How Many Questions Of 1y0-340 Brain Dumps

NEW QUESTION 1
What can a Citrix Engineer do to decrease browser load times by increasing the number of parallel connections to the resource?

• A. Configure Domain Sharding.
• B. Add more web servers.
• C. Block JavaScript on client browsers.
• D. Do NOT allow HTML websites.

Answer: A

NEW QUESTION 2
When the NetScaler marks a client connection as “non-trackable”, the default behavior of the NetScaler without making any change to the HTTP Profile is to . (Choose the correct option to complete the sentence.)

• A. proxy the connection to the target.
• B. proxy the connection to the client.
• C. track the connection.
• D. drop the connection.

Answer: D

NEW QUESTION 3
A Citrix Engineer observes the following event in the ns.log:
Aug 3 11:55:58 <local0.info> 10.248.64.10 08/03/2015:15:55:58 GMT ATL0NS01 0-PPE-1: default APPFW APPFW_STARTURL 406856 0: 10.248.13.13 11152-PPE1
LG+hd4LkcYiOyQVWvOTsCtSyiv00001 SPI Disallow illegal URL: https://training.citrix.com/login
<blocked>
Which Application Firewall profile has blocked the URL?

• A. SPI
• B. APPFW_STARTURL
• C. ATL0NS01
• D. SPI Disallow illegal URL

Answer: C

NEW QUESTION 4
Scenario: A Citrix Engineer has a project to enable Integrated Caching on a NetScaler for a Financial Consulting company whose clients monitor their stocks in real time. Clients are reporting a delay in the displaying of the stock values.
What can the engineer configure on the NetScaler to enable data to be presented to the clients in real time?

• A. Dynamic Content Groups
• B. Basic Content Group
• C. Add another NetScaler
• D. Static Content Group

Answer: A

NEW QUESTION 5
Scenario: A Citrix Engineer needs to configure the Application Firewall to do a credit card check using the command-line interface (CLI) and configure the profile to obscure the credit card number.
Which parameter will the engineer add in the CLI to encrypt the credit card numbers in the logs?

• A. –creditCardAction BLOCK
• B. -creditCardMaxAllowed
• C. –creditCardXOut ON
• D. –doSecureCreditCardLogging ON

Answer: D

NEW QUESTION 6
Which NetScaler owned IP address is used by NetScaler Management and Analytics System (NMAS) to communicate with NetScaler Instances?

• A. VIP (Virtual IP)
• B. NSIP (NetScaler IP)
• C. CLIP (Cluster IP)
• D. SNIP (Subnet IP)

Answer: B

NEW QUESTION 7
Which two actions can a Citrix Engineer use to provide Denial of Service (DoS) protection with the AppQoE feature? (Choose two.)

• A. Simple Response
• B. HICResponse
• C. Denial Response
• D. Complex Response

Answer: AB

NEW QUESTION 8
A Citrix Engineer has received the following message after setting up Application Firewall in Learning mode. August 28 6 03:14:27 <local0.info>XXX.0.0.2.08/28/2021:03:14:27 GMT VPXExtProd01 0-PPE-0: default
GUI CMD_EXECUTED 1670370 0: User CitrixAdmin- Remote_ip XXX.19.XXX.XXX-Command “show
appfw learningdata WebPub_vs_af_1 startURL”- Status “ERROR: Communication error with aslearn”
What can the engineer perform to resolve the issue?

• A. Reinstall the Application Firewall license.
• B. Reboot the NetScaler appliance.
• C. Disable the Application Firewall feature.
• D. Delete the Profile database and restart the aslearn process.

Answer: B

NEW QUESTION 9
A Citrix Engineer has found issues in the websites after enabling Application Firewall.
Which logs on the NetScaler can the engineer check to verify that the issues are NOT caused by Application Firewall?

• A. newnslog
• B. ns.log
• C. nslog
• D. aaad.debug

Answer: B

NEW QUESTION 10
Scenario: A Citrix Engineer receives the following error when accessing content from a virtual server: “Page cannot be displayed.”
However, the content is accessible when connecting directly to the web server.
The engineer captured the traffic using nstrace and found that the amount of data sent from the web server exceeds the content length defined in the HTTP header.
Which action can the engineer take to resolve the issue?

• A. Disable Drop extra CRLF in the HTTP Profile.
• B. Enable Drop extra data from server in the HTTP Profile.
• C. Increase the Content length in the Application Firewall Profile.
• D. Disable Drop extra data from server in the HTTP Profile.

Answer: B

NEW QUESTION 11
A Citrix Engineer needs to configure an application firewall profile to ensure that the images uploaded on the website are NOT malicious. The engineer needs to create a policy to filter the upload requests and ensure that they are in JPEG format.
Which expression can the engineer use to fulfill this requirement?

• A. http.req.url.endswith (“.jpeg) & & http.req.method.eq (POST)
• B. http.req.url.contains (“.jpeg) & & http.req.method.eq (GET)
• C. http.req.url.endswith (“.jpeg) || http.req.method.eq (GET)
• D. http.req.header (“Content-Type”).contains (“image/jpeg”) || http.req.method.eq(POST)

Answer: D

NEW QUESTION 12
Scenario: A Citrix Engineer needs to configure Application Firewall to handle SQL injection issues. However, after enabling SQL injection check, the backend server started dropping user requests.
The Application Firewall configuration is as follows:
add appfw profile Test123 –startURLAction none- denyURLAction none-crossSiteScriptingAction none
–SQLInjectionAction log stats- SQLInjection TransformSpecialChars ON
–SQLInjectionCheckSQLWildChars ON- fieldFormatAction none- bufferOverflowAction none- responseContentType “application/octet-stream” –XMLSQLInjectionAction none- XMLXSSAction none-XMLWSIAction none- XMLValidationAction none
What does the engineer need to change in the Application Firewall configuration?

• A. Enable-XMLSQLInjectionAction none
• B. Enable-XMLValidationAction none
• C. Disable- SQLInjectionCheckSQLWildChars ON
• D. Disable- SQLInjectionTransformSpecialChars ON

Answer: C

NEW QUESTION 13
Which mechanism does the NetScaler use to enable a safe and speedy data exchange between a client/server initial TCP handshake?

• A. TCP Fast Open (TFO)
• B. TCP Burst Rate Control
• C. TCP Hystart
• D. TCP Time Stamp

Answer: A

NEW QUESTION 14
Which setting should be enabled to convert the content-length form submission requests to chunked requests, when HTML SQL Injection protection is enabled?

• A. Optimize Partial Requests
• B. Streaming
• C. Enable form tagging
• D. Percentage Recursive Decoding

Answer: B

NEW QUESTION 15
Which two response headers are added by Application Firewall? (Choose two.)

• A. Transfer-Encoding
• B. Accept-Language
• C. Accept-Encoding
• D. Set-Cookie
• E. Range

Answer: AD

NEW QUESTION 16
A website hosts highly dynamic content that is frequently requested in bursts of high user access. Which configuration will reduce traffic to the origin server while optimizing client performance?

• A. –pollEveryTime NO
• B. –expireAtLastByte YES
• C. –flashCache YES
• D. –heurExpiryParam 0

Answer: A

NEW QUESTION 17
A Citrix Engineer has configured SQL Injection security check to block all special characters. Which two requests will be blocked after enabling this check? (Choose two.)

• A. Citrix; Sqltest
• B. 175// OR 1//=1//
• C. Citrix” OR “1”=”1
• D. Citrix OR 1=1
• E. 175’ OR ‘1’= ‘1’

Answer: AB

NEW QUESTION 18
Which three options can be used to specify the destination of an HTTP Callout? (Choose three.)

• A. Load balancing Virtual server
• B. Global server load balancing Virtual server
• C. NetScaler Gateway Virtual server
• D. Content switching Virtual server
• E. Cache redirection Virtual server

Answer: ADE

NEW QUESTION 19
Scenario: A Citrix Engineer discovers a security vulnerability in one of its websites. The engineer takes a header trace and checks the Application Firewall logs.
The following was found in part of the logs:
method=GET
request = http://my.companysite.net/FFC/sc11.html msg=URL length (39) is greater than maximum allowed (20).cn1=707 cn2=402 cs1=owa_profile cs2=PPE0 cs3=kW49GcKbnwKByByi3+jeNzfgWa80000 cs4=ALERT cs5=2015
Which type of Application Firewall security check can the engineer configure to block this type of attack?

• A. Buffer Overflow
• B. Start URL
• C. Cross-site Scripting
• D. Cookie Consistency

Answer: C

NEW QUESTION 20
Which NetScaler Management and Analytics System (NMAS) feature will assist the Citrix Engineer in gathering the required data for issues with Endpoint Analysis?

• A. Security Insight
• B. Web Insight
• C. HDX Insight
• D. Gateway Insight

Answer: A

NEW QUESTION 21
A Citrix Engineer has determined that users are able to access random URLs on a web site through bookmarks and by manually typing in the URLs to skip the pages required to reach that part of the website.
Which two checks can the engineer enable to prevent this attack? (Choose two.)

• A. Form Field Consistency
• B. Deny URL
• C. Start URL
• D. Buffer overflow
• E. HTML Cross-site scripting

Answer: CD

NEW QUESTION 22
Scenario: A Citrix Engineer has configured a NetScaler Management Analytics System (NMAS) policy mandating that all certificates must have minimum key strengths of 2048 bits and must be authorized by trusted CA/Issuers.
How does NMAS alert the engineer about non-compliance?

• A. NMAS highlights any non-compliance with the ‘Non-Recommended’ tag.
• B. NMAS disables any non-compliant policies.
• C. NMAS does NOT alert the engineer.
• D. NMAS disables any non-compliant certificates.

Answer: A

NEW QUESTION 23
......