Winter Special Sale Limited Time 60% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: 713PS592

1Y0-241 Deploy and Manage Citrix ADC with Traffic Management Questions and Answers

Questions 4

Which two protocols would provide end-to-end data encryption, while allowing a Citrix ADC to optimize the responses? (Choose two.)

Options:

A.

HTTP protocol for the services

B.

SSL bridge protocol for the vServer

C.

SSL bridge protocol for the services

D.

SSL protocol for the services

E.

HTTP protocol for the vServer

F.

SSL protocol for the vServer

Buy Now
Questions 5

Scenario: A Citrix Administrator configured a load-balancing vServer. The URL for this vServer is vpn.citrix.com. The backend server has the host name configured as server1.citrix.com.

The administrator needs to implement the policy to change the host name from vpn.citrix.com to server1.citrix.com, and vice versa.

Which does the administrator need to configure to meet this requirement?

Options:

A.

set transform action “host change” –priority 10 –reqUrlFrom “https://vpn.citrix.com/*” –reqUrlInto “https://

server1.citrix.com/*” –resUrlFrom “https://server1.citrix.com/*” –resUrlInto “https://vpn.citrix.com/*”

B.

set transform action “host change” –priority 10 –reqUrlFrom “https://server1.citrix.com/*” –reqUrlInto “https://

vpn.citrix.com/*” –resUrlFrom “https://server1.citrix.com/*” –resUrlInto “https://vpn.citrix.com/*”

C.

set transform action “host change” –priority 10 –reqUrlFrom “https://server1.citrix.com/*” –reqUrlInto “https://

vpn.citrix.com/*” –resUrlFrom “https://vpn.citrix.com/*” –resUrlInto “https://server1.citrix.com/*”

D.

set transform action “host change” –priority 10 –reqUrlFrom “https://vpn.citrix.com/*” –reqUrlInto “https://

server1.citrix.com/*” –resUrlFrom “https://vpn.citrix.com/*” –resUrlInto “https://server1.citrix.com/*”

Buy Now
Questions 6

A Citrix Administrator needs to configure a rate-limiting policy setting DNS requests to a threshold of 1,000 per second.

Which command does the administrator need to run to correctly configure this policy?

Options:

A.

HTTP.REQ.LIMIT()

B.

SYS.CHECK.LIMIT()

C.

SYS.CHECK.LIMIT() || CONNECTION.IP.LIMIT()

D.

SYS.CHECK.LIMIT() || HTTP.REQ.LIMIT()

Buy Now
Questions 7

If VLAN 20 is bound to the interface as tagged in an environment where Citrix ADC is configured with the default settings, which VLANs will be bound to an interface?

Options:

A.

VLAN 1 tagged and VLAN 20 tagged

B.

VLAN 20 tagged only

C.

VLAN 1 untagged and VLAN 20 tagged

D.

VLAN 20 untagged only

Buy Now
Questions 8

Scenario: A Citrix Administrator configured the rewrite policies below:

bind lb vServer VIP1_http -policyName POL_14 -priority 120 -gotoPriorityExpression END -type REQUEST

bind lb vServer VIP1_http -policyName POL_12 -priority 90 -gotoPriorityExpression NEXT -type REQUEST

bind lb vServer VIP1_http -policyName POL_15 -priority 100 -gotoPriorityExpression END -type REQUEST

bind lb vServer VIP1_http -policyName POL_13 -priority 101 -gotoPriorityExpression NEXT -type REQUEST

Which policy will be evaluated last considering POL_12 is hit first?

Options:

A.

POL_12

B.

POL_13

C.

POL_14

D.

POL_15

Buy Now
Questions 9

Scenario: A Citrix Administrator executed the following commands on the Citrix ADC:

> add policy dataset Admin_group ipv4

> bind policy dataset Admin_group 192.168.149.10 –index 11

> bind policy dataset Admin_group 192.168.149.39 –index 12

> bind policy Admin_group 192.168.149.49 –index 13

> add responder policy POL_1 “!(CLIENT.IP.SRC.TYPECAST_TEXT_T.CONTAINS_ANY(\”Admin_group\”))”

RESET

> bind lb vServer lb_vsrv_www –policyName POL_1 –priority 100 –gotoPriorityExpression END –type

REQUEST

What will be the effect of these commands?

Options:

A.

Only users with a source IP address of 192.168.149.10, 192.168.149.39, or 192.168.149.49 will be allowed

to connect to vServer lb_vsrv_www.

B.

Only users with a source IP address of 192.168.149.10, 192.168.149.39, or 192.168.149.49 will be blocked

when attempting to connect to vServer lb_vsrv_www.

C.

Only users with a source IP address of 192.168.149.10 or 192.168.149.39 will be allowed to connect to

vServer lb_vsrv_www.

D.

All traffic from users with a source IP address of 192.168.149.10, 192.168.149.39, or 192.168.149.49 will be

blocked through the Citrix ADC.

Buy Now
Questions 10

Scenario: A Citrix Administrator observes that when the client gets redirected to www.citrix.com/owa/search?q=username, an HTTP 503 response is received from the content switching vServer.

The relevant configuration is as follows:

> add cs action CS_Act_1 -targetLBVserver SERVER_1

> add cs action CS_Act_2 -targetLBVserver SERVER_2

> add cs action CS_Act_3 -targetLBVserver SERVER_3

> add cs action CS_Act_4 -targetLBVserver SERVER_4

> add cs policy CS_Pol_1 -rule "http.REQ.URL path_and_queryCONTAINS(\"connect\")" -action CS_Act_1

> add cs policy CS_Pol_2 -rule "http.REQ.URL path_and_query EQ(\"owa\")" -action CS_Act_2

> add cs policy CS_Pol_3 -rule "http REQ.URL path_and_query CONTAINS(\"owa\")" -action CS_Act_3

> add cs policy CS_Pol_4 -rule "http.REQ.IS_VALID" -action CS_Act_4

> bind cs vServer CS_vserver1 -policyName CS_Pol_1 -priority 110

> bind cs vServer CS_vserver1 -policyName CS_Pol_4 -priority 120

How can the administrator correct the issue?

Options:

A.

Unbind CS_Pol_1.

B.

Bind Policy CS_Pol_3 with priority 100.

C.

Bind Policy CS_Pol_2 with priority 100.

D.

Unbind CS Pol 4.

Buy Now
Questions 11

Scenario: A Citrix Administrator is concerned about the number of health checks the Citrix ADC is sending to backend resources. The administrator wants to find a way to remove health checks from specific bound services.

How can the administrator accomplish this?

Options:

A.

Unbind the current monitor.

B.

Use the no-monitor option.

C.

Use service groups to minimize health checks.

D.

Use reverse-condition monitoring.

Buy Now
Questions 12

Where do the monitor probes originate by default, after creating and correctly configuring a custom user monitor?

Options:

A.

MIP

B.

VIP

C.

SNIP

D.

NSIP

Buy Now
Questions 13

To improve page-rendering time a Citrix Administrator needs to overcome the connection limitation by enabling client browsers to simultaneously download more resources.

What should the administrator enable while configuring the front end optimization (FEO) feature?

Options:

A.

HTML comments removal

B.

Image lazy loading

C.

CSS import to link

D.

Domain sharding

Buy Now
Questions 14

A Citrix Administrator needs to block all DNS requests from subnet 10.107.149.0/24.

Which expressions can the administrator use to match the required traffic?

Options:

A.

CLIENT.IP.SRC(10.107.149.0) && (client.UDP.DSTPORT.EQ(53) || client TCP DSTPORT.EQ(53))

B.

CLIENT.IP.SRC IN_SUBNET(10 107.149.0/24) && client.UDP.DSTPORT.EQ(53) || client.TCP.DSTPORT.EQ(53)

C.

CLIENT.IP.SRC(10.107.149.0) && client UDP.DSTPORT.EQ(53) || client.TCP.DSTPORT.EQ(53)

D.

CLIENT.IP.SRC IN_SUBNET(10.107.149.0/24) && (client.UDP.DSTPORT.EQ(53) || client.TCP.DSTPORT.EQ(53))

Buy Now
Questions 15

What can a Citrix Administrator use to restrict access to the Citrix ADC management IP (NSIP) address?

Options:

A.

Command policy

B.

Access Control List (ACL)

C.

Authentication policy

D.

Authorization policy

Buy Now
Questions 16

Scenario: To receive data alerts for failures, a Citrix Administrator is configuring SNMP on the Citrix ADC. The administrator is confident that the manager, alarms and SNMP traps are configured correctly. The following week, there is a Citrix ADC-related outage and the administrator does NOT receive any alerts.

What could be the reason for this alert failure?

Options:

A.

The Citrix Web App Firewall is blocking the alerts from going out.

B.

The community name was NOT configured in the Citrix ADC SNMP trap destination settings.

C.

The Citrix ADC only has standard licensing.

D.

The Citrix ADC is configured for SNMP version 1.

Buy Now
Questions 17

How can a Citrix Administrator configure a rewrite policy to change the version of HTTP from 1.1 to 1.0 in every request?

Options:

A.

>add rewrite action RW_ACT replace http.res.version “\”HTTPS/1.0\””

> add rewrite policy RW_POL true RW_ACT

B.

>add rewrite action RW_ACT replace http.req.version “\”HTTPS/1.1\””

> add rewrite policy RW_POL true RW_ACT

C.

>add rewrite action RW_ACT replace http.res.version “\”HTTPS/1.1\””

> add rewrite policy RW_POL true RW_ACT

D.

>add rewrite action RW_ACT replace http.req.version “\”HTTPS/1.0\””

> add rewrite policy RW_POL true RW_ACT

Buy Now
Questions 18

Scenario: A Citrix Administrator configured SNMP to send traps to an external SNMP system. When reviewing the messages, the administrator notices several entity UP and entity DOWN messages.

To what are these messages related?

Options:

A.

Load-balancing vServers

B.

Network interface

C.

High availability nodes

D.

SSL profile

Buy Now
Questions 19

Scenario: A Citrix Administrator downloaded and deployed Citrix Application Delivery Management (ADM) in an environment consisting of six Citrix ADCs and 100 virtual servers. When viewing the Citrix ADM console, the administrator sees only 30 virtual servers.

Why is the administrator unable to see all 100 virtual servers?

Options:

A.

The nsroot passwords are NOT the same across all the Citrix ADCs.

B.

Citrix ADM is using a free license.

C.

Additional Citrix ADM systems need to be deployed to see all virtual servers.

D.

The Citrix ADC and Citrix ADM firmware versions are NOT the same.

Buy Now
Questions 20

Scenario: A Citrix Administrator configured a rewrite action as follows:

> add rewrite action sync_date replace http.res.date.sys.time

What is the correct way to interpret this rewrite action?

Options:

A.

It replaces the date header in the HTTP response with the Citrix ADC system time in a conventional date format.

B.

It replaces the date header in the HTTP response with the Greenwich Mean Time (GMT) time stamp.

C.

It replaces the Citrix ADC system time with the date header in a conventional date format.

D.

It is invalid, as system time CANNOT be referenced in the system policy.

Buy Now
Questions 21

Which two steps are necessary to configure global server load balancing (GSLB) service selection using content switching (CS)? (Choose two.)

Options:

A.

Bind the domain to the CS vServer instead of the GSLB vServer.

B.

Configure CS policies that designate a load-balancing vServer as the target vServer.

C.

Configure a CS vServer of target type GSLB.

D.

Bind the GSLB domain to the GSLB vServer.

Buy Now
Questions 22

Scenario: A Junior Citrix Administrator needs to create a content switching vServer on a Citrix ADC high availability (HA) pair. The NSIP addresses are 192.168.20.10 and 192.168.20.11. The junior administrator connects to NSIP address 192.168.20.10 and saves the changes.

The following day, a Senior Citrix Administrator tests the new content switching vServer, but it is NOT working. The senior administrator connects to the HA pair and discovers that everything the junior administrator configured is NOT visible.

Why has the Citrix ADC lost the newly added configurations?

Options:

A.

The junior administrator made the changes and did NOT force a failover to save the configuration.

B.

The junior administrator connected to the NSIP of the secondary Citrix ADC in the HA pair.

C.

Both Citrix ADCs in the HA pair restarted overnight.

D.

The Citrix ADC appliances have different firmware versions.

Buy Now
Questions 23

If a policy evaluates as_________________ a Citrix ADC performs the action assigned to the ____________ condition and stops further policy evaluation.

Options:

A.

TRUE; FALSE

B.

UNDEFINED; TRUE

C.

UNDEFINED; FALSE

D.

UNDEFINED; UNDEFINED

Buy Now
Questions 24

Scenario: A Citrix Administrator is managing a Citrix Gateway with a standard Platform license and remote employees in the environment. The administrator wants to increase access by 3,000 users through the Citrix Gateway using VPN access.

Which license should the administrator recommend purchasing?

Options:

A.

Citrix ADC Burst Pack

B.

Citrix Gateway Express

C.

Citrix Gateway Universal

D.

Citrix ADC Upgrade

Buy Now
Questions 25

Scenario: After deploying a Citrix ADC in production, a Citrix Administrator notices that client requests are NOT being evenly distributed among backend resources. The administrator wants to change from the default loadbalancing method to one that will help distribute the load more evenly.

Which load-balancing method would ensure that the server with the least amount of network utilization is receiving new connections?

Options:

A.

Least connection

B.

Least bandwidth

C.

Least response time

D.

Least packets

Buy Now
Questions 26

Scenario: While attempting to access web server that is load balanced by a Citrix ADC using HTTPS, a user receives the message below.

SSL/TLS error: You have not chosen to trust “Certificate Authority” the issuer of the server’s security certificate.

What can a Citrix Administrator do to prevent users from viewing this message?

Options:

A.

Ensure that users have the certificate’s private key.

B.

Ensure that users have the certificate’s public key.

C.

Ensure that the server certificate is linked to its respective intermediate and root certificates.

D.

Ensure that users have the server certificate installed.

Buy Now
Questions 27

Which two policies can a Citrix Administrator configure using only the advanced policy expression? (Choose two.)

Options:

A.

DNS

B.

Integrated caching

C.

SSL

D.

System

Buy Now
Questions 28

Users are experiencing resets from the intranet server website, which is load balanced through the Citrix ADC.

Which Citrix ADC tool can a Citrix Administrator use to troubleshoot the reset issue?

Options:

A.

View the newnslog from the command line interface (CLI) to look for packet resets from the Citrix ADC.

B.

Use the nslog to look for packet resets on the Citrix ADC.

C.

Take a packet trace with nstrace and analyze with Wireshark.

D.

Look in the event viewer for packet resets from the Citrix ADC

Buy Now
Questions 29

A Citrix Administrator needs to configure a rate-limiting policy setting DNS requests to a threshold of 1,000 per second.

Which set of commands does the administrator need to run to correctly configure and enable this policy?

Options:

A.

> add stream selector DNSSelector1 client.udp.dns.domain

> add ns limitIdentifier DNSLimitIdentifier1 -threshold 5 -timeSlice 1000 -selectorName DNSSelector1

> add dns policy DNSLimitPolicy1 " sys.check_limit(\"DNSLimitIdentifier1\")" -preferredLocation "North America.US.TX.Dallas.. "

> bind dns global DNSLimitPolicy1 5

B.

> add stream selector DNSSelector1 client.udp.dns.domain

> add ns limitIdentifier DNSLimitIdentifier1 -threshold 1000 -timeSlice 1000 -selectorName DNSSelector1

> add dns policy DNSLimitPolicy1 " sys check_limit(\"DNSLimitIdentifier1\")" -preferredLocation "North America.US.TX.Dallas.. "

> bind dns global DNSLimitPolicy1 5

C.

> add stream selector DNSSelector1 client.udp.dns.domain

> add ns limitIdentifier DNSLimitIdentifier1 -threshold 5 -timeSlice 1000 -selectorName DNSSelector1

> add dns policy DNSLimitPolicy1 " sys.check_limit(\"DNSLimitIdentifier1\")" -preferredLocation "North America.US.TX.Dallas.. "

D.

> add stream selector DNSSelector1 client.udp.dns.domain

> add ns limitIdentifier DNSLimitIdentifier1 -threshold 1000 -timeSlice 1000 -selectorName DNSSelector1

> add dns policy DNSLimitPolicy1 " sys check_limit(\"DNSLimitIdentifier1\")" -preferredLocation "North America.US.TX.Dallas.. "

Buy Now
Questions 30

A Citrix Administrator is creating a new SSL vServer and notices the ns_default_ssl_profile frontend SSL profile is automatically bound to the SSL vServer.

Which two actions can the administrator perform to change or remove the ns_default_ssl_profile_frontend SSL

profile once it is enabled? (Choose two.)

Options:

A.

Globally unbind the ns_default_ssl_profile_frontend SSL.

B.

Unbind the default SSL profile and bind the newly created SSL profile.

C.

Create a separate SSL profile.

D.

Unbind the ns_default_ssl_profile_frontend SSL profile from the SSL vServer without binding a replacement SSL profile.

E.

Globally disable the ns_default_ssl_profile_frontend SSL profile.

Buy Now
Questions 31

Scenario: A Citrix Administrator needs to configure a Responder policy, so that the string “/mytraining” is added

to every URL path received.

The administrator should use these commands to accomplish this:

>add responder action Redirect_Act redirect “HTTP.REQ.URL.PATH_AND_QUERY+\”mytraining\”” –

responseStatusCode 302

>add responder policy Redirect_Pol___________Redirect_Act

>bind lb vServer lb_vsrv_www –policyName Redirect_Pol –priority 100 –gotoPriorityExpression END –

type_______

(Choose the correct option to complete the set of commands.)

Options:

A.

“(HTTP.REQ.URL.STARTSWITH(\”mytraining\”))”

REQUEST

B.

“(HTTP.REQ.URL.STARTSWITH(\”mytraining\”))”

RESPONSE

C.

“!(HTTP.REQ.URL.ENDSWITH(\”mytraining\”))”

REQUEST

D.

“!(HTTP.REQ.URL.ENDSWITH(\”mytraining\”))”

RESPONSE

Buy Now
Questions 32

Which log records detailed information such as statistics, metrics, and debug information in a proprietary binary format on the Citrix ADC?

Options:

A.

Nslog

B.

Nsconfig

C.

Nstrace

D.

Syslog

Buy Now
Questions 33

Which mode on a Citrix ADC can a Citrix Administrator utilize to avoid asymmetrical packet flows and multiple route/ARP lookups?

Options:

A.

MAC-based forwarding (MBF)

B.

Use Subnet IP (USNIP)

C.

Layer 3

D.

Layer 2

Buy Now
Exam Code: 1Y0-241
Exam Name: Deploy and Manage Citrix ADC with Traffic Management
Last Update: Dec 1, 2024
Questions: 111

PDF + Testing Engine

$66  $164.99

Testing Engine

$50  $124.99
buy now 1Y0-241 testing engine

PDF (Q&A)

$42  $104.99
buy now 1Y0-241 pdf