PassLeader Free Citrix 1Y0-351 Dumps with VCE and PDF (Question 151 – Question 175)

1Y0-351 Dumps 1Y0-351 Exam Questions 1Y0-351 PDF Dumps 1Y0-351 VCE Dumps Citrix Networking Certification

PassLeader just published the NEWEST Citrix 1Y0-351 exam dumps! You can get both 1Y0-351 VCE dumps and 1Y0-351 PDF dumps from PassLeader, both VCE and PDF dumps contain the NEWEST 1Y0-351 exam questions, which will ensure your 1Y0-351 exam 100% passing! Welcome to download the valid PassLeader 1Y0-351 dumps VCE and PDF from PassLeaderhttps://www.passleader.com/1y0-351.html (293 Q&As Dumps)

And, you can preview the PassLeader 1Y0-351 dumps onlinehttps://drive.google.com/open?id=0B-ob6L_QjGLpNDR0TEdkaG9XWGc

QUESTION 151
Scenario:
A NetScaler engineer needs to enable access to some web servers running on an IPv6-only network. The clients connecting the services are on an IPv4 network. The engineer has already enabled IPv6 on the NetScaler. What does the engineer need to do in order to provide access to the services on the IPv6 network?

A.    Create an IPv6 tunnel and a IPv4 virtual server.
B.    Configure an IPv6 VLAN and bind the required interface.
C.    Create a IPv4 virtual server and bind the service group to it.
D.    Create an IPv6 ACL and a IPv4 virtual server and bind the ACL to the virtual server.

Answer: C

QUESTION 152
Scenario:
For security reasons, the NSIP needs to be configured to only be accessible on interface 0/1, which is VLAN 300. The NSIP address is 10.110.4.254 and the subnet mask is 255.255.255.0. How would the network engineer achieve this configuration?

A.    set ns config -nsvlan 300 -ifnum 0/1
B.    set ns ip 10.110.4.254 -gui ENABLED -vrID 300
C.    add vlan 300
set ns ip 10.110.4.254 -mgmtAccess ENABLED
D.    set ns config -IPAddress 10.110.4.254 -netmask 255.255.255.0

Answer: A

QUESTION 153
Why would an engineer want to specify a TCP Profile for a specific service group?

A.    To enable use of features like SSL over TCP for that specific service group.
B.    To adjust the TCP settings for traffic to and from that specific service group.
C.    To use a specific SNIP for traffic to the back-end servers in that service group.
D.    To enable features like use source IP, TCP keep alive and TCP buffering for a specific service group.

Answer: B

QUESTION 154
A network engineer wants to optimize a published load balanced SSL virtual server for WAN connection with long delay, high bandwidth with minimal packet drops. What would the network engineer use to do this type of optimization for the SSL virtual server?

A.    SSL policy
B.    TCP profile
C.    Compression policy
D.    Priority queuing policy

Answer: B

QUESTION 155
Scenario:
The NetScaler is connected to two subnets. The NSIP is 10.2.9.12. The external SNIP is 10.2.7.3. The MIP for internal access is 10.2.9.3. Web servers, authentication servers and time servers are on the 10.2.10.0/24 network which is available through the 10.2.9.1 router. The external firewall has the 10.2.7.1 address. Traffic bound for Internet clients should flow through the external firewall. Which command should be used to set the default route?

A.    add route 0.0.0.0 0.0.0.0 10.2.7.1
B.    add route 0.0.0.0 0.0.0.0 10.2.9.1
C.    add route 10.0.0.0 255.0.0.0 10.2.9.1
D.    add route 10.0.0.0 255.0.0.0 10.2.7.1

Answer: A

QUESTION 156
Some SSL certificate files may be missing from a NetScaler appliance. Which directory should an engineer check to determine which files are missing?

A.    /nsconfig/ssl
B.    /nsconfig/ssh
C.    flash/nsconfig/
D.    /var/netscaler/ssl/

Answer: A

QUESTION 157
Scenario:
An engineer has been hired to manage the content-switching configurations on the NetScaler. The user account for this engineer must have the standard rules that apply to the other administrators. What should the engineer do to allow for the extra privileges?

A.    Modify the current Command Policy and then save the changes.
B.    Unbind the current Command Policy of the user account and then save the changes.
C.    Remove the custom Command Policy and then create one with the new requirements.
D.    Create a custom Command Policy and bind it to the user account with the highest priority.

Answer: D

QUESTION 158
An engineer has bound three monitors to a service group and configured each of the monitors with a weight of 10. How should the engineer ensure that the members of the service group are marked as DOWN when at least two monitors fail?

A.    Re-configure the weight of each monitor to 0.
B.    Configure the service group with a threshold of 21.
C.    Configure the service group with a threshold of 20.
D.    Re-configure the weight of each monitor to 5, and configure the service group threshold to 15.

Answer: C

QUESTION 159
An engineer has configured a DNS virtual server on a NetScaler appliance but the monitors are showing DOWN and DNS resolution is failing. Which of the following should the engineer check?

A.    Port 53 between the VIP address and the DNS servers is allowed
B.    That a ADNS_TCP service has been configured on the NetScaler
C.    That the load balancing feature has been enabled on the NetScaler
D.    Port 53 between the NSIP address and the DNS servers is allowed
E.    Port 53 between the SNIP address and the DNS servers is allowed

Answer: E

QUESTION 160
What type of protocol does AppFlow use for reporting?

A.    TCP
B.    UDP
C.    HTTP
D.    SSL_TCP

Answer: B

QUESTION 161
A NetScaler Engineer has created a new custom user monitor script and needs to place it in the NetScaler filesystem for use. Where must the engineer place the custom script so that it is available for use?

A.    /nsconfig/monitors
B.    /netscaler/monitors
C.    /var/nstemp/monitors
D.    /netscaler/monitors/perl_mod

Answer: A

QUESTION 162
What are the supported protocols for management authentication?

A.    LOCAL, LDAP, and SAML
B.    RADIUS, LDAP and TACACS+
C.    CERTIFICATE, LDAP and SAML
D.    RADIUS, TACACS+ and CERTIFICATE

Answer: B

QUESTION 163
Scenario:
A NetScaler Engineer has discovered that the object home.php is NOT found in the cache on the system. Below is the relevant configuration:
add cache contentGroup cache_content_group_1 -relExpiry 0
add cache policy cache_pol_1 -rule “http.REQ.URL.CONTAINS(\”home.php\”)” -action MAY_CACHE -storeInGroup cache_content_group_1
add cache policy cache_pol_2 -rule “http.REQ.METHOD.EQ(\”GET\”)” -action NOCACHE
add cache policy cache_pol_3 -rule “HTTP.RES.HEADER(\”Set-Cookie\”).EXISTS” -action NOCACHE
bind cache global cache_pol_1 -priority 90 -gotoPriorityExpression END -type REQ_OVERRIDE
bind cache global cache_pol_2 -priority 100 -gotoPriorityExpression END -type REQ_OVERRIDE
bind cache global cache_pol_3 -priority 100 -gotoPriorityExpression END -type RES_OVERRIDE
The data from the client and the server are as following:
GET /home.php HTTP/1.1
Host: www.website.com
User-Agent: Mozilla Firefox/3.0.3
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 300
Connection: keep-alive
Date: Thu, 09 Oct 2014 18:25:00 GMT
Cookie: sessionid=100xyz
HTTP/1.1 200 OK
Date: Thu, 09 Oct 2014 18:25:00 GMT
Server: Apache/2.2.3 (Fedora)
Last-Modified: Wed, 09 Jul 2014 21:55:36 GMT
ETag: “27db3c-12ce-5e52a600”
Accept-Ranges: bytes
Cache-Control: private, max-age=0
Set-Cookie: sessionid=100xyz; expires=Thu, 09-Oct-2014 18:30:00 GMT; path=/
Content-Length: 119
Connection: close
Content-Type: text/html; charset=UTF-8
Why does the object NOT persist in the cache?

A.    The request is a GET request.
B.    The response has Set-Cookie.
C.    The content group is missing a cache selector.
D.    The content group has been configured with relExpiry 0.

Answer: B

QUESTION 164
Which two authentication types on the NetScaler support password changes? (Choose two.)

A.    TACACS+
B.    LDAP (TLS)
C.    LDAP (SSL)
D.    RADIUS (PAP)
E.    LDAP (PLAINTEXT)
F.    RADIUS (MSCHAPv2)

Answer: BC

QUESTION 165
Scenario:
A NetScaler Engineer is viewing Authentication, Authorization and Access (AAA) events on the NetScaler appliance to determine why a user is unable to log on. The events below have been logged during this timeframe:
Fri Oct 17 18:17:16 2014
/usr/home/build/rs_80_48/usr.src/usr.bin/nsaaad/../../netscaler/aaad/ldap_drv.c[40\]:
start_ldap_auth attempting to
auth scottli @ 10.12.33.216
Fri Oct 17 18:17:18 2014
/usr/home/build/rs_80_48/usr.src/usr.bin/nsaaad/../../netscaler/aaad/ldap_drv.c[291\]:
recieve_ldap_bind_event receive ldap bind event
Fri Oct 17 18:17:18 2014
/usr/home/build/rs_80_48/usr.src/usr.bin/nsaaad/../../netscaler/aaad/ldap_drv.c[326\]:
recieve_ldap_bind_event ldap_bind with binddn bindpw failed:Invalid credentials Fri Oct 17
18:17:18 2014
/usr/home/build/rs_80_48/usr.src/usr.bin/nsaaad/../../netscaler/aaad/naaad.c[1198\]: send_reject sending reject to kernel for : scottli
What is the root cause of this issue?

A.    The LDAP Base DN is incorrect.
B.    The Bind DN credentials are invalid.
C.    The LDAP server is NOT responding.
D.    The user has entered an invalid password.

Answer: B

QUESTION 166
A company has an external-facing web application that requires end-to-end encryption and Layer-7 functionality. Which protocol type would an engineer choose for the virtual server and service?

A.    SSL
B.    SSL_TCP
C.    SSL_PUSH
D.    SSL_BRIDGE

Answer: B

QUESTION 167
Scenario:
A NetScaler Engineer has enabled the HTTP Compression feature on an existing production NetScaler. The engineer is using the built-in policies. The engineer reviews the HTTP Compression statistics but does NOT see any compression statistic data. What is the likely reason?

A.    SSL protocol is being used for encryption.
B.    The Compression Policy engine is set to default.
C.    “Allow Server side compression” is checked on the NetScaler.
D.    Responses with the Content-Length or Chunked header are being sent from the server.

Answer: C

QUESTION 168
Which two of the listed statements are true about Access Control Lists (ACLs) on the NetScaler? (Choose two.)

A.    Extended ACLs may BRIDGE traffic.
B.    Simple ACLs are bound on ALL interfaces.
C.    Extended ACLs are evaluated after creation.
D.    Simple ACLs are processed after Extended ACLs.

Answer: AB

QUESTION 169
What is the purpose of the SSL Certificate Authority (CA) root certificate during an SSL connection?

A.    SSL Cipher Exchange
B.    Session Key Exchange
C.    Pre Shared Master Secret Generation
D.    Server Certificate Signature Verification

Answer: A

QUESTION 170
In order to create a three-node NetScaler cluster, all nodes must ____ and ____. (Choose the two correct options to complete the sentence.)

A.    be physical appliances
B.    have Platinum licensing
C.    be using the same build
D.    be the same platform model

Answer: CD

QUESTION 171
Scenario:
A NetScaler Engineer has been tasked with reconfiguring an existing NetScaler deployment. The engineer is currently running a high-availability (HA) pair of NetScaler 10.5 appliances, but the Vice President of IT has requested a more efficient way of preserving and balancing network resources and throughput while having a single point of management for the NetScaler appliances. What should the engineer configure to satisfy the requirements outlined by the Vice President of IT?

A.    Switch from traditional HA to -INC mode HA.
B.    Break the HA pair and configure clustering instead.
C.    Break the HA pair and configure three standalone NetScaler nodes.
D.    Leave HA enabled and increase bandwidth to both NetScaler nodes.

Answer: B

QUESTION 172
A NetScaler Engineer plans to deploy a third-party application that will perform scheduled configuration auditing by using NITRO API with a REST interface. Which management protocol should the engineer enable to allow NITRO API access?

A.    SSH
B.    HTTP
C.    Telnet
D.    SNMP

Answer: B

QUESTION 173
Traffic to which destination is sourced from the NetScaler IP (NSIP) by default?

A.    NTP servers
B.    Clients on the Internet
C.    Load-balanced web services
D.    Load-balanced authentication services

Answer: A

QUESTION 174
Scenario:
A NetScaler Engineer configures COOKIEINSERT persistence method for an HTTP VServer named ‘myApp’. Many clients do NOT allow the persistence cookie to be set and application sessions fail as a result. All clients are behind a network address translation (NAT) gateway, which will insert the client IP address into an HTTP header called X-Forwarded-For. Which command could the engineer execute to provide persistence for clients while still distributing the requests across the bound services?

A.    set lb vserver myApp -persistenceType SOURCEIP
B.    set lb vserver myApp -persistenceType NONE -lbmethod SRCIPDESTIPHASH
C.    set lb vserver myApp -persistenceType COOKIEINSERT -timeout 0 -cookieName X- Forwarded-For
D.    set lb vserver myApp -persistenceType NONE -lb method TOKEN -rule “HTTP.REQ.HEADER(\”X-Forwarded-For\”).VALUE(0)

Answer: D

QUESTION 175
Scenario:
A NetScaler Engineer has created an SSL virtual server that utilizes SSL services. The engineer needs to configure certificate authentication from the NetScaler to the backend web services. What should the engineer do to meet the requirements outlined in the scenario?

A.    Bind a CA Certificate to the SSL Services.
B.    Bind a Client Certificate to the SSL Services.
C.    Create an SSL policy to present the Client Certificate to the web services.
D.    Enable Client Authentication and set Client Certificate to mandatory on the virtual server.

Answer: B


Now, try the PassLeader 1Y0-351 dumps for 100% passing your 1Y0-351 examhttps://www.passleader.com/1y0-351.html (293 Q&As VCE Dumps and PDF Dumps)

And, preview the PassLeader 1Y0-351 dumps onlinehttps://drive.google.com/open?id=0B-ob6L_QjGLpNDR0TEdkaG9XWGc

Good Luck!