1Y0-340 Online Practice Questions and Answers

A Citrix Engineer configures the integrated caching feature to cache both static and dynamic content, but the integrated cache feature does NOT work as expected.

Which two resources can the engineer use to troubleshoot this integrated cache issue? (Choose two.)

A. core dump

B. dmesg

C. nstrace

D. ns.conf

E. sysctl-a

Scenario: A Citrix Engineer configures an Application Firewall HTML SQL Injection Check and sets it to BLOCK and to use SQLSplCharANDKeyword as the SQL injection type. The engineer checks the logs and finds that nothing is being blocked.

What can be the cause of the Application Firewall failing to block the attack?

A. The request contains SQL Wildcard Characters.

B. The request neither contains SQL Special Characters nor keywords.

C. The request only contains SQL Special Characters.

D. The request only contains SQL keywords.

Which protocol does NetScaler Management and Analytics System (NMAS) use when Discovery is run to locate instances?

A. RIP

B. TCP

C. ICMP

D. NITRO

A Citrix Engineer needs to write a regular expression to treat the URL www.citrix.com as a literal string.

Which regular expression can the engineer use?

A. www$.citrix$.com

B. [www\]. [citrix\]. [com\]

C. www+.citrix+.com

D. www\.citrix\.com

An attacker inserting a malicious code that compromises the trust relationship between users and a web application is an example of a (n) _____ attack. (Choose the correct option to complete the sentence.)

A. Cookie Tampering

B. SQL Injection

C. Form Field Consistency

D. Cross-site Scripting

A Citrix Engineer is configuring an Application Firewall Policy to protect a website. Which expression will the engineer use in the policy?

A. HTTP.RES.IS_VALID

B. HTTP.REQ.HOSTNAME.EQ ("true")

C. HTTP.RES.HEADER ("hostname").EQ ("true")

D. HTTP.REQ.IS_VALID

What can a Citrix Engineer do to decrease browser load times by increasing the number of parallel connections to the resource?

A. Configure Domain Sharding.

B. Add more web servers.

C. Block JavaScript on client browsers.

D. Do NOT allow HTML websites.

Scenario: A Citrix Engineer has migrated an application to NetScaler to secure it from application layer attacks. The engineer receives a complaint that the application is timing out while users are actively accessing the page. Those users are forced to reestablish the connection.

What can be the cause of this issue?

A. The maximum session lifetime is NOT configured.

B. The session time out is configured to a low value.

C. The application is configured with a low session timeout.

D. The maximum session lifetime is less than the session timeout.

Which requirement must be addressed to implement the IP Reputation feature on a NetScaler MPX appliance?

A. The NetScaler appliance must be able to connect to api.bcti.brightcloud.com on port 443.

B. The NetScaler appliance must be able to connect to wiprep-rtu.s3-us-west- 2.amazonaws.com on port

80.

C. The NetScaler appliance must be able to connect to api.bcss.brightcloud.com on port 80.

D. The NetScaler appliance must be able to connect to wiprep-rtu.s3-us-west- 2.amazonaws.com on port

443.

Scenario: A Citrix Engineer is trying to optimize a website that is load balanced on a NetScaler and is accessed by mobile users. The web application is complex and made up of hundreds of embedded images, scripts, and other objects per page. This limitation is creating a significant bottleneck, resulting in excessive load times.

Which NetScaler feature can the engineer use to optimize the web application?

A. Domain Sharding

B. SPDY (Speedy)

C. Multipath TCP

D. Minification

Which two threats can be prevented by using IP Reputation? (Choose two.)

A. Trojan horses

B. Phishing Proxies

C. Worm

D. Compromised IPv6 web-server

E. Compromised IPv4 web-server

Which media-character can be used as an escape character and also can qualify a Meta- Character as literal when used before any character?

A. A backslash (\)

B. A pipe (|)

C. A dollar sign ($)

D. A forward slash (/)

A Citrix Engineer needs to protect a website that contains sensitive data such as employee ID numbers and customer ID numbers.

Which security check can the engineer implement to protect the sensitive data?

A. Content-type

B. Safe Object Check

C. Field Formats

D. CSRF Form tagging

Scenario: A Citrix Engineer needs to configure Application Firewall to handle SQL injection issues. However, after enabling SQL injection check, the backend server started dropping user requests.

The Application Firewall configuration is as follows:

add appfw profile Test123 –startURLAction none- denyURLAction nonecrossSiteScriptingAction none – SQLInjectionAction log stats- SQLInjection TransformSpecialChars ON – SQLInjectionCheckSQLWildChars ON- fieldFormatAction none- bufferOverflowAction noneresponseContentType “application/octet-stream”–XMLSQLInjectionAction none- XMLXSSAction none-XMLWSIAction none-XMLValidationAction none

What does the engineer need to change in the Application Firewall configuration?

A. Enable-XMLSQLInjectionAction none

B. Enable-XMLValidationAction none

C. Disable- SQLInjectionCheckSQLWildChars ON

D. Disable- SQLInjectionTransformSpecialChars ON

What criteria must be met in order to create a certificate bundle by linking multiple certificates in NetScaler Management and Analytics System (NMAS)?

A. The issuer of the first certificate must match the domain of the second certificate.

B. The issuer if the first certificate must NOT have issued the second certificate.

C. The certificates must be created on the NetScaler.

D. The certificates must be issued by an external Certificate Authority.