Citrix 1Y0-240 Exam Questions 2021

NEW QUESTION 1
Which policy will allow a Citrix Administrator to modify all the URLs in the response body from “http://” to “https://” in an SSL offload deployment?

• A. add rewrite action Act1 replace_all “HTTP.RES.BODY(200000)” “”http://”" –pattern“https://”add rewrite policy Pol1 true Act1 NOREWRITE
• B. add rewrite action Act1 replace_all “HTTP.RES.BODY(200000)” “”http:”" –pattern “https://”add rewrite policy Pol1 true Act1 NOREWRITE
• C. add rewrite action Act1 replace_all “HTTP.RES.BODY(200000)” “”https://”" –pattern “http://”add rewrite policy Pol1 true Act1 NOREWRITE
• D. add rewrite action Act1 replace_all “HTTP.RES.BODY(200000)” “”https:”" –pattern “http://”add rewrite policy Pol1 true Act1 NOREWRITE

Answer: A

NEW QUESTION 2
Scenario: A Citrix Administrator created an SSL virtual server using only the following commands:
add lb vserver sslvserver SSL 10.102.29.133 444 add service sslsvc1 192.168.0.14 SSL 443
add service sslsvc2 192.168.0.15 SSL 443 bind lb vserver sslvserver sslsvc1
bind lb vserver sslvserver sslsvc2
set ssl vserver sslvserver –ssl3 disabled
The SSL virtual server is currently in a DOWN state.
What could be the reason the SSL virtual server is in a down state?

• A. SSLv3 is disabled.
• B. The SSL Certificate is NOT bound to the virtual server.
• C. The SSL services are NOT on the 10.102.29.X network
• D. The virtual server SSL port is NOT set to port 443.

Answer: C

NEW QUESTION 3
A Citrix Administrator needs to match the host name ‘www.example.com’ in all HTTP requests.
Which expression, when used, meets this requirement?

• A. HTTP.REQ.HOSTNAME.EQ(“www.example.com”)
• B. HTTP.REQ.HOSTNAME.(“example.com”)
• C. HTTP.RES.HOSTNAME.CONTAINS(“www.example.com”)
• D. HTTP.RES.HOSTNAME.EQ(“www.example.com”)

Answer: A

NEW QUESTION 4
Scenario: A user is attempting to access a web server which is load balanced by the NetScaler using HTTPS. The user received the following message:
SSL/TLS error: You have not chosen to trust “Certificate Authority” the issuer of the server’s security certificate.
What can a Citrix Administrator do to prevent users from viewing this message?

• A. Ensure that the intermediate Certificate is linked to the Root Certificate.
• B. Ensure that the user has the Server Certificate installed.
• C. Ensure that the user has the Certificate’s Public key.
• D. Ensure that the intermediate Certificate is linked to the Server Certificate.

Answer: A

NEW QUESTION 5
View the Exhibit.

A Citrix Administrator has noticed that the users trying to access https://mycitrix.training.lab/exchange2021/owa are redirected to CAS_vserver_www instead of CAS_vserver_owa.
Click on the ‘Exhibit’ button to view the screenshot of the command-line interface. What should the administrator change to resolve this issue?

• A. Unbind cs vserver CAS_vserver_cs –lbvserver CAS_vserver_www
• B. Bind cs vserver CAS_vserver_cs –policyName CAS_policy_cs_owa –priority 120
• C. Bind cs vserver CAS_vserver_cs –policyName CAS_policy_cs_owa –priority 80
• D. Add cs policy CAS_policy_cs_owa –rule “HTTP.REQ.URL.SET_TEXT_MODE(IGNORECASE).CONTAINS(”/owa”)” –actionCAS_action_cs_owa

Answer: A

NEW QUESTION 6
A Citrix Administrator is configuring Unified Gateway with authentication policies. Where should the administrator configure NetScaler Gateway authentication policies?

• A. Global level
• B. Unified Gateway level
• C. Content-Switching level
• D. NetScaler Gateway level

Answer: D

NEW QUESTION 7
A Citrix Administrator would like to configure the network in a way that will allow the traffic requests coming from the client to pass through the NetScaler, but the responses from the back-end resources will be sent directly to the client bypassing the NetScaler.
Which feature can the administrator use for this configuration?

• A. Policy-based Routing
• B. Use Source IP (USIP) address
• C. Direct Server Return (DSR)
• D. SmartAccess

Answer: D

NEW QUESTION 8
Scenario: A Load Balancing virtual server (lb_vsrv_www) is configured to load balance service_1 and service_2. A Citrix Administrator needs to bind a content filter policy to the virtual server, such that if the user tries to access http://xenapp.citrix.com, then the request should go to service_1.
Which policy can the administrator use in this scenario?

• A. add filter action Redirect_Service_1_Act redirect Service_1add filter policy Redirect_Service_1_Pol -rule “REQ.HTTP.HEADER HOSTANME CONTAINS xenapp.citrix.com” reqAction Redirect_Service_1_Act
• B. add filter action Redirect_Service_1_Act forward Service_1add filter policy Redirect_Service_1_Pol -rule “REQ.HTTP.HEADER HOSTANME CONTAINS xenapp.citrix.com” reqAction Redirect_Service_1_Act
• C. add filter action Redirect_Service_1_Act forward Service_1add filter policy Redirect_Service_1_Pol -rule “REQ.HTTP.HEADER HOSTANME CONTAINS xenapp.citrix.com”
• D. add filter action Redirect_Service_1_Act respond Service_1add filter policy Redirect_Service_1_Pol -rule “REQ.HTTP.HEADER HOSTANME CONTAINS xenapp.citrix.com”

Answer: A

NEW QUESTION 9
Scenario: A Citrix Administrator is configuring SNMP management on the NetScaler to receive alerts when something fails. The administrator was confident that the Manager, Alarms and SNMP Traps were configured correctly. The following week, there was a NetScaler-related outage and the administrator did NOT get any alerts.
What could be the reason for the SNMP alert failure?

• A. The Community Name was NOT configured on the NetScaler SNMP Trap Destination settings.
• B. The NetScaler only has Standard licensing.
• C. The NetScaler is configured for SNMP version 1.
• D. The NetScaler Application Firewall is blocking the alerts from going out.

Answer: A

NEW QUESTION 10
Which mode does a Citrix Administrator need to configure in order to allow the NetScaler to forward any packets that are NOT destined for an IP address that is NOT configured on NetScaler?

• A. USIP
• B. Layer 3 Mode
• C. Layer 2 Mode
• D. MBF

Answer: A

NEW QUESTION 11
View the Exhibit.

A Citrix Administrator has executed the commands in the screenshot on the NetScaler using the command-line interface.
Click on the ‘Exhibit’ button to view the screenshot of the command-line interface.
Which two replacements will be the outcome of executing these commands? (Choose two.)

• A. http:// will be replaced by https:// in the HTTP RESPONSE
• B. https:// will be replaced by http:// in the HTTP RESPONSE
• C. http:// will be replaced by https:// in the HTTP REQUEST
• D. https:// will be replaced by http:// in the HTTP REQUEST

Answer: BD

NEW QUESTION 12
Scenario: A Citrix Administrator is concerned about the amount of health checks the NetScaler is sending to the backend resources. The administrator would like to find a way to remove health checks from specific bound services.
How can the administrator accomplish this?

• A. Use the No-Monitor option.
• B. Use Service Groups to minimize health checks.
• C. Unbind the current monitor.
• D. Use reverse condition monitoring.

Answer: A

NEW QUESTION 13
A Citrix Administrator needs to configure a rate limiting policy for the DNS requests to a threshold of 1000 DNS requests per second.
Which set of commands does the administrator need to run to correctly configure the rate limiting policy?

• A. add stream selector DNSSelector1 client.udp.dns.domainadd ns limitIdentifier DNSLimitIdentifier1 –threshold 5 –timeSlice 1000 –selectorName DNSSelector1add dns policy DNSLimitPolicy1 “sys.check_limit(”DNSLimitIdentifier1”)” –preferredLocation “North America.US.TX.Dallas..”bind dns global DNSLimitPolicy1 5
• B. add stream selector DNSSelector1 client.udp.dns.domainadd ns limitIdentifier DNSLimitIdentifier1 –threshold 5 –timeSlice 1000 –selectorName DNSSelector1add dns policy DNSLimitPolicy1 “sys.check_limit(”DNSLimitIdentifier1”)” –preferredLocation “North America.US.TX.Dallas..”
• C. add stream selector DNSSelector1 client.udp.dns.domainadd ns limitIdentifier DNSLimitIdentifier1 –threshold 1000 –timeSlice 1000 –selectorName DNSSelector1add dns policy DNSLimitPolicy1 “sys.check_limit(”DNSLimitIdentifier1”)” –preferredLocation “North America.US.TX.Dallas..”
• D. add stream selector DNSSelector1 client.udp.dns.domainadd ns limitIdentifier DNSLimitIdentifier1 –threshold 1000 –timeSlice 1000 –selectorName DNSSelector1add dns policy DNSLimitPolicy1 “sys.check_limit(”DNSLimitIdentifier1”)” –preferredLocation “North America.US.TX.Dallas..”bind dns global DNSLimitPolicy1 5

Answer: C

NEW QUESTION 14
A Citrix Administrator needs to configure the Lights Out Management (LOM) port. Which statement is applicable to LOM?

• A. LOM is accessed using Command-Line Interface (CLI).
• B. LOM IP address should be in the same subnet as NSIP.
• C. LOM firmware is included in the NetScaler upgrade package.
• D. LOM port can be used to remotely monitor and manage the appliance.

Answer: A

NEW QUESTION 15
Scenario: A Citrix Administrator would like to grant access to a Junior Administrator on the NetScaler. The administrator would like to grant full access to everything except the following:
Which pre-existing command policy would meet the needs of the scenario?

• A. Superuser
• B. Network
• C. Operator
• D. Sysadmin

Answer: A

NEW QUESTION 16
Scenario: A Citrix Administrator has configured the rewrite action as follows: add rewrite action sync_date replace http.res.date sys.time
What is the correct way to interpret this rewrite action?

• A. The rewrite action replaces the Date header in the http response with the GMT time stamp.
• B. The rewrite action replaces the Date header in the http response with the NetScaler system time in a conventional date format.
• C. The rewrite action is invalid, as system time CANNOT be referenced in the system policy.
• D. The rewrite action replaces the NetScaler system time with the Date header in a conventional date format.

Answer: C