[2023年11月]更新のCitrix 1Y0-241試験一発合格保証!
完全版1Y0-241練習テスト113独特な解答と解釈が待ってます!今すぐ取得せよ!
質問 # 67
A Citrix Administrator configured global server load balancing (GSLB) for www.citrix.com, with two ADNS services named Citrix ADC 1 and Citrix ADC 2 in the setup.
Which record does the administrator need to add on the parent DNS server to delegate requests from www.citrix.com to Citrix ADC 1 and Citrix ADC 2?
- A. Pointer Record (PTR)
- B. Canonical Name (CNAME)
- C. Name Server (NS) record
- D. Address (A) record
正解:C
質問 # 68
What is the first thing a Citrix Administrator should develop when creating a server certificate for Citrix ADC to secure traffic?
- A. A certificate revocation list (CRL)
- B. A certificate signing request (CSR)
- C. A private key
- D. A certificate key-pair
正解:C
解説:
Explanation
https://docs.citrix.com/en-us/citrix-adc/current-release/ssl/how-to-articles/create-and-use-ssl-certificates-on-a-cit
質問 # 69
Scenario: A Citrix ADC is configured with Interface 1/1 and bound to VLAN 40. A Citrix Administrator executed the below command:
> bind vlan 10 -ifnum 1/1
What is the result of executing this command on the Citrix ADC?
- A. Interface 1/1 is bound to VLAN 20, and native VLAN is NOT changed.
- B. Interface 1/1 is bound to VLAN 20, and native VLAN is 40.
- C. Interface 1/1 is bound to VLAN 20, and native VLAN is 20.
- D. Interface 1/1 is bound to VLAN 20, and native VLAN is 1.
正解:C
解説:
https://www.citrix.com/blogs/2014/12/29/netscaler-vlans-demystified/
https://support.citrix.com/article/CTX115575
質問 # 70
Scenario: A Citrix Administrator needs to improve website loading speed. End users are reporting slow GIF image rendering speeds as they scroll down a website, which affects overall page load time.
Which Citrix ADC feature can the administrator enable to improve website performance?
- A. Image shrink-to attributes
- B. Image lazy loading
- C. Image optimization
- D. Domain sharding
正解:C
解説:
Explanation
Reduces the image to the size indicated in the image tag by Citrix ADC, enabling client browsers to load images faster. https://docs.citrix.com/en-us/citrix-adc/current-release/optimization/front-end-optimization.html
質問 # 71
Scenario: A Citrix Administrator configured SNMP to send traps to an external SNMP system. When reviewing the messages, the administrator notices several entity UP and entity DOWN messages.
To what are these messages related?
- A. SSL profile
- B. High availability nodes
- C. Network interface
- D. Load-balancing vServers
正解:D
質問 # 72
Which setting is responsible for reducing the server load, improving response time, and increasing the number of SSL transactions per second on an SSL vServer?
- A. SSLv3
- B. SSLv2 redirect
- C. Session reuse
- D. Session timeout
正解:C
解説:
Explanation
answer: D. Session reuse
Short Explanation with reference:
Session reuse is a feature that allows the Citrix ADC appliance to reuse an existing SSL session between the client and the server, instead of creating a new one for each request1. This reduces the server load, improves response time, and increases the number of SSL transactions per second on an SSL vServer, as the session establishment process involves expensive cryptographic operations2. Session reuse is enabled by default on the Citrix ADC appliance, but it can be disabled or configured with different options1.
1: Configuring Session Reuse | NetScaler 2: Lightboard Lessons: SSL Transactions Per Second - DevCentral - F5, Inc.
質問 # 73
The Citrix ADC SDX architecture allows instances to share ___________ and __________. (Choose the two correct options to complete the sentence.)
- A. a physical interface
- B. a CPU
- C. memory
- D. the kernel
正解:A、B
解説:
Explanation
On Citrix ADC SDX, instances get dedicated and shared resources: The memory resources are dedicated to an instance. The CPU resources can be dedicated, or shared, depending on the requirements Allocation of the network devices is flexible in Citrix ADC SDX. The devices can be shared or dedicated based on the security or compliance requirements. Each instance gets its own kernel.
質問 # 74
A Citrix Administrator needs to match the host name 'www.example.com' in all HTTP requests.
Which expression, when used, meets this requirement?
- A. HTTP.REQ.HOSTNAME.EQ("www.example.com")
- B. HTTP.RES.HOSTNAME.CONTAINS("www.example.com")
- C. HTTP.REQ.HOSTNAME("example.com")
- D. HTTP.RES.HOSTNAME.EQ("www.example.com")
正解:B
質問 # 75
Scenario: A Citrix Administrator configured a global server load balancing (GSLB) setup for internal and external users using the same host name. For internal users, cvad.citrite.net should go to the Citrix StoreFront site; for external users, it should connect to the Citrix ADC Gateway VPN site.
Which feature should the administrator configure to accomplish this?
- A. DNS Preferred Location
- B. DNS View
- C. DNS Proxy
- D. DNS Record
正解:B
質問 # 76
Scenario: While attempting to access web server that is load balanced by a Citrix ADC using HTTPS, a user receives the message below.
SSL/TLS error: You have not chosen to trust "Certificate Authority" the issuer of the server's security certificate.
What can a Citrix Administrator do to prevent users from viewing this message?
- A. Ensure that users have the certificate's public key.
- B. Ensure that users have the certificate's private key.
- C. Ensure that users have the server certificate installed.
- D. Ensure that the server certificate is linked to its respective intermediate and root certificates.
正解:D
解説:
https://support.citrix.com/article/CTX101990
質問 # 77
Which two steps are necessary to configure global server load balancing (GSLB) service selection using content switching (CS)? (Choose two.)
- A. Configure CS policies that designate a load-balancing vServer as the target vServer.
- B. Bind the GSLB domain to the GSLB vServer.
- C. Bind the domain to the CS vServer instead of the GSLB vServer.
- D. Configure a CS vServer of target type GSLB.
正解:A、D
解説:
Explanation/Reference: https://docs.citrix.com/en-us/citrix-adc/current-release/global-server-load-balancing/how-to/ configure-gslb-content-switch.html
質問 # 78
Which step can a Citrix Administrator take to use default compression policies?
- A. Select the compression algorithm (gzip/deflate/identity).
- B. Disable the Citrix ADC compression feature at a global level.
- C. Bind the default compression policies to the vServer.
- D. Enable compression on the associated bound services.
正解:D
解説:
Explanation
To put a compression policy into effect, you must bind it either globally, so that it applies to all traffic that flows through the Citrix ADC, or to a specific virtual server, so that the policy applies only to requests whose destination is the VIP address of that virtual server.
By default, compression is disabled on the Citrix ADC. You must enable the feature before configuring it. You can enable it globally so that it applies to all HTTP and SSL services, or you can enable it just for specific services.
https://docs.citrix.com/en-us/citrix-adc/current-release/load-balancing/load-balancing-advanced-settings/enable-c
質問 # 79
A Citrix Network Engineer informs a Citrix Administrator that a data interface used by Citrix ADC SDX is being saturated.
Which action could the administrator take to address this bandwidth concern?
- A. Add a second interface to each Citrix ADC VPX instance.
- B. Configure LACP on the SDX for management interface.
- C. Configure a failover interface set on each Citrix ADC VPX instance.
- D. Configure LACP on the SDX for the data interface.
正解:D
解説:
Reference:
241_Exam_Preparation_Guide_v01.pdf
質問 # 80
In an SSL offload deployment, which policy will allow a Citrix Administrator to modify all URLs in the response body from "http://" to "https://"?
- A. > add rewrite action Act1 replace_all "HTTP.RES.BODY(200000)" "\"https:\"" -pattern "http://"
> add rewrite policy Pol1 trueAct1 NOREWRITE - B. > add rewrite action Act1 replace_all "HTTP.RES.BODY(200000)" "\"http://\"" -pattern "https://"
> add rewrite policy Pol1 trueAct1 NOREWRITE - C. > add rewrite action Act1 replace_all "HTTP.RES.BODY(200000)" "\"https //\"" -pattern "http://"
> add rewrite policy Pol1 trueAct1 NOREWRITE - D. > add rewrite action Act1 replace_all "HTTP.RES.BODY(200000)" "\"http:\"" -pattern "\https://\"
> add rewrite policy Pol1 trueAct1 NOREWRITE
正解:A
解説:
Explanation
answer: D.
Short Explanation with reference:
A rewrite policy is a set of rules that defines how the Citrix ADC appliance modifies the requests and responses that it processes. A rewrite policy consists of an expression that evaluates to true or false, and an action that specifies what modification to perform. A rewrite action can use the replace_all function to replace all occurrences of a pattern in a string with another string.
In
an SSL offload deployment, the Citrix ADC appliance terminates the SSL traffic from the clients and forwards the clear text traffic to the servers. This can cause a problem if the response body from the servers contains URLs that start with "http://", as they will not match the protocol of the original request, which was "https://".
To fix this problem, the administrator can use a rewrite policy to modify all URLs in the response body from
"http://" to "https://".
The
correct policy for this task is D, as it uses the replace_all function to replace all occurrences of "http://" with
"https://" in the HTTP response body. The other policies are incorrect, as they either use the wrong pattern or the wrong replacement string. For example, policy A replaces "https://" with "http://", which is the opposite of what is required. Policy B uses an incorrect escape character ("
") before the colon (":") in both the pattern and the replacement string. Policy C uses a space (" ") instead of a colon (":") in the replacement string.
Configuring rewrite actions | NetScaler
質問 # 81
A Citrix Administrator notices that the Citrix ADC is sending the IP addresses of all the active services in the DNS response.
The administrator can use the set gslb vServer<name> __________________ parameter to change this behavior.
- A. EDR ENABLED
- B. EDR DISABLED
- C. MIR DISABLED
- D. MIR ENABLED
正解:B
質問 # 82
A Citrix Administrator needs to protect the HTTP backend server type without actually removing the header.
Which rewrite action type can the administrator apply to the Citrix ADC configuration to accomplish this?
- A. REPLACE
- B. CORRUPT_HTTP_HEADER
- C. REPLACE_ALL
- D. REPLACE_HTTP_REQ
正解:A
解説:
Explanation
https://docs.citrix.com/en-us/citrix-adc/current-release/appexpert/rewrite/rewrite-action-policy-examples/exampl
質問 # 83
Scenario: After deploying a Citrix ADC in production, a Citrix Administrator notices that client requests are NOT being evenly distributed among backend resources. The administrator wants to change from the default loadbalancing method to one that will help distribute the load more evenly.
Which load-balancing method would ensure that the server with the least amount of network utilization is receiving new connections?
- A. Least connection
- B. Least response time
- C. Least bandwidth
- D. Least packets
正解:C
解説:
https://docs.citrix.com/en-us/citrix-adc/current-release/load-balancing/load-balancing-customizing-algorithms/leastbandwidth-method.html
質問 # 84
What can a Citrix Administrator use to restrict access to the Citrix ADC management IP (NSIP) address?
- A. Command policy
- B. Access Control List (ACL)
- C. Authorization policy
- D. Authentication policy
正解:B
解説:
Explanation
answer: B. Access Control List (ACL)
Short Explanation with reference:
An Access Control List (ACL) is a set of rules that can be used to allow or deny traffic to or from the Citrix ADC appliance1. A Citrix Administrator can use ACLs to restrict access to the NSIP address, which is the IP address used for management purposes2. By default, secure access to the NSIP address is enabled, but it can be disabled by using the -gui option in the CLI or by unchecking the Secure Access only check-box in the GUI2. Alternatively, a Citrix Administrator can also use the allowedManagementInterface parameter to define the list of permitted management interfaces for system users3.
1: Configuring ACLs | NetScaler 2: How to Enable Secure Access to Citrix ADC GUI Using the SNIP/MIP Address of the Appliance 3: Restricted system user authentication to NetScaler management interfaces
質問 # 85
To protect an environment against Hash DoS attacks, which two configurations can a Citrix Administrator use to block all post requests that are larger than 10,000 bytes? (Choose two.)
- A. > add policy expression expr_hashdos_prevention "http.REQ.METHOD.EQ(\"POST\") ||
http.REQ.CONTENT_LENGTH.GT(10000)"
> add rewrite policy drop_rewrite expr_hashdos_prevention DROP
> bind rewrite global drop_rewrite 100 END -type REQ_OVERRIDE - B. > add policy expression expr_hashdos_prevention "http.REQ.METHOD.EQ(\"POST\") ||
http.REQ.CONTENT_LENGTH.GT(10000)"
> add responder policy pol_resp_hashdos_prevention expr_hashdos_prevention DROP NOOP
> bind responder global pol_resp_hashdos_prevention 100 END -type REQ_OVERRIDE - C. > add policy expression expr_hashdos_prevention "http.REQ.METHOD.EQ(\"POST\") ||
http.REQ.CONTENT_LENGTH.GT(10000)"
> add rewrite policy drop_rewrite expr_hashdos_prevention DROP
> bind rewrite global drop_rewrite 70 END -type REQ_OVERRIDE - D. > add policy expression expr_hashdos_prevention "http.REQ.METHOD.EQ(\"POST\") ||
http.REQ.CONTENT_LENGTH.GT(10000)"
> add responder policy pol_resp_hashdos_prevention expr_hashdos_prevention DROP NOOP
> bind responder global pol_resp_hashdos_prevention 70 END -type REQ_OVERRIDE - E. > add policy expression expr_hashdos_prevention "http.REQ.METHOD.EQ(\"POST\")&&
http.REQ.CONTENT_LENGTH.GT(10000)"
> add responder policy pol_resp_hashdos_prevention expr_hashdos_prevention DROP NOOP
> bind responder global pol_resp_hashdos_prevention 70 END -type REQ_OVERRIDE - F. > add policy expression expr_hashdos_prevention "http.REQ.METHOD.EQ(\"POST\")&&
http.REQ.CONTENT_LENGTH.GT(10000)"
> add rewrite policy drop_rewrite expr_hashdos_prevention DROP
> bind rewrite global drop_rewrite 100 END -type REQ_OVERRIDE
正解:B、E
質問 # 86
......
あなたの合格を助けるCitrix認証と最新のGoShiken 1Y0-241試験問題集解答:https://drive.google.com/open?id=1UqBlVLqIS0rYNCNG5t3v6kG5tilLqIHk
最新1Y0-241問題集試験解答はここにある:https://www.goshiken.com/Citrix/1Y0-241-mondaishu.html