Ensurepass

 

QUESTION 71

A network engineer runs the following command:

 

nsconmsg -K /var/nslog/newnslog -s nsdebug_pe=1 -d oldconmsg

 

What is the engineer trying to check in the log?

 

A.

Bandwidth information

B.

Load-balancing information

C.

Content-switching statistics

D.

Memory utilization information

 

Correct Answer: A

Explanation:

http://www.netscalerkb.com/netscaler-tricks-and-guides/nsconmsg-examples/?wap2;PHPSESSID=6bab876c08055dc69f12fb005869478f

 

Paul B:

Some of this probably duplicates my original post…. here’s some bits stolen from the Netscaler Advanced course…..

Enter the following command in the shell to trim a newnslog file:

nsconmsg -K input_file -s time=DDMMMYYYY:HH:MM -k output_file -T seconds -d copy Command example:

nsconmsg -K /var/nslog/newnslog -s time=19Jan2009:17:00 -k slice1_newnslog -T 3600 -d copy

This command writes newnslog entries from 5pm-6pm in the slice1_newnslog file. Enter the following command in the shell to view the time span of the current newnslog file:

nsconmsg -K /var/nslog/newnslog -d setime

Enter the following command in the shell to display event information, such as entity up/down, alerts and configuration saves:

nsconmsg -K /var/nslog/newnslog -d event

Enter the following command in the shell to view console messages, which include IP address conflicts and duplex mismatch, in the current newnslog file:

nsconmsg -K /var/nslog/newnslog -d consmsg

Enter the following command in the shell to display memory utilization:

nsconmsg -s -K /var/nslog/newnslogConMEM=1 -d oldconmsg

Enter the following command in the shell to display bandwidth information:

nsconmsg -K /var/nslog/newnslog -s nsdebug_pe=1 -d oldconmsg

Enter the following command in the shell to display load-balancing information:

nsconmsg -K /var/nslog/newnslog -s ConLb=1 -d oldconmsg

Enter the following command in the shell to view SSL stats for front-end connections:

nsconmsg -K /var/nslog/newnslog -s ConSSL=1 -d oldconmsg

Enter the following command in the shell to view SSL stats for back-end connections:

nsconmsg -K /var/nslog/newnslog -s ConSSL=2 -d oldconmsg

Enter the following command in the shell to view SSL stats for front- and back-end connections:

nsconmsg -K /var/nslog/newnslog -s ConSSL=3 -d oldconmsg

Enter the following command in the shell to display monitoring statistics:

nsconmsg -K /var/nslog/newnslog -s ConMon=x -d oldconmsg

This command gives basic information when x=1 and gives detailed information when x=2.

Enter the following command in the shell to display content switching statistics:

nsconmsg -K /var/nslog/newnslog -s ConCSW=1 -d oldconmsg

Enter the following command in the shell to view all non-zero totals in the current newnslog file:

nsconmsg -K /var/nslog/newnslog -d statswt0 | more

Enter the following command in the shell to view the average rates in the current newnslog file:

nsconmsg -K /var/nslog/newnslog -d current | more

Use -g to grep for specific counters of interest. For example:

nsconmsg -K /var/nslog/newnslog -g cpu -d statswt0 | more

nsconmsg -K /var/nslog/newnslog -g arp -d current | more

Enter following command in the shell to display CPU usage in the shell:

nsconmsg -K /var/nslog/newnslog -s totalcount=200 -g cpu_use -d current

Enter the following command in the shell to display NIC information:

nsconmsg -K /var/nslog/newnslog -g nic -d current

And watch out for the parameters: a “-k” and a “-K” (lower- vs upper-case) have VERY different meanings!!!!

For example the UPPERcase “-K” refers to an input file, whilst the lowercase “-k” refers to an output file.

Getting them wring could mean over-writing your log file!!! Ooops!

 

 

QUESTION 72

Which two authentication types on the NetScaler support password changes? (Choose two.)

 

A.

TACACS+

B.

LDAP (TLS)

C.

LDAP (SSL)

D.

RADIUS (PAP)

E.

LDAP (PLAINTEXT)

F.

RADIUS (MSCHAPv2)

Correct Answer: BC

 

 

QUESTION 73

When binding a certificate to a virtual server, which two certificate formats are supported by NetScaler? (Choose two.)

 

A.

P7B

B.

PFX

C.

PEM

D.

DER

 

Correct Answer: CD

 

 

QUESTION 74

An engineer is checking that ports are configured correctly between the NetScaler system and a back-end web server. Which command should the engineer use to test that the web server is responding on port 80?

 

A.

telnet webA.example.com 80

B.

telnet webA.example.com:80

C.

telnet webA.example.com port=80

D.

telnet webA.example.com -port 80

 

Correct Answer: A

 

 

QUESTION 75

Which NetScaler feature would a NetScaler Engineer configure to allow users from a certain IP range to have access to a special Web portal?

 

A.

Load Balancing

B.

Content Filtering

C.

Global Server Load Balancing

D.

Content Switching

 

Correct Answer: D

 

 

QUESTION 76

Scenario: An organization has a fair usage policy that limits each customer to a maximum of five active connections in any given second. A NetScaler Engineer is given the task of implementing the requirements to enforce a policy using the Rate Limiting feature on NetScaler. Which commands should the network engineer execute to create a proper selector and limit identifier that fulfills the policy requirement?

 

A.

add stream selector API_selector CLIENT.IP.SRC

add ns limitIdentifier API_limitidf -threshold 5 -mode CONNECTION -timeslice 1000 – selectorName API_selector

B.

add stream selector API_selector HTTP.REQ.URL

add ns limitIdentifier API_limitidf -threshold 5 -mode CONNECTION -timeslice 1000 – selectorName API_selector

C.

add stream selector API_selector HTTP.REQ.URL

add ns limitidentifier limit_req -mode request_rate -limitType smooth -timeslice 1000 – Threshold 5 -selectorName API_selector

D.

add stream selector API_selector CLIENT.IP.SRC

add ns limitidentifier limit_req -mode request_rate -limitType smooth -timeslice 1000 – Threshold 5 -selectorName API_selector

 

Correct Answer: A

 

 

QUESTION 77

Which command would an engineer run to deny access to destination port 103 from a host with an IP address of 10.0.1.1?

 

A.

add ns acl rule1 DENY -srcIP 10.0.1.1 -srcPort 103 -TTL 600

B.

add ns acl rule1 DENY -srcIP 10.0.1.1 -srcPort 103 -protocol TCP

C.

add ns acl rule1 DENY -srcport 103 -destIP 10.0.1.1 -protocol TCP

D.

add ns simpleacl rule1 DENY -srcIP 10.0.1.1 -destport 103 -protocol TCP

 

Correct Answer: D

 

 

QUESTION 78

How could a NetScaler Engineer ensure that a content-switching virtual server is marked as DOWN if all target load-balancing servers show as DOWN?

 

A.

Specify a monitor

B.

Enable State Update

C.

Specify a route monitor

D.

Configure a backup virtual server

 

Correct Answer: B

 

 

QUESTION 79

Scenario: An engineer has been asked to implement load balancing of an existing unsecured web application. The engineer needs to ensure that users will access the web application using HTTPS, but no changes can be made to the web servers hosting the web application. In order to fulfill the requirements, the engineer must create an __________ service group and add members with port __________; and bind the service group to an __________ virtual server. (Choose the correct set of options to complete the sentence.)

 

A.

SSL; 443; SSL

B.

HTTP; 80; SSL

C.

SSL; 80; HTTP

D.

HTTPS; 443; HTTP

 

Correct Answer: B

 

 

 

 

 QUESTION 80

A NetScaler Engineer needs to gather information from a NetScaler VPX before allocating the platform license. Which shell command could the engineer use to gather the needed information?

 

A.

lmutil lmhostid -user

B.

lmutil lmhostid -ether

C.

lmutil lmhostid -internet

D.

lmutil lmhostid -hostname

 


Correct Answer: B

Free VCE & PDF File for Citrix 1Y0-351 Real Exam

Instant Access to Free VCE Files: CompTIA | VMware | SAP …
Instant Access to Free PDF Files: CompTIA | VMware | SAP …

 

Comments are closed.