Citrix 1Y0-440 Architecting a Citrix Networking Solution Exam Practice Test

Scenario: A Citrix Architect is asked by management at the Workspacelab organization to review their existing configuration and make the necessary upgrades. The architect recommends small changes to the pre-existing Citrix ADC configuration. Currently, the Citrix ADC MPX devices are configured in a high availability pair, and the outbound traffic is load balanced between two Internet service providers (ISPs). However, the failover is NOT happening correctly. The following requirements were discussed during the design requirement phase:

* The return traffic for a specific flow should be routed through the same path while using Link Load Balancing.

* The link should fail over even if the ISP router is up and intermediary devices to an ISP router are down.

* Traffic going through one ISP router should fail over to the secondary ISP, and the traffic should NOT flow through both routers simultaneously. What should the architect configure to meet this requirement?

Scenario: A Citrix Architect needs to design a new solution within Microsoft Azure. The architect would like to create a highly available Citrix ADC VPX pair to provide load balancing for applications hosted in the Azure deployment which will receive traffic arriving from the Internet. In order to maximize its investment, the organization would like both Citrix ADC VPX instances to actively load-balance connection requests. Which two approaches are possible solutions for the architect to use to design the solution? (Choose two.)

Scenario: A Citrix Architect has implemented two high availability pairs of MPX 5500 and MPX 11500 devices respectively with 12.0.53.13 nc version. The NetScaler devices are set up to handle NetScaler Gateway, Load Balancing, Application Firewall, and Content Switching. The Workspacelab infrastructure is set up to be monitored with NMAS version 12.0.53.13 nc by the Workspacelab administrators. The Workspacelab team wants to implement one more pair of NetScaler MPX 7500 devices with version 12.0.53.13 nc.

The Citrix consulting team has assigned the task to implement these NetScaler devices in the infrastructure and set them up to be monitored and managed by NMAS.

The following are the requirements that were discussed during the project initiation call:

NMAS should be configured to get the infrastructure information under sections such as HDX Insight, WEB Insight, and Security Insight.

Configuration on the new MPX devices should be identical to MPX 11500 devices.

Configuration changes after the deployment and initial setup should be optimized using NMAS.

NMAS should be utilized to configure templates that can be utilized by the Workspacelab team in future deployment.

As per the requirement from the Workspacelab team, NMAS should be store the audited data for only 15 days.

Which process should the architect utilize to ensure that the deployment of MPX 11500 devices are optimized and that it is correct, before deploying the devices in production?

_________ content type supports sending NITRO commands to NetScaler. (Choose the correct option to complete sentence.)

Scenario: The Workspacelab team has configured their Citrix ADC Management and Analytics (Citrix Application Delivery Management) environment. A Citrix Architect needs to log on to the Citrix Application Delivery Management to check the settings.

Which two authentication methods are supported to meet this requirement? (Choose two.)

Scenario: A Citrix Architect has setup Citrix ADC MPX devices in high availability mode with version 12.0.53.13 nc. These are placed behind a Cisco ASA 5505 firewall. The Cisco ASA firewall is configured to block traffic using access control lists. The network address translation (NAT) is also performed on the firewall. The following requirements were captured by the architect during the discussion held as part of the Citrix ADC security implementation project with the customer's security team: The Citrix ADC MPX device:

should monitor the rate of traffic either on a specific virtual entity or on the device. It should be able to mitigate the attacks from a hostile client sending a flood of requests. The Citrix ADC device should be able to stop the HTTP. TOP, and DNS based requests.

needs to protect backend servers from overloading.

needs to queue all the incoming requests on the virtual server level instead of the service level.

should provide access to resources on the basis of priority.

should provide protection against well-known Windows exploits, virus-infected personal computers, centrally managed automated botnets. compromised webservers, known spammersThackers. and phishing proxies.

should provide flexibility to enforce the desired level of security check inspections for the requests originating from a specific geolocation database.

should block the traffic based on a predetermined header length, URL length, and cookie length.The device should ensure that characters such as a single straight quote (') backslash (); and semicolon (;) are either blocked, transformed, or dropped while being sent to the backend server.

Which security feature should the architect implement to meet these requirements?

Scenario: A Citrix Architect and a team of Workspacelab members met to discuss requirements during the design discussion for a Citrix ADC design project. Specifically, the existing Citrix ADC Configuration must be modified to meet the following authentication conditions:

* Provide users with domain drop-down page

* If the users select workspacelab.com. perform single factor authentication using LDAP

* It the users select AAATM.COM, perform two factor authentication using LDAP and RADIUS

* If the users select NSI-TEST. COM. perform SAML authentication using ADFS

What should the architect use to bind the AAA virtual server to the Citrix Gateway virtual server?