Citrix 1Y0-340 Free Practice Questions

NEW QUESTION 1
A Citrix Engineer executed the below commands on the NetScaler command-line interface (CLI): add stream selector cacheStreamSelector http.req.url
add ns limitidentifier cacheRateLimitIdentifier –threshold 5 –timeSlice 2000 –selectorName cacheStreamSelector
add cache policy cacheRateLimitPolicy –rule “http.req.method.eq(get) && sys.check_limit ( “cacheRateLimitIdentifier”)” –action cache
bind cache global cacheRateLimitPolicy- priority 10 What will be the effect of executing these commands?

• A. NetScaler will cache a response if the request URL rate exceeds 5 per 2000 milliseconds.
• B. NetScaler will cache a request if the request URL rate exceeds 5 per 2000 seconds.
• C. NetScaler will NOT cache a request if the request URL rate exceeds 5 per 2000 milliseconds.
• D. NetScaler will cache a response if the request URL rate exceeds 5 per 2000 seconds.

Answer: B

NEW QUESTION 2
An attacker inserting a malicious code that compromises the trust relationship between users and a web application is an example of a (n) attack. (Choose the correct option to complete the sentence.)

• A. Cookie Tampering
• B. SQL Injection
• C. Form Field Consistency
• D. Cross-site Scripting

Answer: D

NEW QUESTION 3
Scenario: A Citrix Engineer needs to configure an external SNMP server in a High Availability setup. The engineer configured the load-balancing virtual server to access the NetScaler Management and Analytics System (NMAS) HA pair.
Which IP address will be configured on the external SNMP Manager to add the NMAS devices?

• A. IP Address of the LB VIP
• B. IP Address of the Primary node
• C. IP Address of the active mode
• D. IP Address of both the NMAS nodes

Answer: D

NEW QUESTION 4
A Citrix Engineer needs to configure an Application Firewall policy. According to company policies, the engineer needs to ensure that all the requests made to the website are originating from North America.
Which policy expressions will help the engineer accomplish the requirement?

• A. CLIENT.IP.SRC.MATCHES_LOCATION (“North America.US.*.*.*.*”)
• B. CLIENT.IP.SRC.MATCHES_LOCATION (“North America.US.*.*.*.*”). NOT
• C. CLIENT.IP.DST.MATCHES (“North America.US.*.*.*.*”)
• D. CLIENT.IP.SRC.MATCHES (“North America.US.*.*.*.*”)

Answer: A

NEW QUESTION 5
What can a Citrix Engineer use in NetScaler Management and Analytics System (NMAS) to troubleshoot an issue in which users report long response times when accessing a virtual desktop?

• A. Web Insight
• B. WAN Insight
• C. HDX Insight
• D. Gateway Insight

Answer: A

NEW QUESTION 6
Scenario: A Citrix Engineer has enabled Security insight and Web insight on NetScaler Management and Analytics System (NMAS). The engineer is NOT able to see data under the Analytics on NMAS, in spite of seeing hits on the APPFLOW policy.
Which log should the engineer check on NMAS to ensure that the information is sent from NetScaler?

• A. mps_afanalytics.log
• B. mps_perf.log
• C. mps_afdecoder.log
• D. nstriton.log

Answer: C

NEW QUESTION 7
The NetScaler Management and Analytics System (NMAS) collects inventory from the instance by sending a(n) request. (Choose the correct option to complete the sentence.)

• A. AppFlow
• B. NITRO
• C. SNMP
• D. HTTP

Answer: B

NEW QUESTION 8
A Citrix Engineer has deployed Front-end Optimization on NetScaler. The following are the snippets of the content before and after optimization.
Before Optimization:

After Optimization:

Which optimization technique has been applied to the content?

• A. Combine CSS
• B. Minify CSS
• C. Inline CSS
• D. Linked JavaScript to inline JavaScript

Answer: A

NEW QUESTION 9
A company has experienced an outage of their mission-critical website. Upon investigation, the Citrix Engineer determines that the following command was executed on the website:
DROP TABLE table_name
Which security check would have prevented this issue?

• A. HTML SQL Injection
• B. Form Field Consistency
• C. HTML Cross-Site Scripting
• D. Field Formats

Answer: A

NEW QUESTION 10
A Citrix Engineer needs to configure NetScaler Management and Analytics System (NMAS) in their network to retain network reporting data, events, audit logs, and task logs for 20 days.
Which settings can the engineer configure to meet the requirement?

• A. System Prune Settings
• B. System Backup Settings
• C. Instance Backup Settings
• D. Syslog Prune Settings

Answer: A

NEW QUESTION 11
Scenario: A Citrix Engineer has configured the Signature file with new patterns and log strings and uploaded the file to Application Firewall. However, after the upload, the Signature rules are NOT implemented.
What can the engineer modify to implement Signature rules?

• A. The Signature update URL should have an older version than the one on Application Firewall.
• B. The new Signature file should have new ID and version number.
• C. The NetScaler version should be upgraded before upgrading the signatures.
• D. The Signature upgrade will take effect only after a restart.

Answer: D

NEW QUESTION 12
A Citrix Engineer observes that after enabling the security checks in Learning mode only in an Application Firewall profile, the NetScaler is blocking the non-RFC compliant HTTP packets.
What can the engineer modify in the configuration to resolve this issue?

• A. Disable Drop Invalid Requests in the HTTP Profile settings.
• B. Set Default profile in application firewall settings as APPFW_BYPASS.
• C. Set Undefined Action in application firewall settings as APPFW_BYPASS.
• D. Enable Drop Invalid Requests in the HTTP Profile settings.

Answer: B

NEW QUESTION 13
A Citrix Engineer observes the following event in the ns.log:
Aug 3 11:55:58 <local0.info> 10.248.64.10 08/03/2015:15:55:58 GMT ATL0NS01 0-PPE-1: default APPFW APPFW_STARTURL 406856 0: 10.248.13.13 11152-PPE1
LG+hd4LkcYiOyQVWvOTsCtSyiv00001 SPI Disallow illegal URL: https://training.citrix.com/login
<blocked>
Which Application Firewall profile has blocked the URL?

• A. SPI
• B. APPFW_STARTURL
• C. ATL0NS01
• D. SPI Disallow illegal URL

Answer: C

NEW QUESTION 14
Which NetScaler Management and Analytics System (NMAS) feature will assist the Citrix Engineer in gathering the required data for issues with Endpoint Analysis?

• A. Security Insight
• B. Web Insight
• C. HDX Insight
• D. Gateway Insight

Answer: A

NEW QUESTION 15
Scenario: A Citrix Engineer needs to set up a NetScaler Web Logging (NSWL) client system for logging. The engineer attempted to start the NSWL service on the client system and found that the service is NOT starting.
What could be causing this issue?

• A. TCP 3011 is NOT open between the NetScaler SNIP and the NSWL client.
• B. log.conf file is NOT properly configured on the NSWL client.
• C. Web Logging feature is NOT installed on the NetScaler.
• D. “nswl-verify” command has NOT yet been run on the NSWL client.

Answer: D

NEW QUESTION 16
Which protocol does NetScaler Management and Analytics System (NMAS) use when Discovery is run to locate instances?

• A. RIP
• B. TCP
• C. ICMP
• D. NITRO

Answer: C

Explanation:
The NetScaler MAS server sends an Internet Control Message Protocol (ICMP) ping to locate the instance. Then, it uses the instance profile details to log on to the instance. Using a NetScaler NITRO call, NetScaler MAS retrieves the license information of the instance. On the basis of the licensing information, it determines whether the instance is a NetScaler instance and the type of NetScaler platform (for example, NetScaler MPX, NetScaler VPX, NetScaler SDX, or NetScaler Gateway). On succesful detection of the NetScaler instance, it is added to the NetScaler MAS server’s database.

NEW QUESTION 17
A Citrix Engineer is considered that malicious users could exploit a web system by sending a large cookie. Which security check can the engineer implement to address this concern?

• A. Field Formats
• B. Content-type
• C. Buffer Overflow
• D. Start URL

Answer: C