Scenario: A Citrix Engineer reviews the log files for a business-critical web application. The engineer notices a series of attempts to directly access a file, /etc/passwd.
Which feature can the engineer implement to protect the application against this attack?

• A.Buffer Overflow
• B.Content Type
• C.Start URL
• D.Form Field Consistency

Comment: *

Name: *

Email: *

Verification: *

Which action ensures that content is retrieved from the server of origin?

• A.CACHE
• B.MAY_CACHE
• C.NOCACHE
• D.MAY_NOCACHE

Comment: *

Name: *

Email: *

Verification: *

Scenario: A Citrix Engineer wants to protect a web application using Citrix Web App Firewall. The engineer enables the Learn action for the Start URL, HTML, Cross-Site Scripting, and HTML SQL Injection protections. The engineer assigns this profile to a policy, which is then bound to the virtual server.
Which two items can the engineer check to determine that the Learn action is NOT capturing any rules? (Choose two.)

• A.The HTML Error Object is configured for the profile.
• B.Enough space is left on the /flash file system.
• C.The aslearn process is running on the Citrix ADC appliance.
• D.The Learn database is less than 20 MB.

Comment: *

Name: *

Email: *

Verification: *

Which data populates the Events Dashboard?

• A.Syslog messages
• B.SNMP trap messages
• C.API calls
• D.AppFlow IPFIX records

Comment: *

Name: *

Email: *

Verification: *

Scenario: A Citrix Engineer needs to forward the Citrix Web App Firewall log entries to a central management service. This central management service uses an open log file standard.
Which log file format should the engineer use in the Citrix Web App Firewall engine settings to designate the open log file standard?

• A.TLA
• B.W3C
• C.IIS
• D.CEF

Comment: *

Name: *

Email: *

Verification: *