Practice Free CCA AppDS Traffic Management Exam Online Questions
Scenario: A Citrix Administrator executed the command below:
> set httpcallout httpcallout1 CcacheForSecs 120
This command changes the cache duration of the HTTP ____________ to be set to 120 seconds. (Choose the correct option to complete the sentence.)
- A . callout response
- B . request
- C . callout request
- D . response
A
Explanation:
https://docs.citrix.com/en-us/citrix-adc/current-release/appexpert/http-callout/configuring-http-callouts.html
Reference: https://docs.citrix.com/en-us/citrix-adc/current-release/appexpert/http-callout/caching-http-calloutresponses.html
Scenario: While performing a disaster recovery test, a Citrix Administrator decides to failover the Citrix ADC high availability (HA) pair appliances. The administrator notices that the failover is NOT working as expected, and the secondary Citrix ADC is NOT taking over as primary. The administrator suspects that networking issues may be causing the failure.
What could be the cause of this issue?
- A . HA monitoring is enabled on an interface of the secondary node that shows as ENABLED, DOWN.
- B . The Independent Network Configuration (INC) mode is enabled on the primary node.
- C . HA monitoring is enabled on a disabled interface of the primary node.
- D . HA heartbeats are only seen on some enabled interfaces of the secondary node.
To protect an environment against Hash DoS attacks, which two configurations can a Citrix Administrator use to block all post requests that are larger than 10,000 bytes? (Choose two.)
- A . > add policy expression expr_hashdos_prevention “http.REQ.METHOD.EQ(”POST”)&& http.REQ.CONTENT_LENGTH.GT(10000)”
> add rewrite policy drop_rewrite expr_hashdos_prevention DROP
> bind rewrite global drop_rewrite 100 END Ctype REQ_OVERRIDE - B . > add policy expression expr_hashdos_prevention “http.REQ.METHOD.EQ(”POST”)&& http.REQ.CONTENT_LENGTH.GT(10000)”
> add responder policy pol_resp_hashdos_prevention expr_hashdos_prevention DROP NOOP
> bind responder global pol_resp_hashdos_prevention 70 END Ctype REQ_OVERRIDE - C . > add policy expression expr_hashdos_prevention “http.REQ.METHOD.EQ(”POST”) || http.REQ.CONTENT_LENGTH.GT(10000)”
> add responder policy pol_resp_hashdos_prevention expr_hashdos_prevention DROP NOOP
> bind responder global pol_resp_hashdos_prevention 70 END Ctype REQ_OVERRIDE - D . > add policy expression expr_hashdos_prevention “http.REQ.METHOD.EQ(”POST”) || http.REQ.CONTENT_LENGTH.GT(10000)”
> add rewrite policy drop_rewrite expr_hashdos_prevention DROP
> bind rewrite global drop_rewrite 70 END Ctype REQ_OVERRIDE - E . > add policy expression expr_hashdos_prevention “http.REQ.METHOD.EQ(”POST”) || http.REQ.CONTENT_LENGTH.GT(10000)”
> add responder policy pol_resp_hashdos_prevention expr_hashdos_prevention DROP NOOP
> bind responder global pol_resp_hashdos_prevention 100 END Ctype REQ_OVERRIDE - F . > add policy expression expr_hashdos_prevention “http.REQ.METHOD.EQ(”POST”) || http.REQ.CONTENT_LENGTH.GT(10000)”
> add rewrite policy drop_rewrite expr_hashdos_prevention DROP
> bind rewrite global drop_rewrite 100 END Ctype REQ_OVERRIDE
Scenario: A Citrix Administrator made changes to a Citrix ADC, deleting parts of the configuration and saving some new ones. The changes caused an outage that needs to be resolved as quickly as possible. There is no Citrix ADC backup.
What does the administrator need to do to recover the configuration quickly?
- A . Restart the Citrix ADC.
- B . Restore from the revision history.
- C . Run saved versus running configuration.
- D . Run highly availability (HA) file synchronization.
What is a primary security feature in Citrix ADC for traffic management? (Choose two)
- A . Dual-factor authentication
- B . Data encryption
- C . Firewall integration
- D . Malware analysis
Scenario: A Citrix Administrator configured SNMP to send traps to an external SNMP system. When reviewing the messages, the administrator notices several entity UP and entity DOWN messages.
To what are these messages related?
- A . Load-balancing vServers
- B . Network interface
- C . High availability nodes
- D . SSL profile
What Citrix ADC tool is used to manage complex traffic routing decisions?
- A . The Responder
- B . The Optimizer
- C . The Load Balancer
- D . The Content Switch
Scenario: The primary content switching vServer has gone down.
To troubleshoot, a Citrix Administrator has issued the following command:
> show csvserver CSV
CSV (10.1.100.100:443) C HTTPS Type: CONTENT
State: UP
Last state change was at Mon Jun 29 15:20:43 2020
Time since last state change: 1 day, 06:47:58 610
Client Idle Timeout: 180 sec
Down state flush: ENABLED
Disable Primary vServer On Down: DISABLED
Appflow logging: ENABLED
Port Rewrite: DISABLED
State Update: DISABLED
Default: Content Precedence: URL
vServer IP and Port insertion: OFF
Persistence: NONE redirect: http://www.site1.com/mysite1/maintenance
Backup: vServerCLBC2
Listen Policy: NONE
IcmpResponse: PASSIVE
RHIstate: PASSIVE
Traffic Domain: 0
Based on this output, where will the subsequent request be redirected?
- A . http://www.site1.com/mysite1/maintenance
- B . vServerCLB-2
- C . Backup content switching vServer
- D . 10.1.100.100:443
B
Explanation:
https://docs.citrix.com/en-us/citrix-adc/current-release/content-switching/protecting-against-failure.html#configuring-a-redirection-url
“If a content switching virtual server is configured with both a backup virtual server and a redirect URL, the backup virtual server takes precedence over the redirect URL. A redirect URL is used when the primary and backup virtual servers are down.”
Which step can a Citrix Administrator take to use default compression policies?
- A . Select the compression algorithm (gzip/deflate/identity).
- B . Disable the Citrix ADC compression feature at a global level.
- C . Enable compression on the associated bound services.
- D . Bind the default compression policies to the vServer.
D
Explanation:
To put a compression policy into effect, you must bind it either globally, so that it applies to all traffic that flows through the Citrix ADC, or to a specific virtual server, so that the policy applies only to requests whose destination is the VIP address of that virtual server.
By default, compression is disabled on the Citrix ADC. You must enable the feature before configuring it. You can enable it globally so that it applies to all HTTP and SSL services, or you can enable it just for specific services.
https://docs.citrix.com/en-us/citrix-adc/current-release/load-balancing/load-balancing-advanced-settings/enable-compression-on-service.htm
What is the effect of the “set cs vServer-CS-1 CredirectURL http://www.newdomain.com/mysite/” command?
- A . If the vServer-CS-1 encounters a high connection rate, then users will be redirected to http://www.newdomain.com/mysite/.
- B . If the status of vServer-CS-1 is DOWN, then users will be redirected to http://www.newdomain .com/mysite/.
- C . All the requests to vServer-CS-1 will be redirected to http://www.newdomain.com/mysite/.
- D . All the requests without URL path/mysite/ will be redirected to http://www.newdomain.com/mysite/.
B
Explanation:
https://support.citrix.com/article/CTX108946/how-to-configure-redirect-url-on-adc-virtual-server-when-virtual-server-is-not-available