1Y0-240 Online Practice Questions and Answers

Scenario: A Citrix Administrator has configured the following Access Control List (ACL) to block traffic from

the IP address 10.102.29.5.

add simpleacl rule1 DENY -srcIP 10.102.29.5

A week later, the administrator found that the ACL is no longer present on the NetScaler.

What could be the reason for this?

A. The administrator did NOT run the apply ACL command.

B. The NetScaler has been restarted without saving the configurations.

C. The Simple ACLs remain active for only 600 seconds.

D. The Simple ACLs remain active for only 60 seconds.

In the Global Server Load Balancing (GSLB) configuration when dynamic proximity is implemented, the round trip time (RTT) between the _____________ and _____________ is measured to make the load decision. (Choose the correct option to complete the sentence.)

A. IP address of the client; each of the GSLB sites.

B. Local DNS of the client; each of the GSLB sites.

C. Local DNS of the client; each of the GSLB services.

D. IP address of the client; each of the GSLB services.

Which NetScaler Access Control List (ACL) command can a Citrix Administrator use to bridge traffic originating from 192.168.10.200?

A. add ns acl

B. add ns acl6

C. add ns simpleacl

D. add ns simpleacl6

Scenario: A Citrix Administrator suspects an attack on a load balancing virtual server.

The administrator needs to restrict the access to the load balancing virtual server (192.168.100.25) for 10 minutes.

Which Access Control List (ACL) will help to accomplish this requirement?

A. add simpleacl rule1 DENY –srclP 192.168.100.25 –TTL 600000

B. add ns acl rule1 DENY –destlP 192.168.100.25 –TTL 600000

C. add ns acl rule1 DENY –destlP 192.168.100.25 –TTL 600

D. add simpleacl rule1 DENY –srclP 192.168.100.25 –TTL 600

Which NetScaler mode is commonly referred to as `inline mode'?

A. One-Arm Mode

B. MAC-based Forwarding

C. Two-Arm Mode

D. Use Source IP (USIP)

Scenario: A NetScaler is configured with the following modes:

MBF

USIP

USNIP

Layer 3 mode

A Citrix Administrator configured a new router and now requires some of the incoming and outgoing traffic to take different paths through the new router. However, the administrator notices that this is failing and takes a network trace. After a short monitoring period, the administrator notices that the packets are still NOT getting to the new router from the NetScaler.

Which mode should the administrator disable on the NetScaler to facilitate the addition of the new router and successfully route the packets?

A. Layer 3 mode

B. USIP

C. MAC-based Forwarding

D. USNIP

POLICY 1:

add rewrite action ACT_1 corrupt_http_header Accept-Encoding

add rewrite policy POL_1 HTTP.REQ.IS_VALID ACT_1

POLICY 2:

add rewrite action ACT_2 insert_http_header Accept-Encoding "\"identity\""

add rewrite policy POL_2 "HTTP.REQ.IS_VALID" ACT_2

How can a Citrix Administrator bind the rewrite policies to the LB vserver lb_vsrv such that POL_2 is evaluated after POL_1 is evaluated successfully?

A. bind lb vserver lb_vsrv –policyName POL_1 –priority 110 –gotoPriorityExpression NEXT –type REQUESTbind lb vserver lb_vsrv –policyName POL_2 –priority 100 –gotoPriorityExpression END – type REQUEST

B. bind lb vserver lb_vsrv –policyName POL_1 –priority 90 –type REQUESTbind lb vserver lb_vsrv – policyName POL_2 –priority 100 –type REQUEST

C. bind lb vserver lb_vsrv –policyName POL_1 –priority 90 –gotoPriorityExpression NEXT –type REQUESTbind lb vserver lb_vsrv –policyName POL_2 –priority 100 –gotoPriorityExpression END – type REQUEST

D. bind lb vserver lb_vsrv –policyName POL_1 –priority 90 –gotoPriorityExpression END –type REQUESTbind lb vserver lb_vsrv –policyName POL_2 –priority 80 –gotoPriorityExpression NEXT – type REQUEST

Scenario: A Citrix Administrator has given permissions to team members to access their own admin partition, so they can add resources for different departments and manage them without making changes to the default NetScaler partition and configuration.

One team member was trying to use the command-line interface to troubleshoot an authentication issue and could NOT use aaad.debug. However, the team member has full permissions on the admin partition.

What can be the cause of this issue?

A. The team member is NOT using the CLI correctly.

B. The team member needs to troubleshoot the issue from the GUI.

C. The team member does NOT have Shell access by design.

D. The team member does NOT have permission to use the CLI.

Which mode on the NetScaler can a Citrix Administrator utilize to avoid asymmetrical packet flows and multiple route/ARP lookups?

A. Layer 2

B. MAC-based forwarding (MBF)

C. Layer 3

D. Use Subnet IP (USNIP)

Which feature can a Citrix Administrator use to create a consistent set of front-end SSL parameters across multiple SSL virtual servers?

A. SSL Policy

B. SSL Profile

C. SSL Bridge

D. SSL Offload