1Y0-351 Online Practice Questions and Answers

What is the purpose of the SSL Certificate Authority (CA) root certificate during an SSL connection?

A. SSL Cipher Exchange

B. Session Key Exchange

C. Pre Shared Master Secret Generation

D. Server Certificate Signature Verification

The upgrade script copies the updated NetScaler kernel file to the __________ NetScaler directory. (Choose the correct option to complete the sentence.)

A. /var

B. /flash

C. /nsconfig

D. /flash/boot

Which persistence method is only applicable to load-balancing SIP?

A. CALLID

B. RTSPID

C. SOURCEIP

D. COOKIEINSERT

Scenario: A NetScaler Engineer wants to make it easier for the help desk group to access the active node in a high-availability pair. Members of the help desk group must be able to access the NetScaler in a secure way without being notified of warnings in their web browsers.

Which two of the listed steps must the engineer take to meet the requirements of the scenario? (Choose two.)

A. Enable management access to the VIP.

B. Enable management access to the SNIP.

C. Bind a trusted certificate to the internal service.

D. Bind the ns-server-certificate to the SNIP to the internal service.

E. Create a self-signed certificate on the NetScaler and assign it to the internal service.

NO: 89

A NetScaler Engineer would like to direct identical requests for the same service to specific cache servers.

Which load-balancing method should the engineer use?

A. URL Hash

B. Domain Hash

C. Source IP Hash

D. Source IP Destination IP Hash

A NetScaler Engineer needs an SNMP alert to be sent when CPU utilization is 90% or higher on a

NetScaler instance.

Which two steps must the engineer take to configure the SNMP alert? (Choose two.)

A. Enable SNMP trap logging.

B. Add an SNMP trap destination.

C. Set an SNMP community string.

D. Set the CPU-USAGE alarm thresholds.

E. Add an SNMP manger to poll the instance.

Scenario: A NetScaler engineer is on the phone with Technical Support to troubleshoot an issue. The NetScaler engineer generated a support archive and needs to send the file to the Technical Support

Specialist to help resolve the problem with the appliance.

In which directory could the engineer retrieve the information?

A. /nsconfig

B. /var/crash

C. /var/nstrace

D. /var/tmp/support

During a recent security penetration test, several ports on the management address were

identified as providing unsecured services.

Which two methods could the network engineer use to restrict these services? (Choose two.)

A. Configure Auditing policies.

B. Create Content Filtering policies.

C. Create Access Control Lists (ACLs).

D. Configure options on the Management IP addresses.

A network engineer needs to prevent too many simultaneous HTTP requests that can cause a Denial Of Service (DDoS). What could the engineer enable to prevent too many simultaneous HTTP requests?

A. Rate Limiting

B. SureConnect

C. Priority Queuing

D. Authorization Policy

Scenario: An engineer has been asked to implement load balancing of an existing unsecured web application. The engineer needs to ensure that users will access the web application using HTTPS, but no changes can be made to the web servers hosting the web application.

In order to fulfill the requirements, the engineer must create an __________ service group and add members with port __________; and bind the service group to an __________ virtual server. (Choose the correct set of options to complete the sentence.)

A. SSL; 443; SSL

B. HTTP; 80; SSL

C. SSL; 80; HTTP

D. HTTPS; 443; HTTP