問題1
A Citrix Engineer executed the below commands on the Citrix ADC command-line interface (CLI):
- add stream selector cacheStreamSelector http.req.url
- add ns limitidentifier cacheRateLimitIdentifier -threshold 5 -timeSlice 2000 -selectorName cacheStreamSelector
- add cache policy cacheRateLimitPolicy -rule "http.req.method.eq(get) && sys.check_limit (\ "cacheRateLimitIdentifier\")" -action cache
- bind cache global cacheRateLimitPolicy- priority 10
What will be the effect of executing these commands?
A Citrix Engineer executed the below commands on the Citrix ADC command-line interface (CLI):
- add stream selector cacheStreamSelector http.req.url
- add ns limitidentifier cacheRateLimitIdentifier -threshold 5 -timeSlice 2000 -selectorName cacheStreamSelector
- add cache policy cacheRateLimitPolicy -rule "http.req.method.eq(get) && sys.check_limit (\ "cacheRateLimitIdentifier\")" -action cache
- bind cache global cacheRateLimitPolicy- priority 10
What will be the effect of executing these commands?
正確答案: A
問題2
Which methodology is best suited for a scenario where the primary concern is preventing SQL injection attacks?
Which methodology is best suited for a scenario where the primary concern is preventing SQL injection attacks?
正確答案: C
問題3
A website hosts highly dynamic content that is frequently requested in bursts of high user access.
Which configuration will reduce traffic to the origin server while optimizing client performance?
A website hosts highly dynamic content that is frequently requested in bursts of high user access.
Which configuration will reduce traffic to the origin server while optimizing client performance?
正確答案: D
問題4
In a given scenario, if a company needs to ensure that their web applications are compliant with PCI-DSS, which Citrix tool should they primarily consider?
In a given scenario, if a company needs to ensure that their web applications are compliant with PCI-DSS, which Citrix tool should they primarily consider?
正確答案: D
問題5
A Citrix Engineer used Learning to establish the HTML SQL Injection relaxations for a critical web application. The engineer now wishes to begin working on the protections for a different web application. The name of the Web App Profile is appfw_prof_customercare.
Which CLI command can the engineer use to empty the Learn database?
A Citrix Engineer used Learning to establish the HTML SQL Injection relaxations for a critical web application. The engineer now wishes to begin working on the protections for a different web application. The name of the Web App Profile is appfw_prof_customercare.
Which CLI command can the engineer use to empty the Learn database?
正確答案: B
問題6
A Citrix Engineer is considered that malicious users could exploit a web system by sending a large cookie.
Which security check can the engineer implement to address this concern?
A Citrix Engineer is considered that malicious users could exploit a web system by sending a large cookie.
Which security check can the engineer implement to address this concern?
正確答案: D
問題7
To monitor real-time user connections and gain insights into user behavior, organizations should utilize:
To monitor real-time user connections and gain insights into user behavior, organizations should utilize:
正確答案: D
問題8
If an organization wants to protect against both cross-site scripting and SQL injection attacks, which top-level protection should they configure?
If an organization wants to protect against both cross-site scripting and SQL injection attacks, which top-level protection should they configure?
正確答案: A
問題9
Scenario: A Citrix Engineer configures Citrix Web App Firewall to protect an application. Users report that they are NOT able to log on. The engineer enables a Start URL relaxation for the path //login.aspx.
What is the effect of the Start URL relaxation on the application?
Scenario: A Citrix Engineer configures Citrix Web App Firewall to protect an application. Users report that they are NOT able to log on. The engineer enables a Start URL relaxation for the path //login.aspx.
What is the effect of the Start URL relaxation on the application?
正確答案: D
問題10
Which of the following is essential for ensuring that cookies are not tampered with during a session?
Which of the following is essential for ensuring that cookies are not tampered with during a session?
正確答案: A
問題11
Scenario: A Citrix Engineer has enabled the Learn function for a Citrix Web App Firewall profile. After a period of time, the engineer notices that Citrix Web App Firewall is no longer learning any new rules.
What would cause Citrix Web App Firewall to stop learning?
Scenario: A Citrix Engineer has enabled the Learn function for a Citrix Web App Firewall profile. After a period of time, the engineer notices that Citrix Web App Firewall is no longer learning any new rules.
What would cause Citrix Web App Firewall to stop learning?
正確答案: B
問題12
To optimize the performance of web applications in a Citrix ADC environment, which of the following should be tuned?
To optimize the performance of web applications in a Citrix ADC environment, which of the following should be tuned?
正確答案: B
問題13
Scenario: A Citrix Engineer is trying to optimize a website that is load balanced on a Citrix ADC and is accessed by mobile users. The web application is complex and made up of hundreds of embedded images, scripts, and other objects per page. This limitation is creating a significant bottleneck, resulting in excessive load times.
Which Citrix ADC feature can the engineer use to optimize the web application?
Scenario: A Citrix Engineer is trying to optimize a website that is load balanced on a Citrix ADC and is accessed by mobile users. The web application is complex and made up of hundreds of embedded images, scripts, and other objects per page. This limitation is creating a significant bottleneck, resulting in excessive load times.
Which Citrix ADC feature can the engineer use to optimize the web application?
正確答案: D
問題14
Which two security checks invoke sessionization?
Which two security checks invoke sessionization?
正確答案: A,D