1Y0-341無料問題集「Citrix ADC Advanced Topics - Security, Management and Optimization」

質問 1

Which two settings can be used when creating a Cache Content group? (Choose two.)

（A）Use browser settings

（B）Use DNS Query

（C）Remove response cookies

（D）Expire cookies

（E）Set Lazy DNS resolution

正解：C、E 解答を投票する

質問 2

Scenario: A hacker accessed the HTML code from a product page and manipulated the HTML code as shown:
Original Value: <input type=hidden name=price value=2379.73> Manipulated Value: <input type=hidden name=price value=9.24> Which security check can the engineer configure to counter the manipulation?

（A）HTML Cross-Site Scripting

（B）Content-type

（C）Field Formats

（D）Form Field consistency

正解：D 解答を投票する

質問 3

Which reason can cause fail over in a Citrix ADC Application Delivery Management High Availability pair?

（A）The engineer manually forces the secondary server to shut down.

（B）A primary server encounters a critical software issue.

（C）A secondary server loses connectivity in the LAN.

（D）A primary server does NOT receive the SNMP traps from the instances connected.

正解：B 解答を投票する

質問 4

Which security model should a Citrix Engineer implement to make sure that no known attack patterns pass through Citrix Web App Firewall?

（A）Static

（B）Negative

（C）Hybrid

（D）Positive

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 5

Scenario: A Citrix Engineer has enabled the IP Reputation feature. The engineer wants to protect a critical web application from a distributed denial of service attack.
Which advanced expression can the engineer write for a Responder policy?

（A）CLIENT.IP.SRC.IPREP_THREAT_CATEGORY(BOTNETS)

（B）CLIENT.IP.SRC.IPREP_THREAT_CATEGORY(WEB_ATTACKS)

（C）CLIENT.IP.SRC.IPREP_THREAT_CATEGORY(SPAM_SOURCES)

（D）CLIENT.IP.SRC.IPREP_THREAT_CATEGORY(WINDOWS_EXPLOITS)

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 6

Scenario: A Citrix Engineer is monitoring the environment with Citrix Application Management (ADM). Management has asked lota report of high-risk traffic to protected internal websites.
Which dashboard can the engineer use to generate the requested report?

（A）Users & Endpoints

（B）APP Security

（C）APP

（D）Transactions

正解：B 解答を投票する

質問 7

A Citrix Engineer configures the integrated caching feature to cache both static and dynamic content, but the integrated cache feature does NOT work as expected. Which two resources can the engineer use to troubleshoot this integrated cache issue? (Choose two.)

（A）ns.conf

（B）sysctl-a

（C）dmesg

（D）nstrace

（E）core dump

正解：A、D 解答を投票する

質問 8

Scenario: A Citrix Engineer has configured a Denial-of-Service (DoS) protection on the NetScaler and found that client TCP connections are failing. After taking a packet trace, the engineer notices that the first packet was dropped and that the NetScaler terminated the connection due to DoS protection being enabled.
What step can the engineer take to resolve the client connection failure?

（A）Enable Denial-of-Service TCP connections.

（B）Enable the SYN COOKIE mechanism.

（C）Change the services from TCP to HTTP.

（D）Disable the SYN COOKIE mechanism.

正解：B 解答を投票する

質問 9

Scenario: A Citrix Engineer configured signature protections for Citrix Web App Firewall.
Signature Auto- Update has been enabled. Upon reviewing the log files, the engineer notices that the auto update process has an error. In the settings for Signature Auto Update the engineer notices that the URL is blank.
Which URL should the engineer enter to restore the update process?

（A）https://s3.amazonaws.com/NSAppFwSignatures/SignaturesMapping.xml

（B）https://download.citrix.com/NSAppFwSignatures/SignaturesMapping.xml

（C）https://citrix.azure.com/NSAppFwSignatures/SignaturesMapping.xml

（D）https://www.citrix.com/NSAppFwSignatures/SignaturesMapping.xml

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 10

Which syntax is used to write a StyleBook?

（A）LISP

（B）XML

（C）YAML

（D）JSON

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 11

Which two protections ensure that the correct data is returned by the client? (Choose two.)

（A）Field Formats

（B）Cross-Site Request Forgeries (CSRF)

（C）Form Field Consistency

（D）HTML Cross-Site Scripting (XSS)

正解：A、C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 12

A Citrix Engineer observes that when the application firewall policy is bound to the virtual server, some of the webpages are NOT loading correctly.
Which log file can the engineer use to view the application firewall-related logs in the native format?

（A）/var/log/iprep.log

（B）/var/nslog/ns.log

（C）/var/log/ns.log

（D）/var/nslog/newnslog

正解：C 解答を投票する

質問 13

Which Application-level Quality of Experience (AppQoE) Action setting modifies the communication characteristics of the connections established with the associated web application?

（A）DOS Action

（B）TCP Profile

（C）Action Type

（D）Priority

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 14

In which order is a client request to a protected web application processed?

（A）Load Balancing, Citrix Web App Firewall, Caching, Rewrite

（B）Caching, Citrix Web App Firewall, Load Balancing, Rewrite

（C）Citrix Web App Firewall, Caching, Load Balancing, Rewrite

（D）CitrixWebApp Firewall, Load Balancing, Caching, Rewrite

正解：C 解答を投票する

質問 15

Which Front End Optimization technique overcomes the parallel download limitation of web browsers?

（A）Minify

（B）Lazy Load

（C）Domain Sharding

（D）Extend Page Cache

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 16

Scenario: A Citrix Engineer has deployed four NetScaler MPXs with the following network configuration:
- Management traffic is on VLAN 5 (NSIP).
- Application and server traffic is on VLAN 10 (SNIP).
The engineer added the NetScaler Management and Analytics System (NMAS) interface to VLAN
10 to deploy a NMAS High Availability (HA) pair to manage and monitor the applications and virtual servers. After doing so, the engineer is NOT able to see the NetScaler or applications that need to be managed.
How can the engineer resolve the issue?

（A）Configure VLAN 5 as NSSYNC VLAN

（B）Move the NMAS interface to VLAN 5

（C）Configure VLAN 5 as NSVLAN 5

（D）Bind SNIP to VLAN 5

正解：C 解答を投票する

質問 17

A Citrix Engineer wants to quietly track attempts that cause a web application to display a list of all user accounts.
Which action should the engineer enable to achieve this?

（A）Log

（B）Block

（C）Learn

（D）Stats

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 18

In PCRE, the only characters assumed to be literals are ___________ (Choose the correct option to complete the sentence.)

（A）0-9

（B）a-z, A-Z, 0-9

（C）A-Z

（D）a-z, A-Z

正解：D 解答を投票する

質問 19

A Citrix Engineer needs to implement Application Firewall to prevent the following tampering and vulnerabilities:
- If web server does NOT send a field to the user, the check should NOT allow the user to add that field and return data in the field.
- If a field is a read-only or hidden field, the check verifies that data has NOT changed.
- If a field is a list box or radio button field, the check verifies that data in the response corresponds to one of the values in that field.
Which security check can the engineer enable to meet this requirement?

（A）HTML Cross-Site Scripting

（B）Field Formats

（C）Form Field Consistency

（D）CSRF Form Tagging

正解：C 解答を投票する

1Y0-341 無料問題集「Citrix ADC Advanced Topics - Security, Management and Optimization」

弊社を連絡する

関連リンク

トップ試験