1Y0-340 Online Practice Questions and Answers

A Citrix Engineer needs to ensure that clients always receive a fresh answer from the integrated cache for positive responses (response of 200).

Which two settings can the engineer configure to make sure that clients receive a fresh response when it is needed? (Choose two.)

A. –flashCache NO

B. –pollEveryTime YES

C. –prefetch YES

D. –quickAbortSize

A Citrix Engineer needs to configure an Application Firewall policy. According to company policies, the engineer needs to ensure that all the requests made to the website are originating from North America.

Which policy expressions will help the engineer accomplish the requirement?

A. CLIENT.IP.SRC.MATCHES_LOCATION ("North America.US.*.*.*.*")

B. CLIENT.IP.SRC.MATCHES_LOCATION ("North America.US.*.*.*.*"). NOT

C. CLIENT.IP.DST.MATCHES ("North America.US.*.*.*.*")

D. CLIENT.IP.SRC.MATCHES ("North America.US.*.*.*.*")

Scenario: A Citrix Engineer has enabled learning on Application Firewall for all the Security checks on a basic profile that is configured in a production environment. However, after a few hours, the Application Firewall has stopped learning new data.

What is causing the issue?

A. The learning database is limited to 20 MB in size and needs a reset.

B. Application Firewall learning can only be enabled for an advanced profile.

C. Application Firewall learning should only be enabled on Start URL.

D. All the Security checks CANNOT be enabled simultaneously.

A Citrix Engineer has determined that users are able to access random URLs on a web site through bookmarks and by manually typing in the URLs to skip the pages required to reach that part of the website.

Which two checks can the engineer enable to prevent this attack? (Choose two.)

A. Form Field Consistency

B. Deny URL

C. Start URL

D. Buffer overflow

E. HTML Cross-site scripting

A Citrix Engineer has correctly installed and configured the NetScaler Web Logging (NSWL) client but has noticed that logs are NOT being updated.

What could be causing this issue?

A. The TCP port 3011 is NOT open between the NSWL client and NetScaler.

B. The NSWL client executable is NOT running on the client.

C. The NSWL buffer is full on the NetScaler.

D. An NSIP is missing in the log.conf file

Which NetScaler owned IP address is used by NetScaler Management and Analytics System (NMAS) to communicate with NetScaler Instances?

A. VIP (Virtual IP)

B. NSIP (NetScaler IP)

C. CLIP (Cluster IP)

D. SNIP (Subnet IP)

Scenario: A Citrix Engineer configured an HTTP Denial-of-Service (DoS) protection policy by setting the Surge Queue depth to 300. The surge queue reaches a size of 308, triggering the NetScaler "attack" mode. The HTTP DoS window mechanism is left at the default size which, when reached, will trigger "noattack" mode.

Which queue depth value must the Surge Queue be to trigger the "no-attack" mode?

A. size should be less than 280.

B. size should be 300.

C. size should be 290.

D. size should be between 280 and 300.

Which aspect of NetScaler Management and Analytics System (NMAS) can be used to monitor end-to-end ICA traffic flowing through a NetScaler ADC?

A. Gateway Insight

B. HDX Insight

C. Security Insight

D. Web Insight

A Citrix Engineer needs to ensure that infrastructure is PCI DSS compliant.

Which two are prerequisite actions for PCI DSS compliance? (Choose two.)

A. Use only vendor-supplied defaults for system passwords and other security parameters.

B. Assign a unique ID to each person with computer access.

C. Track and monitor every transaction of the cardholder.

D. Regularly test security systems and processes.

E. Ensure that cardholder data is sent unencrypted over public networks.

A company has experienced an outage of their mission-critical website. Upon investigation, the Citrix Engineer determines that the following command was executed on the website:

DROP TABLE table_name

Which security check would have prevented this issue?

A. HTML SQL Injection

B. Form Field Consistency

C. HTML Cross-Site Scripting

D. Field Formats