Scenario: A Citrix Engineer wants to protect a web application using Citrix Web App Firewall. The engineer enables the Learn action for the Start URL, HTML, Cross-Site Scripting, and HTML SQL Injection protections. The engineer assigns this profile to a policy, which is then bound to the virtual server.
Which two items can the engineer check to determine that the Learn action is NOT capturing any rules? (Choose two.)
A Citrix Engineer needs to ensure that all traffic to the virtual server is blocked if NONE of the bound Application Firewall policies are matched.
Which setting can the engineer configure to meet this requirement?
A Citrix Engineer needs to set up access to an internal application for external partners.
Which two entities must the engineer configure on the Citrix ADC to support this? (Choose two.)
Scenario: A Citrix Engineer has configured Application Firewall and enabled it in learning mode.
However, the Application Firewall database is reaching full capacity due to excessive requests.
What can the engineer configure to mitigate this issue?
Scenario: A Citrix Engineer must enable a cookie consistency security check and ensure that all the session cookies get encrypted during the transaction. The engineer needs to ensure that none of the persistent coolies are encrypted and decrypted and decrypt any encrypted cookies during the transaction. Which cookie consistency security feature will the engineer configure in the following configuration to achieve the desired results?
add appfw profile Test123 startURLAction none- denyURLAction none- cookieConsistencyAction log - cookieTransforms ON cookieEncryptionecryptSessionOnly addCookieFlagshttpOnly - crossSiteScriptingAction none- SQLInjectionAction log stats SQLInjectionTransfrormSpecialChars ON- SQLInjectionCheckSQLWildChars ON fieldFormatAction none bufferOverflowAction none - responseContentType "application/octet- stream"- XMLSQLInjectionAction none XMLXSSAction none- XMLWSIAction none- XMLValidationAction none
