Scenario: A Citrix Architect captured the following requirements during a design discussion held for a Citrix ADC design project.
There will be a pair of Citrix ADC MPX appliances deployed in the DMZ and another pair deployed in the internal network
High availability will be accessible for each Citrix ADC MPX appliance in both the DMZ (external) and LAN (internal) networks
DMZ Citrix ADC MPX appliances will have GSLB configured and deployed in Active/Passive mode
Load balancing for the internal Microsoft Exchange servers will be configured on the internal Citrix ADC appliances
Load balancing for SAP application servers in the DMZ will be configured on the DMZ Citrix ADC appliances
For the DMZ Citrix ADC MPX pair, the data and management traffic will be sent over the same interface.
The DMZ Citrix ADC MPX pair will have three interfaces available.
The users from the DMZ should NOT have access to servers in the internal zone
Which deployment mode should the architect use to deploy the Citrix ADC pair in the DMZ?
Correct : A
Start a Discussions
Scenario: A Citrix Architect has executed the following commands on the Citrix ADC:
In which scenario will the timeout work as configured?
Correct : B
Start a Discussions
What are three potential risks when examining the disaster recovery plan and implementation for a company? (Choose three)
Correct : A, B, C
Start a Discussions
Scenario: A Citrix Architect has set up Citrix ADC MPX devices in high availability mode with version 12.0.53.13 nc. These are placed behind a Cisco ASA 5505 firewall. The Cisco ASA firewall is configured to block traffic using access control lists. The network address translation (NAT) is also performed on the firewall.
The following requirements were captured by the architect during the discussion held as part of the Citrix ADC security implementation project with the customers security team:
The Citrix ADC MPX device:
should monitor the rate of traffic either on a specific virtual entity or on the device It should be able to mitigate the attacks from a hostile client sending a flood of requests. The Citrix ADC device should be able to stop the HTTP TCP. and DNS based requests
needs to protect backend servers from overloading
needs to queue all the incoming requests on the virtual server level instead of the service level
should provide access to resources on the basis of priority
should provide protection against well-known Windows exploits virus-infected personal computers, centrally managed automated botnets, compromised webservers, known spammers/hackers, and phishing proxies
should provide flexibility to enforce the desired level of security check inspections for the requests originating from a specific geolocation database.
should block the traffic based on a pre-determined header length. URL length and cookie length. The device should ensure that characters such as a single straight quote ('): backslash (\); and semicolon (;) are either blocked, transformed, or dropped while being sent to the backend server.
Which security feature should the architect configure to meet these requirements?
Correct : A
Start a Discussions
Scenario: A Citrix Architect needs to assess a Citrix Gateway deployment that was recently completed by a customer and is currently in pre-production testing The Citrix Gateway needs to use ICA proxy to provide access to a Citrix Virtual Apps and Citrix Virtual Desktops environment. During the assessment, the customer informs the architect that users are NOT able to launch published resources using the Gateway virtual server.
Click the Exhibit button to view the troubleshooting details collected by the customer.
Which two reasons could cause this issue? (Choose two)
Correct : B, D
Start a Discussions