Analyzing Citrix NetScaler Advanced Topics: Securitys (1Y0-340) - Citrix Actual Exam Questions

A Citrix Engineer needs to ensure that clients always receive a fresh answer from the integrated cache for positive responses (response of 200). Which two settings can the engineer configure to make sure that clients receive a fresh response when it is needed? (Choose two.)

A Citrix Engineer executed the below commands on the NetScaler command-line interface (CLI): add stream selector cacheStreamSelector http.req.url add ns limitidentifiercacheRateLimitIdentifier –threshold 5 –timeSlice 2000 – selectorNamecacheStreamSelector add cache policy cacheRateLimitPolicy –rule “http.req.method.eq(get) &&sys.check_limit (\ “cacheRateLimitIdentifier\”)” –action cache bind cache global cacheRateLimitPolicy- priority 10 What will be the effect of executing these commands?

Scenario: A Citrix Engineer is configuring a Buffer Overflow Security Check. When configuring the options, the engineer notices that the Learn Mode is unavailable. Why is the Learn Mode unavailable in this configuration?

Scenario: A Citrix Engineer discovers a security vulnerability in one of its websites. The engineer takes a header trace and checks the Application Firewall logs. The following was found in part of the logs: method=GET request = http://my.companysite.net/FFC/sc11.html msg=URL length (39) is greater than maximum allowed (20).cn1=707 cn2=402 cs1=owa_profile cs2=PPE0 cs3=kW49GcKbnwKByByi3+jeNzfgWa80000 cs4=ALERT cs5=2015 Which type of Application Firewall security check can the engineer configure to block this type of attack?

Scenario: A Citrix Engineer has configured the Signature file with new patterns and log strings and uploaded the file to Application Firewall. However, after the upload, the Signature rules are NOT implemented. What can the engineer modify to implement Signature rules?