PassLeader Premium Citrix 1Y0-240 Exam Dumps in VCE and PDF for Free Previewing (Question 31 – Question 45)

1Y0-240 Dumps 1Y0-240 Exam Questions 1Y0-240 PDF Dumps 1Y0-240 VCE Dumps Citrix Networking Certification

PassLeader just published the NEWEST Citrix 1Y0-240 exam dumps! You can get both 1Y0-240 VCE dumps and 1Y0-240 PDF dumps from PassLeader, both VCE and PDF dumps contain the NEWEST 1Y0-240 exam questions, which will ensure your 1Y0-240 exam 100% passing! Welcome to download the valid PassLeader 1Y0-240 dumps VCE and PDF from PassLeader (160 Q&As Dumps –> 194 Q&As Dumps –> 248 Q&As Dumps)

And, you can preview the PassLeader 1Y0-240 dumps online

Company Inc. wants to tag incoming requests with a header that indicates which browser is being used on the connection. This helps the server keep track of the browsers after the NetScaler has delivered the connections to the back end. The engineer should create ____ actions to ____. (Choose the correct set of options to complete the sentence.)

A.    rewrite; insert tags on the client header
B.    responder; separate the client requests
C.    rewrite; insert tags on the server response
D.    responder; filter the browser type on the client header

Answer: A

Which step could a network engineer take to prevent brute force logon attacks?

A.    Enable the Rate Limiting feature.
B.    Enable the AAA Application feature.
C.    Configure the Access Gateway Policies.
D.    Configure the Cache redirection Policies.

Answer: A

A call center has deployed Access Gateway Enterprise to provide its employees with access to work resources from home. Due to the number of available licenses, only selected employees should access the environment remotely based on their user account information. How could the engineer configure access to meet the needs of this scenario?

A.    Configure a Pre-authentication Policy.
B.    Configure an Authentication Server using a search filter.
C.    Configure an Authentication Policy using Client based expressions.
D.    Add the selected employee accounts to the Local Authentication policy.

Answer: B

A network engineer would like to prevent blacklisted remote clients from accessing NetScaler hosted application services. An IP address blacklist database is maintained by an external company and available to query over the Internet. The engineer would like to reject any connections from IP addresses that are contained in the blacklist. What could the engineer configure to achieve this goal?

A.    SSL offload
B.    HTTP callout
C.    URL transformation
D.    SSL certification revocation list check

Answer: B

An engineer has bound three monitors to a service group and configured each of the monitors with a weight of 10. How should the engineer ensure that the members of the service group are marked as DOWN when at least two monitors fail?

A.    Re-configure the weight of each monitor to 0.
B.    Configure the service group with a threshold of 21.
C.    Configure the service group with a threshold of 20.
D.    Re-configure the weight of each monitor to 5, and configure the service group threshold to 15.

Answer: C

An engineer is checking that ports are configured correctly between the NetScaler system and a back-end web server. Which command should the engineer use to test that the web server is responding on port 80?

A.    telnet 80
B.    telnet
C.    telnet port=80
D.    telnet -port 80

Answer: A

How could a network engineer gather detailed network information?

A.    System node -> Diagnostics -> Call home
B.    System node -> Diagnostics -> Start new trace
C.    System node -> Diagnostics -> Show techsupport
D.    System node -> Diagnostics -> Show running vs saved config

Answer: B

An network engineer is asked to perform an export of the captured trace output files as requested by Citrix Tech support. In which directory could the engineer retrieve the captured log files in the NetScaler system?

A.    /var/log
B.    /var/nstrace
C.    /netscaler/log
D.    /nsconfig/trace

Answer: B

An engineer has configured a DNS virtual server on a NetScaler appliance but the monitors are showing DOWN and DNS resolution is failing. Which of the following should the engineer check?

A.    Port 53 between the VIP address and the DNS servers is allowed
B.    That a ADNS_TCP service has been configured on the NetScaler
C.    That the load balancing feature has been enabled on the NetScaler
D.    Port 53 between the NSIP address and the DNS servers is allowed
E.    Port 53 between the SNIP address and the DNS servers is allowed

Answer: E

The network engineer is setting up a new NetScaler using a direct connection. Three networks are connected to the NetScaler. After initial configuration and restart, the engineer would like to confirm the routing table entries. From which location and which command should the engineer run to display the routing table?

A.    From the shell ‘netstat -r’
B.    From the shell ‘route monitor’
C.    From the command-line interface ‘show pbr’
D.    From the command-line interface ‘show route’

Answer: D

A network engineer is troubleshooting a situation where ARP requests for IPs in other subnets (for example are appearing in the subnet. Which command could the engineer run on the NetScaler to verify IP to VLAN bindings?

A.    show ip
B.    netstat -r
C.    show arp
D.    show vlan

Answer: D

A network engineer suspects that there is a duplex mismatch in the network configuration. The NSIP address is How can the administrator verify the configuration in this scenario?

A.    Run the ‘netstat -r’ command.
B.    Run the show IP command.
C.    Run the start nstrace -level 10 command.
D.    Check for the interface configuration in the GUI.

Answer: D

A user browses to a page and is presented with a warning that he is trying to enter a web site with an untrusted certificate. The network engineer had added the correct certificate to the SSL virtual server. What could be the cause of this issue?

A.    TLS is disabled on the virtual server.
B.    The certificate is not linked to the intermediate CA.
C.    The certificate has expired and needs to be renewed.
D.    The CA certificate has not been added to the SSL virtual server.

Answer: B

A network engineer is trying to read a nstrace from the NetScaler but can only see encrypted traffic. Which file(s) are required to decrypt the network trace?

A.    The server certificate
B.    The servers root certificate
C.    The private key for the server certificate
D.    The private key for the server root certificate

Answer: C

A network engineer created an SSL virtual server and enabled smart card on it. The engineer tried browsing to the server and noticed the back-end system could NOT see the users certificates. What could be causing this issue?

A.    The SSL virtual server cannot forward a client certificate.
B.    The network engineer has not set smart card to mandatory.
C.    The SSL virtual server cannot use smart card authentication.
D.    The network engineer has not enabled SNI on the virtual server.
E.    The network engineer forgot to enable the SSL policy allowing smart card forwarding on the SSL virtual server.

Answer: A

Now, try the PassLeader 1Y0-240 dumps for 100% passing your 1Y0-240 exam (160 Q&As VCE Dumps and PDF Dumps –> 194 Q&As VCE Dumps and PDF Dumps –> 248 Q&As VCE Dumps and PDF Dumps)

And, preview the PassLeader 1Y0-240 dumps online

Good Luck!