• Home
  • Articles
  • Authentic Best resources for 1Y0-341 Test Engine Practice Exam [Q35-Q57]

Authentic Best resources for 1Y0-341 Test Engine Practice Exam [Q35-Q57]

Share

Authentic Best resources for 1Y0-341 Test Engine Practice Exam

[2021] 1Y0-341 PDF Questions - Perfect Prospect To Go With PracticeVCE Practice Exam

NEW QUESTION 35
Statistics for which three types of violations are presented on the App Security Dashboard? (Choose three.)

  • A. SSL Enterprise Policy
  • B. AAA
  • C. Web App Firewall protection
  • D. IP Reputation
  • E. Signature

Answer: C,D,E

Explanation:
Explanation/Reference: https://docs.citrix.com/en-us/citrix-application-delivery-management-service/analytics/security/ security-violations.html

 

NEW QUESTION 36
Which aspect of NetScaler Management and Analytics System (NMAS) can be used to monitor end- to-end ICA traffic flowing through a NetScaler ADC?

  • A. Security Insight
  • B. Gateway Insight
  • C. Web Insight
  • D. HDX Insight

Answer: D

 

NEW QUESTION 37
A Citrix Engineer needs to configure NetScaler Management and Analytics System (NMAS) in their network to retain network reporting data, events, audit logs, and task logs for 20 days. Which settings can the engineer configure to meet the requirement?

  • A. System Prune Settings
  • B. Instance Backup Settings
  • C. Syslog Prune Settings
  • D. System Backup Settings

Answer: A

 

NEW QUESTION 38
The NetScaler processes HTTP/2 web client connections to the backend web servers by _________.
(Choose the correct option to complete the sentence.)

  • A. Dropping HTTP/2 requests as it is NOT supported by web servers.
  • B. Converting HTTP/2 to HTTP 0.9 and forwarding the packets to the web servers.
  • C. Passing- through all HTTP/2 traffic to the web servers.
  • D. Converting the HTTP/2 headers to HTTP/1.1 headers and forwarding them to the web servers.

Answer: D

 

NEW QUESTION 39
Which Citrix Web App Firewall engine setting can a Citrix Engineer use to ensure that protections are applied in the event that an advanced policy expression cannot be evaluated as either 'True' or 'False'?

  • A. Undefined profile
  • B. Default profile
  • C. Entity Decoding
  • D. Session Limit

Answer: D

 

NEW QUESTION 40
Scenario: A Citrix Engineer has deployed Front-end Optimization on NetScaler. Below is the snippet of the content before and after optimization.
Before Optimization:

After Optimization:

Which optimization technique has been applied to the content?

  • A. CSS Minify
  • B. CSS Combine
  • C. CSS Make Inline
  • D. CSS Move to Head Tag

Answer: C

 

NEW QUESTION 41
When the NetScaler marks a client connection as "non-trackable", the default behavior of the NetScaler without making any change to the HTTP Profile is to ______. (Choose the correct option to complete the sentence.)

  • A. drop the connection.
  • B. track the connection.
  • C. proxy the connection to the client.
  • D. proxy the connection to the target.

Answer: A

 

NEW QUESTION 42
A Citrix Engineer needs to set the rate at which connections are proxied from the NetScaler to the server.
Which values should the engineer configure for Surge Protection?

  • A. Base Threshold and Throttle
  • B. TCP Threshold and Reset Threshold
  • C. UDP Threshold and Start Port
  • D. Grant Quota and Buffer Size

Answer: A

 

NEW QUESTION 43
Which is a single-digit rating system that indicates the criticalness of attacks on the application, regardless of whether or NOT the application is protected by a NetScaler appliance?

  • A. Threat Index
  • B. App Store
  • C. Safety Index
  • D. Transactions

Answer: A

 

NEW QUESTION 44
A Citrix Engineer for an online retailer wants to ensure that customer address information is NOT stolen. Which protection can the engineer implement to prevent this?

  • A. Credit Card Check
  • B. HTML SQL Injection
  • C. For Field Consistency
  • D. Cross-Site Request Forgeries (CSFR)

Answer: B

 

NEW QUESTION 45
A Citrix Engineer needs to prevent an attack against insecure operating-system or web-server software.
The attack can cause the system to crash or behave unpredictably when it receives a data string that is larger than it can handle.
Which security check on the Application Firewall can the engineer enable to prevent such attacks?

  • A. Start URL
  • B. Deny URL
  • C. Buffer Overflow
  • D. Field Format

Answer: C

 

NEW QUESTION 46
Which mechanism does the NetScaler use to enable a safe and speedy data exchange between a client/ server initial TCP handshake?

  • A. TCP Burst Rate Control
  • B. TCP Time Stamp
  • C. TCP Hystart
  • D. TCP Fast Open (TFO)

Answer: D

 

NEW QUESTION 47
Scenario: A Citrix Engineer has established protections for web applications using Citrix Web App Firewall. One of the application owners is concerned that some negative traffic is passing through to the application servers. The owner wants confirmation that Citrix Web App Firewall is blocking negative traffic. Which CLI command can the engineer use to display statistics on a per-protection basis for the enabled protections?

  • A. stat appfw policyjabel <policy_label_name>
  • B. stat appfw signature <signature_object>
  • C. stat appfw profile <profile_name>
  • D. stat appfw policy <policy_name>

Answer: C

 

NEW QUESTION 48
Scenario: A Citrix Engineer configures the Application Firewall for protecting a sensitive website.
The security team captures traffic between a client and the website and notes the following cookie:
citrix_ns_id
The security team is concerned that the cookie name is a risk, as it can be easily determined that the NetScaler is protecting the website.
Where can the engineer change the cookie name?

  • A. Application Firewall Profile
  • B. Application Firewall Policy
  • C. Application Firewall Engine Settings
  • D. Application Firewall Default Signatures

Answer: A

 

NEW QUESTION 49
A Citrix Engineer needs to configure an Application Firewall policy. According to company policies, the engineer needs to ensure that all the requests made to the website are originating from North America. Which policy expressions will help the engineer accomplish the requirement?

  • A. CLIENT.IP.SRC.MATCHES ("North America.US.*.*.*.*")
  • B. CLIENT.IP.SRC.MATCHES_LOCATION ("North America.US.*.*.*.*"). NOT
  • C. CLIENT.IP.DST.MATCHES ("North America.US.*.*.*.*")
  • D. CLIENT.IP.SRC.MATCHES_LOCATION ("North America.US.*.*.*.*")

Answer: D

 

NEW QUESTION 50
Scenario: During application troubleshooting, a Citrix Engineer notices that response traffic received from a protected web application is NOT matching what the web server is sending out.
The engineer is concerned that someone is trying to disrupt caching behavior.
Which action is the Citrix Web App Firewall performing that would trigger this false positive?

  • A. Inserting a hidden form field
  • B. Removing the Last-Modified header
  • C. Modifying and adding cookies in the response
  • D. Removing the Accept-Encoding header

Answer: D

 

NEW QUESTION 51
Scenario: A Citrix Engineer has configured a Denial-of-Service (DoS) protection on the NetScaler and found that client TCP connections are failing. After taking a packet trace, the engineer notices that the first packet was dropped and that the NetScaler terminated the connection due to DoS protection being enabled.
What step can the engineer take to resolve the client connection failure?

  • A. Change the services from TCP to HTTP.
  • B. Enable the SYN COOKIE mechanism.
  • C. Disable the SYN COOKIE mechanism.
  • D. Enable Denial-of-Service TCP connections.

Answer: B

 

NEW QUESTION 52
Scenario: A Citrix Engineer configures Citrix Web App Firewall to protect an application. Users report that they are NOT able to log on. The engineer enables a Start URL relaxation for the path //login.aspx.
What is the effect of the Start URL relaxation on the application?

  • A. External users are blocked from the path /login.aspx.
    Internal users are permitted to the path /login.aspx.
  • B. Access to the path /login.aspx is unblocked.
  • C. Non-administrative users are blocked from the path /login.aspx
    Administrative users are permitted to the path /login.aspx.
  • D. Access to the path /login.aspx is blocked.

Answer: B

Explanation:
Explanation/Reference:

 

NEW QUESTION 53
Scenario: A Citrix Engineer configures Citrix Web App Firewall to protect an application. Upon reviewing the log files, the engineer notices a pattern of forceful browsing toward the configuration page for the application. To protect against this, the engineer enforces Start URL and enables Enforce URL Closure.
What is the effect of enforcing Start URL and enabling Enforce URL Closure on the application?

  • A. Access to the path /config.aspx is unblocked when a user clicks a referring link elsewhere on the website.
  • B. External users are blocked from the path /config.aspx.
    Internal users are permitted to the path /config.aspx.
  • C. Access to the path /config.aspx is blocked.
  • D. Non-administrative users are blocked from the path /config.aspx.
    Administrative users are permitted to the path /config.aspx.

Answer: A

 

NEW QUESTION 54
Scenario: A Citrix Engineer needs to configure Application Firewall to handle SQL injection issues. However, after enabling SQL injection check, the backend server started dropping user requests.
The Application Firewall configuration is as follows:
add appfw profile Test123 startURLAction none- denyURLAction none-crossSiteScriptingAction none - SQLInjectionAction log stats- SQLInjectionTransformSpecialChars ON SQLInjectionCheckSQLWildChars ON- fieldFormatAction none- bufferOverflowAction none- responseContentType "application/octet-stream" XMLSQLInjectionAction none- XMLXSSAction none-XMLWSIAction none- XMLValidationAction none What does the engineer need to change in the Application Firewall configuration?

  • A. Enable-XMLSQLInjectionAction none
  • B. Disable- SQLInjectionCheckSQLWildChars ON
  • C. Enable-XMLValidationAction none
  • D. Disable- SQLInjectionTransformSpecialChars ON

Answer: B

 

NEW QUESTION 55
A Citrix Engineer has deployed Front-end Optimization on NetScaler. The following are the snippets of the content before and after optimization.
Before Optimization:

After Optimization:

Which optimization technique has been applied to the content?

  • A. Minify CSS
  • B. Combine CSS
  • C. Inline CSS
  • D. Linked JavaScript to inline JavaScript

Answer: B

 

NEW QUESTION 56
A Citrix Engineer wants the Citrix Web App Firewall to respond with a page stored on the Citrix ADC when a violation is detected.
Which profile setting accomplishes this?

  • A. HTML Error Object
  • B. RFC Profile
  • C. Redirect URL
  • D. Default Request

Answer: A

Explanation:
https://support.citrix.com/article/CTX140293

 

NEW QUESTION 57
......

Best updated resource for 1Y0-341 Online Practice Exam: https://www.practicevce.com/Citrix/1Y0-341-practice-exam-dumps.html

Realistic Practice 1Y0-341 Citrix ADC Advanced Topics – Security, Management and Optimization Exam Braindumps: https://drive.google.com/open?id=1-zD4ggxEtxKSwOMj7BMi6DV-aD3r8Sop

Related Articles

more
Citrix 1Y0-341 Certification Practice Exam