Upload
others
View
25
Download
0
Embed Size (px)
Citation preview
1Y0-340
1Y0-340 Citrix ADC Advanced Topics: Security, Management, and Optimization
Exam Preparation Guide 2.0
October 22, 2018
Co
ntr
ibu
tors
& M
arks
Pre
par
atio
nEx
am O
verv
iew
1
Disclaimer
This exam preparation guide is designed to provide candidates with necessary information about the 1Y0-340 exam, including study resources and ways to interpret the exam objectives to better enable candidates to assess the types of questions that may be asked during the exam. Please be aware that the content of this guide in no way ensures a passing score on the certification exam.
2
Co
ntr
ibu
tors
& M
arks
Pre
par
atio
nEx
am O
verv
iew
Table of Contents
Exam OverviewNumber of Items 4Passing Score 4Time Limit 4Intended Audience 4Registration and Administration 4Retake Policies 5
Preparing for the ExamRecommended Knowledge and Skills 6Recommended Product Experience 6Recommended Training 7Unauthorized Preparation Materials 7Section Titles and Weights 8Interpretation of Objectives 9Sections, Objectives and References 10Appendix: Practice 22
Contributors & MarksPrep Guide Author 25Subject Matter Experts (SMEs) 25Notice 26Marks 26
3
Co
ntr
ibu
tors
& M
arks
Pre
par
atio
nEx
am O
verv
iew
Exam OverviewNumber of Items
The 1Y0-340 exam is a 62-question exam written in English. Some of the itemson this exam will not be scored and thus will not affect your final result in anyway. The unscored items are included in this exam solely for research purposes.
Passing Score
The passing score for this exam is 62%.
Time Limit
Intended Audience
The 1Y0-340 exam was developed for candidates who have demonstrated the minimum requisite knowledge and skills required for a Citrix networking professional who can deploy and/or manage Citrix Web App Firewall to secure application access in a Citrix ADC 12 environment, as well as Citrix Application Delivery Management to administer a Citrix ADC environment or optimize Citrix ADC-managed application delivery traffic.
The tasks tested in this exam will represent those skills, which are deemed as advanced topics such as Security, Management, and Optimization
Primary Audience:• Network Administrators• Network Engineers• Network Architects• Citrix Administrators• Systems Engineers /Systems Administrators
Registration and Administration
This exam is administered at Pearson VUE testing centers worldwide. To learn more about the rules and process of taking an exam, please visit http://training.citrix.com/exams.
Worldwide, visit the Pearson VUE website (http://www.pearsonvue.com/citrix) to locate a testing center in your area and register for an exam. You may also register in person at any Pearson VUE testing center. If you reside in the United States or Canada, you may also register by calling 1-800-931-4084.
Note: A $7 USD surcharge will be added to phone registrations. 4
Type of Candidate Time Limits* Notes
Native English speakers 90 minutes
Non-native English speakers that take the exam in countries where English is a foreign language
90 minutes
+30 minutes (time extension)
Time extension granted automatically
Non-native English speakers that take the exam in countries where English is NOT a foreign language
90 minutes
+30 minutes(time extension)
Must request time extension from Citrix. Submit your request here: Time Extension Request
Exam
Ove
rvie
wC
on
trib
uto
rs &
Mar
ksP
rep
arat
ion
The time limit for this exam is 90 minutes. The total seat time is 90 + 35 minutes.
The total seat time includes times allotted for the NDA and surveys.
5
Co
ntr
ibu
tors
& M
arks
Pre
par
atio
nEx
am O
verv
iew
Exam
Ove
rvie
w
Retake Policy
Candidates must wait 24 hours from their original appointment time before they can register to retake an exam. After a second attempt, and any attempt thereafter, the candidate must wait 14 calendar days to retake the exam.
Breach of this policy can result in sanctions up to and including a ban from taking Citrix exams and/or decertification.
For more information about our policies, including the Citrix Exam Retake Policy and the Candidate Conduct Policy, please visit http://training.citrix.com/exams
Prepping for the Exam
Recommended Knowledge and Skills
Candidates should have knowledge of the following prior to taking this exam:
o Identify common web attacks and vulnerabilities.o Understand how to utilize the adaptive learning engine.o Configure Citrix Web App Firewall to protect web applications.o Utilize Citrix ADC Secure Insight to monitor, manage and report on application
services security.o Troubleshoot Citrix Web App Firewall.o Manage multiple Citrix ADC platforms centrally.o Orchestrate configuration changes.o Report on transactions passing through the Citrix ADC environment.o Visualize infrastructure and plan expansion.
6
Co
ntr
ibu
tors
& M
arks
Pre
par
atio
nEx
am O
verv
iew
Pre
par
atio
n
Recommended Product Experience
We recommend that candidates have at least six months of experience with the following topics in a Citrix ADC 12 solution:
o Citrix Web App Firewall Overviewo Citrix Web App Firewall Profiles and Policieso Regular Expressiono Attacks and Protectionso Monitoring and Troubleshootingo Security and Filteringo Citrix Application Delivery Management: Introduction and Configurationo Managing and Monitoring Citrix ADC Instanceso Managing Citrix ADC Configurationso Citrix ADC Web Loggingo Integrated Cachingo Front-End Optimizationo Tuning and Optimizations
Recommended Training
Citrix Education recommends that candidates have hands-on experience with Citrix NetScaler 11 and above, prior to taking this exam. One of the best ways to do this is by taking a formal Citrix training course. The following course provides training on Citrix ADC 12 Essentials and Citrix ADC Traffic Management solutions.
• CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization
As with all Citrix exams, it is recommended that candidates get hands-on experience by working directly with products covered on the exam.
7
Co
ntr
ibu
tors
& M
arks
Exam
Ove
rvie
wP
rep
arat
ion
Unauthorized Preparation Materials
Citrix Education monitors exam results to ensure that candidates are not using unauthorized materials to prepare for exams. If it is determined that a candidate used unauthorized materials to prepare for an exam, the candidate’s score will be invalidated and his or her certification will be revoked.
When looking for materials in addition to authorized Citrix training to prepare for certification, Citrix Education recommends that you visit http://www.certguard.com to ensure that a site is indeed legitimate. This site flags websites that are acting as brain dumps, which have unauthorized materials.
Section Titles and Weights
8
Section Weight
Section 1: Citrix Web App Firewall Overview8%
Section 2: Citrix Web App Firewall Profiles and Policies6%
Section 3: Regular Expression5%
Section 4: Attacks and Protections21%
Section 5: Monitoring and Troubleshooting8%
Section 6: Security and Filtering6%
Section 7: Citrix Application Delivery Management: Introduction and Configuration 8%
Section 8: Managing and Monitoring Citrix ADC Instances11%
Section 9: Managing Citrix ADC Configurations5%
Section 10: Citrix ADC Web Logging3%
Section 11: Integrated Caching6%
Section 12: Front-End Optimization5%
Section 13: Tuning and Optimizations6%
TOTAL 100%
Co
ntr
ibu
tors
& M
arks
Exam
Ove
rvie
wP
rep
arat
ion
The section weights included in this guide are intended to help you in understanding how much of the exam is devoted to the topics listed. In fact, the percentages directly map to the number of questions on the exam. For example, if an exam has 60 questions, and Section 1 is weighted at 50%, then 30 of the questions on the exam will relate to Section 1 (60*50% = 30).
Please be warned that section weights are NOT used to calculate your score. Scoring is far more complicated as exam questions may be given different weights based on their overall importance. Because some questions may have different point values assigned to them, section weights and exam scores do not always have a one-to-one correlation.
For more information on how scoring works in Citrix exams read the blog The Scoring Secrets for Citrix Exams - Divulged.
Interpretation of Objectives
Candidates should refer to the objectives and examples listed in this guide in order to determine which topics will be on the exam, as well as examples of the topics that could be tested.
For example, if the objective reads “Configure monitors” and one of the examples reads, “determine when to use which type of monitor,” exam-takers could expect to see:
• A question that requires determining which type of monitor to configure…o Which type of monitor should a Citrix Administrator configure…
• …based on given requirement(s)o …to validate that a specific text string is returned in a web server
response?
Note: The examples listed in the “Sections, Objectives, Examples and References” section of this guide do NOT encompass all potential topics that could be tested. The examples are only provided as guidance.
The objectives and examples for this exam were developed by Exam Project Managers and Subject Matter Experts (SMEs) based on identified tasks that related to Citrix ADC12 in enterprise environments.
The number of questions written for each objective relates directly to the importance of that objective and is proportional to how frequently that task is performed.
9
Co
ntr
ibu
tors
& M
arks
Exam
Ove
rvie
wP
rep
arat
ion
Objective Number
Objective References
Section 1: Citrix Web App Firewall Overview
1.01 Identify common web application attacks.
CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-1, 4)
http://docs.citrix.com/en-us/netscaler/12/application-firewall/top-level-protections.html
http://docs.citrix.com/en-us/netscaler/12/application-firewall/top-level-protections/buffer-over-flow-check.html
1.02 Determine the Functionality of Citrix Web App Firewall, given a scenario.
CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-4)
http://docs.citrix.com/en-us/netscaler/12/application-firewall/top-level-protections/buffer-over-flow-check.html
http://docs.citrix.com/en-us/netscaler/12/application-firewall/top-level-protections/html-sql-injection-check.html
http://docs.citrix.com/en-us/netscaler/12/application-firewall/top-level-protections/cookie-consistency-check.html
http://docs.citrix.com/en-us/netscaler/12/application-firewall/dataleak-prevention/creditcard-check.html
http://docs.citrix.com/en-us/netscaler/12/application-firewall/DeploymentGuide.html
1.03 Understand the audit for PCI-DSS compliance.
CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-1)
http://docs.citrix.com/en-us/netscaler/12/application-firewall/stats-and-reports.html
https://www.citrix.com/products/netscaler-appfirewall/platforms.html
Sections, Objectives and References• Citrix Product Documentation: http://docs.citrix.com• Citrix Support: http://www.citrix.com/support• Citrix Blogs: http://blogs.citrix.com/
10
Co
ntr
ibu
tors
& M
arks
Exam
Ove
rvie
wP
rep
arat
ion
Objective Number
Objective References
11
Co
ntr
ibu
tors
& M
arks
Exam
Ove
rvie
wP
rep
arat
ion
2.02 Determine how to configure Citrix Web App Firewall Policies.
CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-2)
http://docs.citrix.com/en-us/netscaler/12/appexpert/policies-and-expressions/ns-pi-tut-exmp-classic-pol-wrapper-con.html
http://docs.citrix.com/en-us/netscaler/12/application-firewall/policies/firewall-policies/configuring_policies.html
http://docs.citrix.com/en-us/netscaler/12/application-firewall/policies/firewall-policies/binding_policies.html
http://docs.citrix.com/en-us/netscaler/12/appexpert/policies-and-expressions/ns-pi-tut-exmp-classic-pol-wrapper-con.html
2.03 Determine how to analyze application firewall settings.CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-2)
Section 3: Regular Expression
3.01
Identify PCRE metacharacters.
CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-3)
3.02Determine how to apply regular expressions for Citrix ADC.
CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-3)
Section 2: Citrix Web App Firewall Profiles and Policies
2.01Determine how to create (or implement) Citrix Web App Firewall profiles.
CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-2)
https://www.citrix.com/blogs/2011/11/23/netscaler-application-firewall-profiles-basic-vs-advanced-check-it-out/
https://support.citrix.com/article/CTX130546
12
Co
ntr
ibu
tors
& M
arks
Exam
Ove
rvie
wP
rep
arat
ion
Section 4: Attacks and Protections
4.01Determine how to configure security checks to meet given requirements.
CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-4)
4.02 Identify various attacks and protections.
CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-4)
https://support.citrix.com/article/CTX131488
https://docs.citrix.com/en-us/netscaler/11-1/application-firewall/form-protections/form-field-consistency-check.html
http://docs.citrix.com/en-us/netscaler/11-1/application-firewall/form-protections/cross-site-request-forgery-check.html
4.03Determine how to configure the generation of simple and generalized rules based on given requirements.
CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-4)
https://docs.citrix.com/en-us/netscaler/12-1/ns-gen-appsec-wrapper-10-con/appfw-wrapper-con-10/appfw-profiles-con/appfw-profiles-learning-tsk.html
4.04 Determine learned rules per security check.
CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-4)
https://support.citrix.com/article/CTX138858
https://support.citrix.com/article/CTX219267
4.05 Determine how to deploy, skip and edit learned rules.
CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-4)
https://docs.citrix.com/en-us/netscaler/10-1/ns-gen-appsec-wrapper-10-con/appfw-wrapper-con-10/appfw-profiles-con/appfw-profiles-learning-tsk.html
Objective Number
Objective References
Objective Number
Objective References
13
Co
ntr
ibu
tors
& M
arks
Exam
Ove
rvie
wP
rep
arat
ion
Section 5: Monitoring and Troubleshooting
5.01 Determine how Citrix Web App Firewall interacts with applications in a given environment.
CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization(Module-5)
https://support.citrix.com/article/CTX131488
5.02 Determine how to Implement logging and monitoring.
CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization(Module-5)
https://docs.citrix.com/en-us/netscaler/11-1/application-firewall/logs.html
http://docs.citrix.com/en-us/netscaler-mas/11-1/security-insight.html
http://docs.citrix.com/en-us/netscaler-mas/11-1/security-insight.html#par_richtext_841a
5.03 Identify troubleshooting methods for Citrix Web App Firewall.
CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization(Module-5)
http://docs.citrix.com/en-us/netscaler/12/application-firewall.html
http://docs.citrix.com/en-us/netscaler/12/application-firewall/debugging-troubleshooting/miscellaneous.html
14
Co
ntr
ibu
tors
& M
arks
Exam
Ove
rvie
wP
rep
arat
ion
Section 6: Security and Filtering
6.01 Determine how to implement IP reputation.
CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-6)
http://docs.citrix.com/zh-cn/netscaler/12/reputation/ip-reputation.html
http://docs.citrix.com/zh-cn/netscaler/12/reputation.html
6.02 Determine how to implement IP rate-limiting.
CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-6)
http://docs.citrix.com/en-us/netscaler/12/appexpert/rate-limiting.html
http://docs.citrix.com/en-us/netscaler/12/appexpert/rate-limiting/rate-limiting-for-traffic-domains.html
http://docs.citrix.com/en-us/netscaler/12/appexpert/action-analytics/configuring-selector.html
http://docs.citrix.com/en-us/netscaler/12/appexpert/rate-limiting/rate-based-policies-examples.html
6.03 Determine how to Implement AppQoE.
CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-6)
http://docs.citrix.com/en-us/netscaler/12/appexpert/appqoe/appqoe-actions.html
6.04 Determine how to implement HTTP Callout.
CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-6)
http://docs.citrix.com/en-us/netscaler/12/appexpert/http-callout/configuring-http-callouts.html
http://docs.citrix.com/en-us/netscaler/12/appexpert/http-callout/caching-http-callout-responses.html
Objective Number
Objective References
Objective Number
Objective References
Section 7: Citrix Application Delivery Management: Introduction and Configuration
7.01Determine how to perform the initial configuration of Citrix Application Delivery Management.
http://docs.citrix.com/en-us/netscaler-mas/12.html
https://docs.citrix.com/en-us/netscaler-mas/12/setting-up-netscaler-mas/configure-system-settings-for-optimal-netscaler-mas-performance.html
7.02Determine how to deploy Citrix Application Delivery Management based on a given scenario.
http://docs.citrix.com/en-us/netscaler-mas/12/deploy-netscaler-mas.html
http://docs.citrix.com/en-us/netscaler-mas/12/deploy-netscaler-mas/ha-deployment.html
https://docs.citrix.com/en-us/netscaler-mas/12/setting-up-netscaler-mas/configure-system-settings-for-optimal-netscaler-mas-performance.html
7.03Determine how to create additional instances of Citrix Application Delivery Management.
CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-6)
http://docs.citrix.com/en-us/netscaler-mas/12/deploy-netscaler-mas/how-to-migrate-netscaler-mas-single-server-to-ha.html
15
Co
ntr
ibu
tors
& M
arks
Exam
Ove
rvie
wP
rep
arat
ion
Objective Number
Objective References
16
Co
ntr
ibu
tors
& M
arks
Exam
Ove
rvie
wP
rep
arat
ion
Section 8: Managing and Monitoring Citrix ADC Instances
8.01Determine how to manage multiple instances in a single Citrix ApplicationDelivery Management deployment with Inventory Management.
CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-1 and 2)
http://docs.citrix.com/en-us/netscaler-mas/12/instance-management/how-to-backup-and-restore-using-mas.html
http://docs.citrix.com/en-us/netscaler-mas/12/setting-up-netscaler-mas/adding-an-instance.html
8.02Determine how to manage and monitor the aspects of Authentication, Authorization, and Logging with User Management.
CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-1 and 2)
http://docs.citrix.com/en-us/netscaler-mas/12/authentication-how-to-articles/how-to-extract-authentication-server-group-in-mas.html
http://docs.citrix.com/en-us/netscaler-mas/12/authentication-how-to-articles/how-to-enable-fallback-local-authentication.html
http://docs.citrix.com/en-us/netscaler-mas/12/authentication-and-rbac/role-based-access-control.html
http://docs.citrix.com/en-us/netscaler-mas/12/stylebooks.html
http://docs.citrix.com/en-us/netscaler-mas/12/authentication-and-rbac/role-based-access-control/rbac-configuring-access-policies.html
http://docs.citrix.com/en-us/netscaler-mas/12/analytics/HDX-Insight.html
http://docs.citrix.com/en-us/netscaler/12/aaa-tm/multi-factor-nfactor-authentication.html
https://support.citrix.com/article/CTX200342
http://docs.citrix.com/en-us/netscaler-mas/12/multi-tenancy-in-netscaler-mas.html
http://docs.citrix.com/en-us/netscaler-mas/12/authentication-and-rbac/role-based-access-control.html
17
Co
ntr
ibu
tors
& M
arks
Exam
Ove
rvie
wP
rep
arat
ion
Section 9: Managing Citrix ADC Configurations
9.01 Determine how to create, manage, and configure StyleBooks.
CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-3)
http://docs.citrix.com/en-us/netscaler-mas/12/stylebooks/how-to-create-your-own-stylebooks.html
http://docs.citrix.com/en-us/netscaler-mas/12/stylebooks.html
Objective Number
Objective References
8.03Identify what data is captured and utilized with Analytics and Automation.
CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-1, 2 and Lab Guide)
http://docs.citrix.com/en-us/netscaler-mas/12/application-analytics-and-management.html
http://docs.citrix.com/en-us/netscaler-mas/12/analytics/mas-gateway-insight.html
http://docs.citrix.com/en-us/netscaler-mas/12/analytics/HDX-Insight.html
http://docs.citrix.com/en-us/netscaler-mas/12/analytics/ssl-insight.html
http://docs.citrix.com/en-us/netscaler-mas/12/configuration-management/configuration-jobs-record-and-play.html
https://docs.citrix.com/en-us/netscaler-mas/12/application-analytics-and-management/application-security-analytics.html
8.04Determine how to configure and install SSL Certificates on Citrix Application Delivery Management.
CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-1 and 2)
http://docs.citrix.com/en-us/netscaler-mas/12/certificate-management.html
18
Co
ntr
ibu
tors
& M
arks
Exam
Ove
rvie
wP
rep
arat
ion
Section 10: Citrix ADC Web Logging
10.01 Determine how to install and configure Citrix ADC Web Logging.
CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-4)
http://docs.citrix.com/en-us/netscaler/12/system/web-server-logging.html
http://docs.citrix.com/en-us/netscaler/11/system/web-server-logging/configuring-nswl-client.html
10.02 Determine how to troubleshoot issues using Citrix ADC Web Logging.
CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-4)
http://docs.citrix.com/en-us/netscaler/12/system/web-server-logging/configuring-nswl-client.html
http://docs.citrix.com/en-us/netscaler/12/system/web-server-logging/installing-netscaler-web-logging-client.html
9.02Determine how to utilize Citrix Application Delivery Management recommendations to assist in resource delivery.
CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-1)
http://docs.citrix.com/en-us/netscaler-mas/12/application-analytics-and-management.html
http://docs.citrix.com/en-us/netscaler-mas/12/authentication-how-to-articles/how-to-cascade-external-authentication-servers.html
http://docs.citrix.com/en-us/netscaler-mas/12/setting-up-netscaler-mas/add-netscaler-vpx-instances-deployed-in-cloud-to-netscaler-mas.html
http://docs.citrix.com/en-us/netscaler-mas/12/netscaler-mas-licensing.html
http://docs.citrix.com/en-us/netscaler-mas/12/system-requirements.html#par_anchortitle_6496
Objective Number
Objective References
19
Co
ntr
ibu
tors
& M
arks
Exam
Ove
rvie
wP
rep
arat
ion
11.01 Determine when to use static or dynamic content requests.
CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-5)
http://docs.citrix.com/en-us/netscaler/12/optimization/integrated-caching/how-integrated-caching-works.html
http://docs.citrix.com/en-us/netscaler/12/optimization/integrated-caching/configuring-selectors-basic-content-groups/about-content-groups.html
11.02 Determine how to configure cache policies.
CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-5)
https://support.citrix.com/article/CTX124553
http://docs.citrix.com/en-us/netscaler/12/optimization/integrated-caching/configuring-policies-caching-invalidation.html
11.03 Determine which content group settings to configure based on a given scenario.
CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-3 and 5)
http://docs.citrix.com/en-us/netscaler/12/optimization/integrated-caching/improving-cache-performance.html
https://developer-docs.citrix.com/projects/netscaler-command-reference/en/12.0/cache/cache-object/cache-object/#show-cache-object
Objective Number
Objective References
Section 11: Integrated Caching
20
Co
ntr
ibu
tors
& M
arks
Exam
Ove
rvie
wP
rep
arat
ion
12.01 Determine how content is currently handled by browsers based on a given environment.
CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-6)
http://docs.citrix.com/en-us/netscaler/12/optimization/front-end-optimization.html
12.02 Determine how to utilize front-end optimizations based on a given scenario.
CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-6)
http://docs.citrix.com/ja-jp/netscaler/12/optimization/front-end-optimization.html
http://docs.citrix.com/ko-kr/netscaler/12/optimization/front-end-optimization/front-end-optimization-samples.html
Objective Number
Objective References
Section 12: Front-End Optimization
13.03 Determine how to Tune HTTP and TCP behaviors in Connection Profiles.
http://docs.citrix.com/en-us/netscaler/12/system/tcp-configurations.html
http://docs.citrix.com/en-us/netscaler/12/system/TCP_Congestion_Control_and_Optimization_General.html
13.04Determine how to utilize HTTP DoS protection deployment guidelines to meet the needs of a given environment.
http://docs.citrix.com/en-us/netscaler/12/security/http-denial-of-service-protection/ns-syn-dos-protection-con.html
http://docs.citrix.com/en-us/netscaler/12/security/http-denial-of-service-protection/ns-httpdosp-tune-clnt-dtct-js-chlng-res-rate-con.html
http://docs.citrix.com/en-us/netscaler/12/security/http-denial-of-service-protection/ns-httpdosp-tune-clnt-dtct-js-chlng-res-rate-con.html
Section 13: Tuning and Optimizations
13.01Determine how the Citrix ADC system uses HTTP connections based on a given description.
CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-7)
http://docs.citrix.com/en-us/netscaler/12/system/http-configurations/configuring-http2.html
13.02 Determine how to configure Surge Protection and Priority Queuing.
CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-7)
http://docs.citrix.com/en-us/netscaler/12/security/surge-protection.html
http://docs.citrix.com/en-us/netscaler/12/security/priority-queuing.html
http://docs.citrix.com/en-us/netscaler/12/security/surge-protection/ns-sp-set-thresholdssp-tsk.html
Objective Number
Objective References
21
Appendix: Practice
Introduction
Exam-takers should refer to the objectives listed in the “Sections, Objectives, Examples and References” section of this guide in order to determine which topics will be on the exam and examples of topics for each objective.
For example, if the objective reads, "Troubleshoot high availability" and one of the examples reads, “determine how to resolve a given issue”, exam-takers could expect to see:
A scenario describing an issue with high availability -Scenario: A Citrix Administrator is attempting to configure high availability for a Citrix ADC MPX pair. Each Citrix ADC appliance resides in a different subnet. The administrator noticed that network connectivity between the appliances was lost once the high availability pair was established.
A question that requires determining how to resolve the given issue -What must the administrator enable to correct this issue?
The objectives for this exam were developed by Exam Project Managers and Subject matter experts based on identified tasks that relate to installing, configuring and/or operating Citrix ADC 12 in enterprise environments.
22
Sample Question 1
A Citrix Engineer needs to create an Citrix Web App Firewall Profile.
Which statement is applicable when using Signatures for creating an Citrix Web App Firewall Profile?
A. No Signatures are bound to the profile.B. No Custom Signatures can be used.C. Only external format Signatures can be used.D. The Default Signatures are bound to the profile.
Correct Answer: A
Objective: Determine how to analyze application firewall settings.
Source: CNS-320 Course, Module-4
Co
ntr
ibu
tors
& M
arks
Exam
Ove
rvie
wP
rep
arat
ion
Appendix: Practice
Sample Question 2
A Citrix Engineer has enabled transform action in SQL injection check.
What would the following parameter be transformed into?
Citrix; OR '1' ='1
A. Citrix\ OR "1"="1B. Citrix OR "1"="1C. Citrix OR "1"=/1D. Citrix/ OR "1"="1
Correct Answer: B
Objective: Determine how to configure the generation of simple and generalized rules based on given requirements.
Source: CNS-320 Course, Module-4
23
Sample Question 3
Which option matches the following regular expression?
r.n 10\.10\.0\..
A. run 10.100.10.99B. run 10.10.0.9C. RUN 10.10.0.9D. r.n 10.10.10.99
Correct Answer: B
Objective: Determine how to apply regular expressions for Citrix ADC.
Source: CNS-320 Course, Module-4
Co
ntr
ibu
tors
& M
arks
Exam
Ove
rvie
wP
rep
arat
ion
Appendix: Practice
Sample Question 4
Which logging does an engineer need to enable as a pre-requisite to geolocation-based logging?
A. CEF (Common Even Format)B. SyslogC. AuditD. AppFlow
Correct Answer: A
Objective: Determine how to implement traffic compression in a Citrix ADC environment
Source:
CNS-320 Course, Module-5
Citrix Docshttps://docs.citrix.com/en-us/netscaler/11-1/application-firewall/logs.html
24
Co
ntr
ibu
tors
& M
arks
Exam
Ove
rvie
wP
rep
arat
ion
Contributors & Marks
Author
Premkumar Mekara
25
Co
ntr
ibu
tors
&
Mar
ksP
rep
arat
ion
Exam
Ove
rvie
w
Subject Matter Experts
Akhilesh Kumar Pandey
Aman Sharma
Anton Mayers
Arnd Kagelmacher
Dave Gunn
Ian Gutierrez
Jessica Biesel
Jesse Wilson
Jo Harder
Jorge Luis
Justin Weldon
Khalaf Haddad
Lemay Marquinez
Liz Jimenez
Marcelo Oguma de Souza
Markus Heinrich
Matthew R Jones
Parveen Kumar
Paul Blitz
Puneet Seth
Rashmi Kolipura Nagaraj
Ravindra G Hunashimarad
Shruti V Dhamale
Rick Bloss
Sam Jacobs
Tim O’Brien
Tony Zhang
Victor Fuenmayor
Co
ntr
ibu
tors
& M
arks
Notice
Citrix® Systems, Inc. (Citrix) makes no representations or warranties with respect to the content or use of this publication. Citrix specifically disclaims any expressed or implied warranties, merchantability, or fitness for any particular purpose. Citrix reserves the right to make any changes in specifications and other information contained in this publication without prior notice and without obligation to notify any person or entity of such revisions or changes.
© Copyright 2017 Citrix Systems, Inc.
All Rights Reserved. No part of this publication may be reproduced or transmitted in any form or by any means, electronic or mechanical, including photocopying, recording, or information storage and retrieval systems, for any purpose other than the purchaser’s personal use, without express written permission of:
Citrix Systems, Inc. 851 W. Cypress Creek Road Ft. Lauderdale, FL 33309 http://www.citrix.com
26
Co
ntr
ibu
tors
&
Mar
ksP
rep
arat
ion
Exam
Ove
rvie
wC
on
trib
uto
rs &
Mar
ks
Marks
The following marks are service marks, trademarks, or registered trademarks of their respective owners in the United States or other countries:
Mark Owner
Citrix®, Citrix ADC®, HDX Insight™, Citrix Application Delivery Management™, Citrix ADC MPX™, Citrix ADC SDX™, Citrix ADC VPX™, TriScale Clustering™
Citrix Systems, Inc.
Active Directory®, Microsoft®, SQL Server®, SQL Express™, Windows®, Windows Server®, Windows Server 2008™, Windows Server 2008 R2™, Windows Server 2012™, Windows Server 2012 R2™, Windows 7™, Windows 8™, Windows 10™
Microsoft Corporation