Exam Code: 1Y0-351 (Practice Exam Latest Test Questions VCE PDF)
Exam Name: Citrix NetScaler 10.5 Essentials and Networking
Certification Provider: Citrix
Free Today! Guaranteed Training- Pass 1Y0-351 Exam.
2021 Jan 1Y0-351 exam topics
Q71. Which public IP address must a NetScaler Engineer set on a NetScaler appliance to allow for client connections?
A. NSIP
B. SNIP
C. VIP
D. USNIP
Answer: C
Q72. Which client c the NetScaler may use?
A. Accept
B. User-Agent
C. Content-Type
D. Accept-Encoding
Answer: D
Q73. Which feature could a Network Engineer configure in order to restrict client connections to a specific bandwidth limit?
A. Spillover
B. Rate Limiting
C. SureConnect
D. Filter Policies
Answer: B
Q74. Which command will allow an engineer to change the NetScaler IP (NSIP) from the command-line interface?
A. add ns ip 10.100.10.100 255.255.255.0 -type SNIP
B. add ns ip 10.100.10.100 255.255.255.0 -type NSIP
C. set ns config -ipaddress 10.100.10.100 -netmask 255.255.255.0
D. set ns ip 10.100.10.100 -netmask 255.255.255.0 -mgmtaccess enabled
Answer: C
Q75. Scenario: The network engineer is setting up a new NetScaler using a direct connection. Three networks are connected to the NetScaler. After initial configuration and restart, the engineer would like to confirm the routing table entries. From which location and which command should the engineer run to display the routing table?
A. From the shell 'netstat -r'
B. From the shell 'route monitor'
C. From the command-line interface 'show pbr' D. From the command-line interface 'show route'
Answer: D
Renew 1Y0-351 free practice exam:
Q76. Scenario: A network engineer needs to re-configure the NetScaler to utilize two new VLANs -VLAN2 and VLAN3. VLAN2 is an untagged VLAN and VLAN3 will require a .1q compliant tag. Interface 1/1 is the only interface that will be used on the NetScaler. How could the engineer configure the NetScaler so that it can communicate with both networks?
A. Change the NSVLAN to 3 Add VLAN 2 and bind interface 1/1 as untagged
B. Enable the Tag all VLANs option on interface 1/1.
C. Add VLAN2 and bind interface 1/1 as untagged Add VLAN3 and bind interface 1/1 as tagged
D. Add a SNIP for each VLAN Enable management access on the SNIP for VLAN3
Answer: C
Q77. Scenario: A NetScaler Engineer is viewing Authentication, Authorization and Access (AAA) events on the NetScaler appliance to determine why a user is unable to log on. The events below have been logged during this timeframe:
Fri Oct 17 18:17:16 2014
/usr/home/build/rs_80_48/usr.src/usr.bin/nsaaad/../../netscaler/aaad/ldap_drv.c[40\]:
start_ldap_auth attempting to auth scottli @ 10.12.33.216 Fri Oct 17 18:17:18 2014 /usr/home/build/rs_80_48/usr.src/usr.bin/nsaaad/../../netscaler/aaad/ldap_drv.c[291\]: recieve_ldap_bind_event receive ldap bind event Fri Oct 17 18:17:18 2014 /usr/home/build/rs_80_48/usr.src/usr.bin/nsaaad/../../netscaler/aaad/ldap_drv.c[326\]: recieve_ldap_bind_event ldap_bind with binddn bindpw failed:Invalid credentials Fri Oct 17
18:17:18
2014
/usr/home/build/rs_80_48/usr.src/usr.bin/nsaaad/../../netscaler/aaad/naaad.c[1198\]:
send_reject sending reject to kernel for : scottli
What is the root cause of this issue?
A. The LDAP Base DN is incorrect.
B. The Bind DN credentials are invalid.
C. The LDAP server is NOT responding.
D. The user has entered an invalid password.
Answer: B
Q78. Which service setting would a NetScaler Engineer use in the command-line interface to limit connections to server resources?
A. -maxReq
B. -maxClient
C. -monThreshold
D. -maxBandwidth
Answer: B
Q79. Which type of authentication server could an engineer configure in order to provide the use of RSA token authentication as a permitted authentication method to access a AAA Virtual Server?
A. LDAP
B. SAML
C. RADIUS
D. Negotiate
Answer: C
Explanation:
http://support.citrix.com/article/CTX127543
This document describes how to configure Access Gateway 5.0 for authentication against an RSA SecurID Authentication server. It describes the configuration required in both the Access Gateway and the RSA server for various deployment topologies.
Within the RSA Authentication Manager console, choose Agent Host > Generate Configuration Files and select for One Agent Host, and choose the Agent Host created in step 1 and save the generated sdconf.rec file.
If using RSA 7.1 Open the RSA Security Console and navigate to Access > Authentication Agents > Add New. Enter the name and IP Address of the Access Gateway, and set Agent type to Standard Agent. Save this new agent.
Select Access > Authentication Agents > Generate Configuration File and generate the configuration file. There is no option to generate a configuration file for a single host in RSA
7.1. Save and extract the sdconf.rec from the generated zip file.
Log on to the Access Gateway AdminLogonPoint and go to Authentication Profiles to create an RSA authentication profile. Browse to the generated sdconf.rec file on your computer to upload it on the Appliance, and save the profile.
Additional Notes for Creating the Agent Record in RSA. The details entered into the Agent Host configuration are specific, and depend on the deployment configuration of your Access Gateway. The following are the different deployment methods and the associated configuration within the RSA Agent: Access Gateway is a non-HA deployment in one-arm mode. Network Address: IP address of Access Gateway Access Gateway is a non-HA deployment in two-arm mode, traffic to the RSA server is through the interface with the Internal role Network Address: IP address of the interface with the Internal role Access Gateway is a non-HA deployment in two-arm mode, traffic to the RSA server is through the interface with the External role Network Address: IP address of the interface with the Internal role Secondary Nodes: IP address of the interface with the External role Access Gateway is in an HA deployment in one-arm mode Network Address: The HA Virtual IP address Secondary Nodes: The physical IP addresses of both Access Gateways Access Gateway is in an HA deployment in two-arm mode, traffic to the RSA server is through the interface marked as INTERNAL Network Address: The HA Internal virtual IP address Secondary Nodes: The physical IP addresses of the interfaces with the Internal role on both Access Gateways Access Gateway is in an HA deployment in two-arm mode, traffic to the RSA server is through the interface marked as EXTERNAL Network Address: The HA Internal virtual IP address Secondary Nodes: The physical IP addresses of the interfaces with the External role on both Access Gateways *In RSA 7.1 Secondary Nodes have been renamed to Alternate IP Addresses in the Authentication Agent configuration.
Q80. Which command must a NetScaler Engineer run at the command-line interface to enable a Link Aggregation Control Protocol (LACP) channel?
A. Use "set lacp" with sysPriority parameter.
B. Use "set lacp" with ownerNode parameter.
C. Use "set interface" with lacpKey parameter.
D. Use "set interface" with lacpPriority parameter.
Answer: C