Achieve New Updated (September) Citrix 1Y0-351 Examination Questions 31-40

Ensurepass

 

QUESTION 31

Which tool could a NetScaler Engineer use to monitor client-side rendering times for a Web application that is load-balanced by NetScaler?

 

A.

Tcpdump

B.

Insight Center

C.

Command Center

D.

NetScaler Dashboard

 

Correct Answer: A

 

 

 

 

QUESTION 32

Scenario: A NetScaler engineer needs to enable access to some web servers running on an IPv6-only network. The clients connecting the services are on an IPv4 network. The engineer has already enabled IPv6 on the NetScaler. What does the engineer need to do in order to provide access to the services on the IPv6 network?

 

A.

Create an IPv6 tunnel and a IPv4 virtual server.

B.

Configure an IPv6 VLAN and bind the required interface.

C.

Create a IPv4 virtual server and bind the service group to it.

D.

Create an IPv6 ACL and a IPv4 virtual server and bind the ACL to the virtual server.

 

Correct Answer: C

 

 

QUESTION 33

A NetScaler engineer generates a techsupport archive to be sent to Technical Support. Which three of the following pieces of information will be included in the archive file? (Choose three.)

 

A.

Model Number

B.

SSL Private Keys

C.

Old Configuration Files

D.

Hardware Boot sequence

E.

Webpage Customizations

F.

Certificate Revocation List

 

Correct Answer: ACD

 

 

QUESTION 34

A network engineer needs to investigate why a few users have issues logging on to the NetScaler system. How can the engineer troubleshoot authentication issues on the NetScaler system?

 

A.

Use ECV monitoring.

B.

Run a violations report in Reporting.

C.

Use the CAT aaad.debug command.

D.

Check the system-authentication setting in the GUI.

 

Correct Answer: C

Explanation:

drop the the shell and the file is located at:

/tmp/aaad.debug

 

clip_image002

 

 

 

 

QUESTION 35

Scenario: A NetScaler Engineer has configured COOKIEINSERT persistence with a timeout value of two minutes on an SSL LBvServer. The idle time requirement for the application itself CANNOT be determined. Users report connections are intermittent. Once a session is disconnected, a user must re-authenticate in order to regain access. In order to correct this issue, the engineer should set persistence to __________ with a timeout of __________ minutes. (Choose the correct set of options to complete the sentence.)

 

A.

SOURCEIP; two

B.

SSLSESSION; ten

C.

SRCIPDESTIP; two

D.

COOKIEINSERT; zero

 

Correct Answer: D

 

 

QUESTION 36

What is the key benefit to enabling Session Reuse on an SSL offload VServer?

 

A.

The number of HTTP requests to the backend services are decreased.

B.

Resumed SSL sessions are more secure than sessions that require renegotiation.

C.

Reusing existing sessions decreases the number of TCP connections made to backend services.

D.

A partial SSL handshake is sent over the existing SSL connection, reducing CPU and bandwidth usage.

 

Correct Answer: D

 

 

QUESTION 37

Which load-balancing method is used in connection mirroring and firewall load balancing?

 

A.

URL Hash

B.

Source IP Soure Port Hash

C.

Destination IP Hash

D.

Call ID Hash

 

Correct Answer: B

 

 

QUESTION 38

What is the purpose of the SSL Certificate Authority (CA) root certificate during an SSL connection?

 

A.

SSL Cipher Exchange

B.

Session Key Exchange

C.

Pre Shared Master Secret Generation

D.

Server Certificate Signature Verification

 

Correct Answer: A

 

 

 

 

QUESTION 39

What would a NetScaler Engineer configure to allow internal IPv4 servers on a private subnet access to the external Internet through the NetScaler?

 

A.

Link Load Balancing (LLB)

B.

Network Address Translation 64 (NAT64)

C.

Inbound Network Address Translation (INAT)

D.

Reverse network address translation (RNAT)

 

Correct Answer: D

 

 

QUESTION 40

A NetScaler Engineer created an SSL virtual server but the status is showing as state DOWN. What could be causing the virtual server to show as state DOWN?

 

A.

The virtual server is configured for port 444.

B.

HTTP services are used instead of HTTPS services.

C.

The SSL certificate is NOT bound to the virtual server.

D.

The certificate bound to the virtual server has a private key of 512-bits.

 

Correct Answer: C

Free VCE & PDF File for Citrix 1Y0-351 Real Exam
< a href="http://www.ensurepass.com/1Y0-351.html">
Instant Access to Free VCE Files: CompTIA | VMware | SAP …
Instant Access to Free PDF Files: CompTIA | VMware | SAP …

This entry was posted in 1Y0-351 Examination questions (September) and tagged , , , , , , . Bookmark the permalink.