Citrix 1Y0-341 Free Practice Questions

NEW QUESTION 1
Which protection can a Citrix Engineer implement to prevent a hacker from extracting a customer list from the company website?

• A. Cross-Site Request Forgeries (CSRF)
• B. Form Field Consistency
• C. HTML Cross-Site Scripting (XSS)
• D. HTML SQL Injection

Answer: D

NEW QUESTION 2
Scenario: A Citrix Engineer has configured Integrated Caching to improve application performance. Within hours, the Citrix ADC appliance has run out of memory.
Which Content Group setting can the engineer configure to show the caching process until a need is demonstrated?

• A. Maximum memory usage limit
• B. Quick Abort Size
• C. Do not cache – if hits are less than
• D. Do not cache – if size exceeds

Answer: A

NEW QUESTION 3
What is required for Implementing to the Citrix Application Delivery Management (ADM) Service?

• A. Citrix Hypervisor
• B. Citrix Cloud subscription
• C. Citrix Virtual Apps and Desktops
• D. Citrix ADC Instances

Answer: B

NEW QUESTION 4
Which Citrix Application Delivery Management (ADM) Analytics page allows a Citrix Engineer to monitor web application traffic?

• A. Web Insight
• B. WAN Insight
• C. HDX Insight
• D. Gateway Insight

Answer: A

NEW QUESTION 5
A Web Application Engineer is reviewing log files and finds that a large number of bad HTTP requests are being sent to the web application servers.
What can the Citrix ADC Engineer to do prevent bad HTTP requests from getting to the web application?

• A. Create an HTTP profile and select 'Drop invalid HTTP requests’.Assign the HTTP profile to the virtual server.
• B. Create an HTTP profile and select 'Drop invalid HTTP requests’.Assign the HTTP profile to the Web App Firewall policy.
• C. Modify the default HTTP profile and select 'Drop invalid HTTP requests’.Bind the default HTTP profile globally.
• D. Select ‘Change HTTP Parameters’ under System > Settings.Select 'Drop invalid HTTP requests’.

Answer: C

NEW QUESTION 6
Which protection ensures that links to sensitive pages can only be reached from within an application?

• A. Form Field Consistency Check
• B. Buffer Overflow Check
• C. URL Closure
• D. Deny URL

Answer: C

NEW QUESTION 7
Scenario: A Citrix Engineer notices that a web page takes a long time to display. Upon further investigation, the engineer determines that the requested page consists of a table of high-resolution pictures which are being displayed in table cells measuring 320 by 180 pixels.
Which Front End Optimization technique can the engineer enable on the Citrix ADC to improve time-to-display?

• A. Shrink to Attributes
• B. Make Inline
• C. Extend Page Cache
• D. Minify

Answer: A

NEW QUESTION 8
Scenario: A Citrix Engineer has enabled the IP Reputation feature. The engineer wants to protect a critical web application from a distributed denial of service attack.
Which advanced expression can the engineer write for a Responder policy?

• A. CLIENT.IP.SRC.IPREP_THREAT_CATEGORY(SPAM_SOURCES)
• B. CLIENT.IP.SRC.IPREP_THREAT_CATEGORY(BOTNETS)
• C. CLIENT.IP.SRC.IPREP_THREAT_CATEGORY(WEB_ATTACKS)
• D. CLIENT.IP.SRC.IPREP_THREAT_CATEGORY(WINDOWS_EXPLOITS)

Answer: C

NEW QUESTION 9
Scenario: A Citrix Engineer needs to forward the Citrix Web App Firewall log entries to a central management service. This central management service uses an open log file standard.
Which log file format should the engineer use in the Citrix Web App Firewall engine settings to designate the open log file standard?

• A. CEF
• B. IIS
• C. W3C
• D. TLA

Answer: A

NEW QUESTION 10
Scenario: A Citrix Engineer wants to protect a web application using Citrix Web App Firewall. The engineer enables the Learn action for the Start URL, HTML, Cross-Site Scripting, and HTML SQL Injection protections. The engineer assigns this profile to a policy, which is then bound to the virtual server.
Which two items can the engineer check to determine that the Learn action is NOT capturing any rules? (Choose two.)

• A. The HTML Error Object is configured for the profile.
• B. Enough space is left on the /flash file system.
• C. The aslearn process is running on the Citrix ADC appliance.
• D. The Learn database is less than 20 MB.

Answer: AC

NEW QUESTION 11
Scenario: A Citrix Engineer needs to ensure that the flow of traffic to a web application does NOT overwhelm the server. After thorough testing, the engineer determines that the application can handle a maximum of 3,000 requests per minute. The engineer builds a limit identifier, rl_maxrequests, to enforce this limitation.
Which advanced expression can the engineer write in the Responder policy to invoke rate limiting?

• A. SYS.CHECK_LIMIT(“rl_maxrequests”)
• B. SYS.CHECK_LIMIT(“rl_maxrequests”).CONTAINS(“Busy”)
• C. SYS.CHECK_LIMIT(“rl_maxrequests”).IS_VALID
• D. SYS.CHECK_LIMIT(“rl_maxrequests”).GE(3000)

Answer: B

NEW QUESTION 12
Which two protections ensure that the correct data is returned by the client? (Choose two.)

• A. Form Field Consistency.
• B. Field Formats
• C. HTML Cross-Site Scripting (XSS)
• D. Cross-Site Request Forgeries (CSRF)

Answer: AD

NEW QUESTION 13
Scenario: During application troubleshooting, a Citrix Engineer notices that response traffic received from a protected web application is NOT matching what the web server is sending out. The engineer is concerned that someone is trying to disrupt caching behavior.
Which action is the Citrix Web App Firewall performing that would trigger this false positive?

• A. Removing the Last-Modified header
• B. Inserting a hidden form field
• C. Removing the Accept-Encoding header
• D. Modifying and adding cookies in the response

Answer: A

NEW QUESTION 14
Scenario: A Citrix Engineer manages Citrix Application Delivery Management (ADM) for a large holding company. Each division maintains its own ADC appliances. The engineer wants to make Citrix ADM features and benefits available to each group independently.
What can the engineer create for each division to achieve this?

• A. A site
• B. A role
• C. A tenant
• D. A dashboard
• E. A group

Answer: C

NEW QUESTION 15
Scenario: A Citrix Engineer configured signature protections for Citrix Web App Firewall. Signature Auto- Update has been enabled. Upon reviewing the log files, the engineer notices that the auto update process has an error. In the settings for Signature Auto Update the engineer notices that the URL is blank.
Which URL should the engineer enter to restore the update process?

• A. https://s3.amazonaws.com/NSAppFwSignatures/SignaturesMapping.xml
• B. https://download.citrix.com/NSAppFwSignatures/SignaturesMapping.xml
• C. https://www.citrix.com/NSAppFwSignatures/SignaturesMapping.xml
• D. https://citrix.azure.com/NSAppFwSignatures/SignaturesMapping.xml

Answer: A

NEW QUESTION 16
Which feature of Citrix Web App Firewall builds rules from known good traffic?

• A. Sessionization
• B. App Expert
• C. Adaptive learning engineer
• D. SNORT signatures

Answer: C

NEW QUESTION 17
Which data populates the Events Dashboard?

• A. Syslog messages
• B. SNMP trap messages
• C. API calls
• D. AppFlow IPFIX records

Answer: A

NEW QUESTION 18
A Citrix Engineer wants to create a configuration job template to add a DNS nameserver to each Citrix ADC instance. What is a valid variable name for the DNS nameserver?

• A. %dns_nameserver%
• B. %dns_nameserver
• C. $dns_nameserver$
• D. $dns nameserver

Answer: C

NEW QUESTION 19
Which variable will display the client’s source IP address when added to an HTML Error Object page?

• A. $[CLIENT.IP.SRC]
• B. ${CLIENT.IP.SRC}
• C. $
• D. $(CLIENT.IP.SRC)

Answer: B

NEW QUESTION 20
......