of six Citrix ADCs and 100 virtual servers. When viewing the Citrix ADM console, the administrator sees only 30 virtual servers.

Why is the administrator unable to see all 100 virtual servers?

Options:

A.

The nsroot passwords are NOT the same across all the Citrix ADCs.

B.

Citrix ADM is using a free license.

C.

Additional Citrix ADM systems need to be deployed to see all virtual servers.

D.

The Citrix ADC and Citrix ADM firmware versions are NOT the same.

Question 15

A Citrix Administrator needs to match the host name ‘www.example.com’ in all HTTP requests.

Which expression, when used, meets this requirement?

Options:

A.

HTTP.REQ.HOSTNAME.EQ(“www.example.com”)

B.

HTTP.RES.HOSTNAME.EQ(“www.example.com”)

C.

HTTP.REQ.HOSTNAME(“example.com”)

D.

HTTP.RES.HOSTNAME.CONTAINS(“www.example.com”)

Question 16

Which four authentication types can a Citrix Administrator use for Citrix ADC authentication, authorization, and auditing (AAA) multifactor authentication? (Choose four.)

Options:

A.

RADIUS

B.

OAuth

C.

FIDO2

D.

NTLM

E.

ADFS

F.

LDAP

G.

TACACS+

Question 17

Scenario: A company has three departments with proprietary applications that need to be load balanced on a Citrix ADC. The three department managers would like to use the same IP address to access their individual applications. This would mean configuring three load-balanced vServers, all using the same IP address.

What can the Citrix Administrator configure for this scenario?

Options:

A.

Three SNIPs with the same IP address on a Citrix ADC

B.

Three different Citrix ADCs that use the same IP address

C.

Three different admin partitions that allow use of the same IP address for each load-balanced vServer on a Citrix ADC

D.

Three different load-balanced vServers with three different IP addresses on a Citrix ADC

Question 18

A Citrix Administrator needs to configure a Citrix ADC high availability (HA) pair with each Citrix ADC in a different subnet.

What does the administrator need to do for HA to work in different subnets?

Options:

A.

Configure SyncVlan

B.

Turn on fail-safe mode.

C.

Turn on HA monitoring on all interfaces

D.

Turn on Independent Network Configuration (INC) mode.

Question 19

Users are experiencing resets from the intranet server website, which is load balanced through the Citrix ADC.

Which Citrix ADC tool can a Citrix Administrator use to troubleshoot the reset issue?

Options:

A.

View the newnslog from the command line interface (CLI) to look for packet resets from the Citrix ADC.

B.

Use the nslog to look for packet resets on the Citrix ADC.

C.

Take a packet trace with nstrace and analyze with Wireshark.

D.

Look in the event viewer for packet resets from the Citrix ADC

Question 20

Scenario: A Citrix Administrator executed the following commands on the Citrix ADC:

> add policy dataset Admin_group ipv4

> bind policy dataset Admin_group 192.168.149.10 –index 11

> bind policy dataset Admin_group 192.168.149.39 –index 12

> bind policy Admin_group 192.168.149.49 –index 13

> add responder policy POL_1 “!(CLIENT.IP.SRC.TYPECAST_TEXT_T.CONTAINS_ANY(\”Admin_group\”))”

RESET

> bind lb vServer lb_vsrv_www –policyName POL_1 –priority 100 –gotoPriorityExpression END –type

REQUEST

What will be the effect of these commands?

Options:

A.

Only users with a source IP address of 192.168.149.10, 192.168.149.39, or 192.168.149.49 will be allowed

to connect to vServer lb_vsrv_www.

B.

Only users with a source IP address of 192.168.149.10, 192.168.149.39, or 192.168.149.49 will be blocked

when attempting to connect to vServer lb_vsrv_www.

C.

Only users with a source IP address of 192.168.149.10 or 192.168.149.39 will be allowed to connect to

vServer lb_vsrv_www.

D.

All traffic from users with a source IP address of 192.168.149.10, 192.168.149.39, or 192.168.149.49 will be

blocked through the Citrix ADC.

Question 21

set gslb vServer-GSLB-1-MIR ENABLED

What will the Citrix ADC appliance send when the above command is executed?

Options:

A.

The Remote GSLB service as the first record in the response and adds the remaining active services as additional records

B.

The Local GSLB service as the first record in the response and adds the remaining active services as additional records

C.

Only the best GSLB service in the response

D.

The best global server load balancing (GSLB) service as the first record in the response, and the remaining active services as additional records

Question 22

If VLAN 20 is bound to the interface as tagged in an environment where Citrix ADC is configured with the default settings, which VLANs will be bound to an interface?

Options:

A.

VLAN 1 tagged and VLAN 20 tagged

B.

VLAN 20 tagged only

C.

VLAN 1 untagged and VLAN 20 tagged

D.

VLAN 20 untagged only

Question 23

How can a Citrix Administrator configure a rewrite policy to change the version of HTTP from 1.1 to 1.0 in every request?

Options:

A.

>add rewrite action RW_ACT replace http.res.version “\”HTTPS/1.0\””

> add rewrite policy RW_POL true RW_ACT

B.

>add rewrite action RW_ACT replace http.req.version “\”HTTPS/1.1\””

> add rewrite policy RW_POL true RW_ACT

C.

>add rewrite action RW_ACT replace http.res.version “\”HTTPS/1.1\””

> add rewrite policy RW_POL true RW_ACT

D.

>add rewrite action RW_ACT replace http.req.version “\”HTTPS/1.0\””

> add rewrite policy RW_POL true RW_ACT

Question 24

Scenario: A Citrix Administrator configured SNMP to send traps to an external SNMP system. When reviewing the messages, the administrator notices several entity UP and entity DOWN messages.

To what are these messages related?

Options:

A.

Load-balancing vServers

B.

Network interface

C.

High availability nodes

D.

SSL profile

Question 25

Scenario:

POLICY 1:

add rewrite action ACT_1 corrupt_http_header Accept-Encoding

add rewrite policy POL_1 HTTPS.REQ.IS_VALID ACT_1

POLICY 2:

add rewrite action ACT_2 insert_http_header Accept-Encoding “\”identity\””

add rewrite policy POL_2 “HTTP.REQ.IS_VALID “ ACT_2

How can a Citrix Administrator successfully bind the above rewrite policies to the load-balancing vServer

lb_vsrv so that POL_2 is evaluated after POL_2 is evaluated?

Options:

A.

bind lb vServer lb_vsrv –policyName POL_1 –priority 110 –gotoPriorityExpression NEXT –type REQUEST

bind lb vServer lb_vsrv –policyName POL_2 –priority 100 –gotoPriorityExpression END –type REQUEST

B.

bind lb vServer lb_vsrv –policyName POL_1 –priority 90 –gotoPriorityExpression NEXT –type REQUEST

bind lb vServer lb_vsrv –policyName POL_2 –priority 100 –gotoPriorityExpression END –type REQUEST

C.

bind lb vServer lb_vsrv –policyName POL_1 –priority 90 –gotoPriorityExpression END –type REQUEST

bind lb vServer lb_vsrv –policyName POL_2 –priority 80 –gotoPriorityExpression NEXT –type REQUEST

D.

bind lb vServer lb_vsrv –policyName POL_1 –priority 90 –type REQUEST

bind lb vServer lb_vsrv –policyName POL_2 –priority 100 –type REQUEST

Question 26

A Citrix Administrator receives user complaints about latency while accessing an application that is load balanced on the Citrix ADC.

Which tool can the administrator use to gather information regarding response time, client network latency, and server-side processing time?

Options:

A.

Citrix Application Delivery Management (ADM)

B.

HDX Insight

C.

WAN Insight

D.

Security Insight

Question 27

Which Citrix ADC monitor can a Citrix Administrator use to check the authentication service of the Active Directory (AD) domain controller?

Options:

A.

An LDAP monitor with the LDAP Script Name, Configured Base DN, Bind DN, Filter, Attribute and Password parameters in the basic parameters.

B.

A ping monitor with the IP address of the AD domain controller in the special parameters

C.

A MYSQL-ECV monitor with the Base DN, Bind DN, Filter, Attribute, and Password parameters configured in the basic parameters

D.

A TCP monitor with the LDAP Base DN configured in the basic parameters.

Question 28

Which setting is responsible for reducing the server load, improving response time, and increasing the number of SSL transactions per second on an SSL vServer?

Options:

A.

SSLv3

B.

Session timeout

C.

SSLv2 redirect

D.

Session reuse

Question 29

Scenario: A load-balancing vServer is configured to utilize the least bandwidth load-balancing method. A service attached to this vServer is brought into the effective state during production hours.

During the startup of a vServer, which load-balancing method is used by default?

Options:

A.

Least connections

B.

Least bandwidth

C.

Custom load

D.

Round-robin

Question 30

Scenario: A Citrix Administrator would like to grant access to a Junior Citrix Administrator on the Citrix ADC.

The administrator would like to grant full access to everything except the following:

  • Shell
  • User configuration
  • Partition configuration

Which preexisting command policy would meet the needs of this scenario?

Options:

A.

Sysadmin

B.

Operator

C.

Network

D.

Superuser

Question 31

Scenario: A Citrix Administrator manages a Citrix SDX appliance with several instances configured. The administrator needs to enable Layer 2 mode on two instances.

When using a shared network interface, what must the administrator do to ensure that traffic flows correctly?

Options:

A.

Ensure Layer 3 and Layer 2 modes are enabled.

B.

Enable tagging on all interfaces.

C.

Enable MAC-based forwarding (MBF) mode.

D.

Disable Layer 2 mode on a Citrix ADC instance.

Question 32

Scenario: While using the GUI, a Citrix ADC MPX appliance becomes unresponsive. A Citrix Administrator needs to restart the appliance and force a core dump for analysis.

What can the administrator do to accomplish this?

Options:

A.

Turn off the appliance using the power button.

B.

Use the reset button on the front of the appliance.

C.

Use the NMI button on the back of the appliance.

D.

Connect to a USB port to issue a restart command.

Question 33

Which Citrix ADC feature can a Citrix Administrator employ to reuse existing TCP connections?

Options:

A.

TCP buffering

B.

Connection multiplexing

C.

Keep-alive

D.

Content switching

Page: 1 / 11
Total 111 questions