Transcript
Citrix Education © 2013 Citrix Systems, Inc. All rights reserved.
EXAM PREPARATION GUIDE | Implementing NetScaler 10 for
Networking and Traffic Optimization
Implementing NetScaler 10 for
Networking and Traffic Optimization
1Y0-A28 Exam
Preparation Guide 1.0
18 January 2013
Citrix Education © 2013 Citrix Systems, Inc. All rights reserved.
EXAM PREPARATION GUIDE | Implementing NetScaler 10 for
Networking and Traffic Optimization
Notice
Citrix® Systems, Inc. (Citrix) makes no representations or warranties with respect to
the content or use of this publication. Citrix specifically disclaims any expressed or
implied warranties, merchantability, or fitness for any particular purpose. Citrix
reserves the right to make any changes in specifications and other information
contained in this publication without prior notice and without obligation to notify
any person or entity of such revisions or changes.
© Copyright 2013 Citrix Systems, Inc. All Rights Reserved.
No part of this publication may be reproduced or transmitted in any form or by any
means, electronic or mechanical, including photocopying, recording, or information
storage and retrieval systems, for any purpose other than the purchaser‟s personal
use, without express written permission of:
Citrix Systems, Inc.
851 W. Cypress Creek Road
Ft. Lauderdale, FL 33309
http://www.citrix.com
Marks
The following marks are service marks, trademarks or registered trademarks of their
respective owners in the United States and other countries.
Mark Owner
Adobe®, Reader®, Acrobat®, Flash®,
Macromedia®
Adobe Systems, Inc.
iPhone™, iPad™, Mac®, OS X® Apple, Inc.
Citrix®, Citrix XenApp™, Citrix Secure
Gateway™, Citrix Access Gateway™, Citrix
NetScaler™, Citrix Online Plug-in™, Citrix
Offline Plug-in™, Merchandising Server™,
Client for Java, Citrix Offline Plug-in™, Citrix
Receiver™, HDX™, ICA®, MyCitrix™, Citrix
Provisioning Services™, XenDesktop®,
XenServer®, Citrix Desktop Receiver™, Citrix
Receiver™
Citrix Systems, Inc.
IBM®, DB2® International Business Machines, Inc.
Active Directory®, Microsoft®, Microsoft
Internet Explorer®, Access®, Excel®, Outlook®,
Word®, PowerPoint®, Office®, SQL Server®,
SQL Express™, Windows®, Windows Server®,
Windows Mobile®, Windows 7™, Windows
XP™, Visual J#™, SharePoint™, Windows
Vista®, Remote Desktop Services®, Windows
PowerShell™, Windows Media®
Microsoft Corporation
Oracle®
Oracle Corporation
Java®
Sun Microsystems, Inc.
UNIX® The Open Group
Citrix Education © 2013 Citrix Systems, Inc. All rights reserved.
EXAM PREPARATION GUIDE | Implementing NetScaler 10 for
Networking and Traffic Optimization
Disclaimer
This exam preparation guide is designed to provide candidates with necessary
information about the exam including listing study resources and samples which
enable candidates to assess the types of questions that may be asked during the Citrix
certification beta exam. Please be aware that the content of this guide in no way
ensures a passing score on the certification exam.
Author
Alejandra Garcia, Lead Measurement Specialist, Citrix Systems, Inc.
Item Development
Team
Arnaud Pain, Senior Consultant, MTRC-Consulting
Bas Dijkuizen, CTO, INISI b.v.
Craig Pickford, Solutions Architect, Block Solutions
Danny Van Dam, Architect, Atos
Denis Gundarev, Senior Consultant, Entisys Solutions
Henny Louwers, Senior Solution Specialist, Platani Netherlands BV
Henrik “@HenrikJay” Johansson, Director of Professional Services, nGenx
Huesan Chan, Senior Learning Consultant, QA
Jamie Lin, Senior IT Infrastructure Engineer, Savvis, A CenturyLink Company
Jo Harder, Senior Network Architect, Compushare, Inc.
Joel Donaldson, Senior Citrix Engineer, LPS Integration
Juan Pablo Otalvaro, Cloud Orchestration Architect, O4it Inc
Ramesh Kumar Boopathi, Software Services Specialist, Gulf Business Machines
Robert Zehnder, Chief Technology Officer, Hodgson Consulting & Solutions, Ltd.
Sharin Yeoh, Senior Solutions Engineer, Thales Australia
Simon Barnes, Senior Consultant, Riverlite Ltd
Stuart Souter, Independent Virtualisation Consultant, AptoTek Solutions Ltd
Terry Chou, IT Manager at Trend Micro, Inc.
Subject Matter
Experts
Andrew Wood, Technical Architect, Gilwood CS Ltd.
Arnaud Pain, Senior Consultant, MTRC-Consulting
Bas Dijkuizen, CTO, INISI b.v.
Bino Gopal, Senior Systems Engineer, Citrix Systems
Craig Pickford, Solutions Architect, Block Solutions
Danny Van Dam, Architect, Atos
Dave Gunn, Owner, The Dave Gunn Group - LLC
Denis Gundarev, Senior Consultant, Entisys Solutions
Gregg Anderson, Citrix Solutions Architect, Champion Solutions Group
Henny Louwers, Senior Solution Specialist, Platani Netherlands BV
Henrik “@HenrikJay” Johansson, Director of Professional Services, nGenx
Huesan Chan, Senior Learning Consultant, QA
Jamie Lin, Senior IT Infrastructure Engineer, Savvis, A CenturyLink Company
Jo Harder, Senior Network Architect, Compushare, Inc.
Joel Donaldson, Senior Citrix Engineer, LPS Integration
John Smith, Cloud Architect, McKesson Corporation
Juan Pablo Otalvaro, Cloud Orchestration Architect, O4it Inc
Markus Darda, Owner, MD Consultancy
Mike Nelson, Owner/Architect, Nelmedia Consulting
Ramesh Kumar Boopathi, Software Services Specialist, Gulf Business Machines
Richard Todd, Citrix Architect and Engineer, LC9
Robert Zehnder, Chief Technology Officer, Hodgson Consulting & Solutions, Ltd.
Citrix Education © 2013 Citrix Systems, Inc. All rights reserved.
EXAM PREPARATION GUIDE | Implementing NetScaler 10 for
Networking and Traffic Optimization
Sharin Yeoh, Senior Solutions Engineer, Thales Australia
Sandeep Mehta, Lead Architect, ResolveIT Consulting
Simon Barnes, Senior Consultant, Riverlite Ltd
Stuart Souter, Independent Virtualisation Consultant, AptoTek Solutions Ltd
Terry Chou, IT Manager at Trend Micro, Inc.
Tony Zhang, Independent Consultant, ZT Systems. Inc
Citrix Education © 2013 Citrix Systems, Inc. All rights reserved.
EXAM PREPARATION GUIDE | Implementing NetScaler 10 for
Networking and Traffic Optimization
Table of Contents
Implementing NetScaler 10 for Networking and Traffic Optimization .............. i
1Y0-A28 Exam ................................................................................................... i
1 The Exam ....................................................................................................... 2
1.1 Purpose of the Preparation Guide and Exam .................................... 2
1.2 Beta Testing an Exam ....................................................................... 2
1.3 Number of Questions ........................................................................ 3
1.4 Passing Score .................................................................................... 3
1.5 Time Limit ........................................................................................ 3
1.6 Registration and Administration ....................................................... 3
1.7 Certification Tracks .......................................................................... 3
1.8 Citrix Exam Retake Policies ............................................................. 4
1.9 Commenting During Live Exam ....................................................... 4
2 The Intended Audience .................................................................................. 5
2.1 Intended Audience ............................................................................ 5
2.2 Defining the Role being Tested ........................................................ 5
3 Preparatory Recommendations for the Exam ................................................. 6
3.1 Introduction ....................................................................................... 6
3.2 Recommended Knowledge and Skills .............................................. 6
3.3 Recommended Product Experience .................................................. 7
3.4 Recommended Course ...................................................................... 7
4 Exam Sections and Weights ........................................................................... 8
4.1 Introduction ....................................................................................... 8
4.2 Section Titles and Weights ............................................................... 8
4.3 How Section Weights Relate to Questions on the Exam .................. 8
5 Exam Objectives and Resources for the Exam .............................................. 9
5.1 Introduction ....................................................................................... 9
5.2 Resources Used to Develop the Exam .............................................. 9
5.3 Exam Objectives ............................................................................ 12
6 Appendix: Practice ....................................................................................... 15
Citrix Education © 2013 Citrix Systems, Inc. All rights reserved. 2
EXAM PREPARATION GUIDE | Implementing NetScaler 10 for
Networking and Traffic Optimization
1 The Exam
1.1 Purpose of
the Preparation
Guide and
Exam
This guide provides a list of objectives and resources that will help
candidates prepare for items on the 1Y0-A28 Implementing NetScaler 10
for Networking and Traffic Optimization exam. Candidates should read this
guide carefully before attempting this exam.
The A28 exam was written to certify that candidates at least had the
minimum knowledge required by employers to perform the job that focuses
on networking and traffic optimization with Citrix NetScaler. By passing
this exam, candidates can show they have at least the basic knowledge
needed to install, administer, and/or operate Citrix NetScaler 10 Enterprise
Edition implementations and may include topics on Access Gateway.
However, to perform the job effectively, candidates should also ensure that
they have sufficient hands-on experience.
This exam does not test knowledge needed to perform server maintenance,
advanced configurations, or advanced troubleshooting. It also does not test
on features that are unique to NetScaler 10 Platinum Edition.
_____________________________________________________________
1.2 Beta Testing
an Exam
Citrix Education regularly beta tests the content of all high stakes
certification exams. Once the questions are developed for an exam, Citrix
Education releases them in a beta exam for FREE. Beta exams count
toward Citrix Certification but candidates are only allowed to take them
once.
The Implementing NetScaler 10 for Networking and Traffic Optimization
(A28) exam was beta-tested from November 19-December 17, 2012. A total
of 234 candidates (38% from the Americas, 40% from EMEA, and 22%
from APAC) took it and also completed a survey to determine how much
experience they had with NetScaler 10. A professional then analyzed the
exam and survey results to determine which questions should be kept in the
final versions of the exam. This analysis provided the basis for a
recommended passing score and time limits for the exam. Once the passing
score was determined, beta candidates who obtained that score or higher,
received a passing result on the exam.
If you are interested in participating in future beta exams, please visit the
Citrix Education SME Hub to create a profile and indicate that you are
interested in taking beta exams.
Citrix Education © 2013 Citrix Systems, Inc. All rights reserved. 3
EXAM PREPARATION GUIDE | Implementing NetScaler 10 for
Networking and Traffic Optimization
1.3 Number of
Questions
The A28 exam is a 70-question exam written in English.
1.4 Passing
Score
The passing score for this exam is 60%.
1.5 Time Limit
Type of Candidate Time Limits Allowed Notes
Native English
Speakers
90 minutes
Non-native English
speakers who take
exam in countries
where English is a
foreign language
90 minutes
+30 minutes (time
extension)
Time extension
granted automatically
Non-native English
speakers who take
exam in countries
where English is NOT
a foreign language
90 minutes
+30 minutes
Must call Pearson
VUE or register in
person to explicitly
request the time
extension
A $7 USD surcharge
will be added to phone
registrations.
1.6 Registration
and
Administration
This exam is administered at Pearson VUE testing centers worldwide. To
learn more about the rules and process of taking an exam, please visit the
exam page on our website.
Worldwide, visit the Pearson VUE website (www.vue.com/citrix) to locate
a testing center in your area and register for an exam. To register in the
United States and Canada, you may also register in person at any Pearson
VUE testing center or call 1-800-931-4084. Note: A $7 USD surcharge will
be added to phone registrations.
1.7
Certification
Tracks
The A28 exam is a requirement for the Citrix Certified Administrator
(CCA) in NetScaler 10 track.
This exam may also fulfill requirements for advanced certification tracks.
For the most up-to-date certification information visit
www.citrixtraining.com.
Citrix Education © 2013 Citrix Systems, Inc. All rights reserved. 4
EXAM PREPARATION GUIDE | Implementing NetScaler 10 for
Networking and Traffic Optimization
1.8 Citrix Exam
Retake Policies
If a candidate fails an exam on the first attempt, he or she must wait 24
hours from their original appointment time before they can register to retake
the exam. If a candidate fails on a second attempt, and any attempt
thereafter, he or she must wait 14 calendar days after a failed attempt to
retake the exam. Beta exams may only be taken once.
Citrix Education monitors retake activity for breaches of this policy. Breach
of this policy can result in sanctions up to and including a temporary ban
from taking Citrix exams and/or decertification.
To learn more about the Citrix Education Exam policies, see this page on
the Citrix Education website. All candidates of Citrix Certifications must
agree and be bound to the Citrix Candidate Conduct Policy. For the most
current copy of this policy please visit the candidate conduct page on the
Citrix Training website.
1.9
Commenting
During Live
Exam
Citrix Education is committed to continually monitoring and updating our
exams as needed. As a practice, Citrix Education regularly reviews and
revises exams even after closing the beta period. Comments typed into the
exam interface during an exam are considered when making decisions about
revising questions.
Candidates are encouraged to use the commenting feature to provide
feedback to Citrix Education. However, candidates should be mindful of the
time used to provide comments on an exam as it will be subtracted from the
allocated time of the test. Candidates can refer to the time clock at any time
to view and be cognizant of the test time remaining.
Citrix Education © 2013 Citrix Systems, Inc. All rights reserved. 5
EXAM PREPARATION GUIDE | Implementing NetScaler 10 for
Networking and Traffic Optimization
2 The Intended Audience
2.1 Intended
Audience
The A28 exam is focused on those topics that were most important to those
who perform the role that focuses on networking and traffic optimization
with Citrix NetScaler. Citrix Education selected these topics based on
feedback from subject matter experts (SMEs) who perform this role in the
field. Those who serve in this role may hold various job titles such as:
Network Administrators
Network Engineers
Citrix Administrators
Operations engineer
Systems Engineers /Systems Administrators
Cloud Administrators/Engineers
2.2 Defining the
Role being
Tested
Field experts discussed the duties of the role being tested during an analysis
workshop referred to as a DACUM workshop. Depending on the job title,
individuals in this role could have different responsibilities. The experts who
participated in the DACUM, arrived at a consensus on which tasks were the
most important for administrators and selected those as objectives for this
test.
Citrix Education © 2013 Citrix Systems, Inc. All rights reserved. 6
EXAM PREPARATION GUIDE | Implementing NetScaler 10 for
Networking and Traffic Optimization
3 Preparatory Recommendations for the Exam
3.1
Introduction
Citrix Education recommends that prior to taking this exam candidates have
the knowledge, skills and abilities required to install, administer and support
an environment that contains at least two NetScaler devices.
3.2
Recommended
Knowledge and
Skills
Specifically, candidates should have the following knowledge and skills
prior to taking this exam:
Intermediate knowledge of TCP/IP , HTTP protocols and
understanding of the OSI model
Experience with network devices (e.g. routers, switches), various
networking protocols, and aspects of application and site
architecture (e.g. DMZ, VLANS)
Moderate exposure to UNIX (particularly BSD variants)
Exposure to basic systems administration concepts, including
logging, software upgrade procedures and high availability
operations
Familiarity with web server software (e.g. Apache, IIS,
WebSphere)
Familiar with Windows and Linux Server administration
Basic knowledge of DNS, SSL, and compression concepts
Understanding of concepts related to server load balancing and
content switching
Knowledge of network security threats and site protection concepts
(e.g. firewalls, worms, DDoS attacks)
Familiarity with regular expressions
Knowledge of Active Directory
Knowledge of virtualization
Knowledge of application optimization
Familiar with basic concepts of cloud computing
Citrix Education © 2013 Citrix Systems, Inc. All rights reserved. 7
EXAM PREPARATION GUIDE | Implementing NetScaler 10 for
Networking and Traffic Optimization
3.3
Recommended
Product
Experience
We recommend that candidates have about six months of experience with
the following tasks in a NetScaler 10 environment:
Assisting in architecting NetScaler environment for Enterprises
Implementing NetScaler with networking in mind
Installing and configuring production networks and network
hardware
Maintaining networking and security hardware and software
Optimizing the performance of applications
Managing high availability features
Configuring and managing security modules of NetScaler
Monitoring network
Configuring load balancing
Managing and configuring SSL
Troubleshooting NetScaler device and configurations
Managing network routing and protocols
3.4
Recommended
Course
Citrix Education recommends that candidates have hands-on experience
with NetScaler 10 prior to taking this exam. One of the best ways to do
this is by taking formal Citrix training courses. The following courses
provide basic training on administrative tasks.
CNS 205-2: Citrix NetScaler 10 Essentials and Networking
(instructor-led training course or self-study)
CNS-102-1W Citrix NetScaler 10 Overview (self-paced online
training course)
As with all Citrix exams, it is recommended that candidates get hands-on
experience by working directly with the products covered on the exam.
This includes setting up a NetScaler 10 environment with at least two
NetScaler devices, multiple load balancing virtual servers, at two Web
Interface sites, and using Access Gateway for some access scenarios.
While this hands-on experience can be done on the job, Citrix Education
official courses offer a safe and robust environment to learn these tasks.
Thus they are one of the best ways to prepare for the exam.
Citrix Education © 2013 Citrix Systems, Inc. All rights reserved. 8
EXAM PREPARATION GUIDE | Implementing NetScaler 10 for
Networking and Traffic Optimization
4 Exam Sections and Weights
4.1
Introduction
The 1Y0-A28 exam is divided into nine (9) sections.
Each section of the exam is weighted as follows, totaling 100%.
4.2 Section
Titles and
Weights
Section Weight
Configuring basic NetScaler settings 9%
Configuring network-related settings of the
NetScaler implementation
14%
Securing the NetScaler implementation and traffic 11%
Configuring Load Balancing on NetScaler for
backend servers and traffic
11%
Configuring SSL Offloading 9%
Configuring acceleration and optimization of traffic-
handling
9%
Customizing NetScaler traffic-handling 10%
Monitoring of network-related activities and
performance
7%
Troubleshooting issues on NetScaler 20%
Total 100%
4.3 How Section
Weights Relate
to Questions on
the Exam
The section weights included in this guide are intended to help you in
understanding how much of the exam is devoted to the topics listed. In
fact, the percentages directly map to the number of questions on the exam.
For example, if an exam has 60 questions, and Section 1 is weighted at
50%, then 30 of the questions on the exam will relate to Section 1
(60*50% = 30).
Please be warned that section weights are NOT used to calculate your
score. Scoring is far more complicated as exam questions may be given
different weights based on their overall importance. Because some
questions may have different point values assigned to them, section
weights and exam scores do not always have a one to one correlation.
For more information on how scoring works in Citrix exams read the blog
The Scoring Secrets for Citrix Exams - Divulged.
Citrix Education © 2013 Citrix Systems, Inc. All rights reserved. 9
EXAM PREPARATION GUIDE | Implementing NetScaler 10 for
Networking and Traffic Optimization
5 Exam Objectives and Resources for the Exam
5.1
Introduction
All the questions on this exam were developed based on the tasks
identified by SMEs and the aspect of the task identified by SMEs. For
EXAMPLE, a task could be “configuring GSLB” and the aspect to be
tested could be “how to configure GSLB” or it could be “determine what
scenario requires the configuration of GSLB.” The exam tasks and testing
aspects in this test are based on the feedback provided by field experts who
perform the duties of a XenApp administrator on the job. Exam objectives
can be found in section 5.3.
In this guide we list all of the exam objectives and provide you with
suggested reading material to help prepare for the test. In some cases, the
testing aspects require that candidates have field experience including
hands-on experience installing, administering, supporting and
troubleshooting NetScaler 10 in production environments. By obtaining
this experience, candidates are more likely to pass this exam.
The following resources were used to develop this exam:
5.2 Resources
Used to
Develop the
Exam
Resource How to Obtain*
Citrix Knowledge Base Articles:
How to Upgrade Software of the NetScaler
Appliances in a High Availability Setup
(CTX127455)
How to Set the Time on a NetScaler Appliance
if the Date Command does not Work
(CTX121356)
NetScaler 10 Networking Guide
(CTX132369)
How to Configure and Use the -
denySSLReneg Parameter (CTX123680)
FAQ: Updating or Replacing an SSL
Certificate (CTX109711)
How to Convert PFX Certificate to PEM
Format for Use with Citrix Access Gateway
(CTX106028)
How to Configure the Rate Limiting
Feature of a NetScaler Appliance to
Mitigate a DDoS Attack (CTX127917)
How to Take a Network Trace on a
NetScaler or Citrix Access Gateway
Enterprise Edition Appliance (CTX114018)
How to Troubleshoot Authentication with
Aaad.debug (CTX114999)
Knowledge Base articles
are available at:
http://support.citrix.com/
Citrix Education © 2013 Citrix Systems, Inc. All rights reserved. 10
EXAM PREPARATION GUIDE | Implementing NetScaler 10 for
Networking and Traffic Optimization
Troubleshooting Access Gateway
Enterprise Edition/NetScaler License Issues
(CTX116444)
Data Collection Procedure for
Troubleshooting NetScaler Issues
(CTX109304)
How to Record a Network Packet Trace on
a NetScaler Appliance (CTX128655)
Citrix eDocs:
Forcing the Primary Node to Stay Primary
Forcing the Secondary Node to Stay
Secondary
Configuring High Availability Nodes in
Different Subnets
Configuring the Communication Intervals
Configuring Fail-Safe Mode
Configuring Users and Groups
Creating or Modifying a VLAN
Configuring VLANs on a Single Subnet
Configuring Multiple Untagged VLANS
across Multiple Subnets
Synchronizing Configuration Files in a
High Availability Setup
Monitoring the Extended ACL
Renumbering the priority of Extended
ACLs
Choosing and Configuring Persistence
Settings
Viewing Persistence Sessions
Configuring Persistence Groups
Configuring Load Balancing in Direct
Server Return Mode
Configuring a Backup Load Balancing
Virtual Server
Redirecting Client Requests to an Alternate
URL
Configuring Access Gateway Settings with
the Remote Access Wizard
Converting the Format of SSL Certificates
for Import or Export
Specifying a TCP Buffer Size
Configuring TCP Window Scaling
Configuring TCP Profiles
How the Integrated Cache Works
Improving Cache Performance
eDoc articles are available
at:
http://support.citrix.com/pr
oddocs/topic/infocenter/ic-
how-to-use.html
Citrix Education © 2013 Citrix Systems, Inc. All rights reserved. 11
EXAM PREPARATION GUIDE | Implementing NetScaler 10 for
Networking and Traffic Optimization
Monitoring TCP-based Applications
Configuring Call Home
Generating the Tar Archive of
Configuration Data of NetScaler Devices
Citrix NetScaler Administration Guide
(CTX132357)
Citrix NetScaler Traffic Management Guide
(CTX132359)
Citrix NetScaler Application Security Guide
(CTX132366)
Citrix NetScaler Command Reference
Guide - Release 10 (CTX132384)
Brief Troubleshooting Guide (CTX106727)
Product guides are
available at:
http://support.citrix.com
/product/nsad/v10/doc/
Deliver Your Existing Applications to IPv6
Clients
(http://blogs.citrix.com/2012/04/20/deliver-your-
existing-applications-to-ipv6-clients/)
The Citrix Blog blogs are
available at:
http://blogs.citrix.com/
*Links are subject to change
Citrix Education © 2013 Citrix Systems, Inc. All rights reserved. 12
EXAM PREPARATION GUIDE | Implementing NetScaler 10 for
Networking and Traffic Optimization
5.3
Exam
Objectives
For all sections, some hands-on experience administering a Citrix
NetScaler 10 Enterprise Edition implementation is recommended.
In particular, candidates should have hands-on experience:
Assisting in architecting NetScaler environment for Enterprises
Implementing NetScaler with networking in mind
Installing and configuring production networks and network
hardware
Maintaining networking and security hardware and software
Optimizing the performance of applications
Managing high availability features
Configuring and managing security modules of NetScaler
Monitoring network
Configuring load balancing
Managing and configuring SSL
Troubleshooting NetScaler device and configurations
Managing network routing and protocols
Citrix Education © 2013 Citrix Systems, Inc. All rights reserved. 13
EXAM PREPARATION GUIDE | Implementing NetScaler 10 for
Networking and Traffic Optimization
Section Objectives
Configuring
basic
NetScaler
settings
TASK TESTING ASPECT
Set initial Hostname, NetScaler IP, subnet and
gateway
How
Upgrade Firmware
How [to do firmware updates on NetScaler
appliance]
Set up high availability How
Change NetScaler root password and add users How and why
Configure date, time zone and Network Time
Protocol (NTP)
How
Obtain a new NetScaler license How
Configuring
network-
related
settings of
the
NetScaler
implementati
on
TASK TESTING ASPECT
Enable feature and configure mode advance (Mac
based forwarding (MBF) and edge configuration)
When
Configure Interfaces How
Set up IPs, subnet IPs, IPv6 and configure
management on Ips
When/Why
Set up vLANs (Virtual Lans) and bind them to
interfaces with IPs
How [to bind to an interface]
Set up/configure TCP profiles When and Why
Set up/configure NAT/RNAT When and Why
Set up basic routes How and When
Securing the
NetScaler
implementati
on and
traffic
TASK TESTING ASPECT
Configure SSL options
How and what [to consider for configuring
these options]
Set up authentication How
Disable unwanted protocols How
Configure Access Control List (ACL) How
Configuring
Load
Balancing on
NetScaler for
backend
servers and
traffic
TASK TESTING ASPECT
Choose method of Load Balancing
How/When [to use which type of load
balancing]
Configure persistence
How/When [to use certain types of
persistence]
Configure GSLB (Global Server Load Balancing) How/When
Configure monitors How and When [to use what type of monitor]
Configure load balancing advanced tab When and Why
Configuring
SSL
Offloading
TASK TESTING ASPECT
Create, verify and import certificates and link
certificate chains
How AND Why
Create SSL virtual server (vServer) plus services How
Bind certificates to SSL virtual server How
Configure SSL parameters How
Configure SSL ciphers on virtual server (vServer) Why
Configuring
acceleration
and
optimization
TASK TESTING ASPECT
Enable and configure compression How
Set up TCP buffer
What [TCP buffer is], When and Why to set it
up
Citrix Education © 2013 Citrix Systems, Inc. All rights reserved. 14
EXAM PREPARATION GUIDE | Implementing NetScaler 10 for
Networking and Traffic Optimization
of traffic-
handling
Enable and set up Caching How
Customizing
NetScaler
traffic-
handling
TASK TESTING ASPECT
Configure Rewrite/Responder/URL Transform What [to configure] and How
Configure Content Switching Why
Set up "filter" (under protection feature) (formerly
content filtering)
When
Enable rate limiting Why
Configure HTTP callout Why
Monitoring
of network-
related
activities and
performance
TASK TESTING ASPECT
Configure monitoring When/Why/How
Set up ECV monitoring When/Why
Configure SNMP Traps When
Monitor NetScaler traffic with AppFlow What [Appflow] is and Why [to use]
Capture traffic How
Troubleshoot
ing issues on
NetScaler
TASK TESTING ASPECT
Troubleshoot Authentication, Authorization and
Access (AAA) issues
How
Troubleshoot licensing issues How
Show connection table and routes How
Read and interpret logs What [does it mean]
Troubleshoot High Availability (HA)
What [is causing the issue] AND How to
resolve issue
Use "show techsupport" command What [info to collect]
Use telnet or monitors to check the ports How
Conduct packet tracing in GUI and CLI How
Troubleshoot traffic management issues with
NetScaler
How
Verify the network settings How
Determine the root cause of network failures What [is causing the issue]
Troubleshoot SSL, SSL Offload, SSL Bridge How
Troubleshoot policies How
Citrix Education © 2013 Citrix Systems, Inc. All rights reserved. 15
EXAM PREPARATION GUIDE | Implementing NetScaler 10 for
Networking and Traffic Optimization
6 Appendix: Practice
Question 1 When performing the initial configuration from the command line, which
set of commands is valid?
A. set ns config –IPAddress 10.11.1.5 –netmask 255.255.254.0
add route 0.0.0.0 0.0.0.0 10.11.0.1
set ns hostname ns
add ns ip 10.11.1.7 255.255.254.0 –type SNIP
B. add ns ip 10.11.1.5 255.255.255.0
add route 0.0.0.0 0.0.0.0 10.11.1.1
set ns hostname ns
add ns ip 10.11.1.7 255.255.255.0 –type SNIP
C. set ns config –IPAddress 10.11.1.5 –netmask 255.255.254.0
add route 0.0.0.0 0.0.0.0 10.11.2.1
set ns hostname ns
add ns ip 10.11.1.7 255.255.254.0 –type NSIP
D. set ns config –IPAddress 10.11.1.5 –netmask 255.255.254.0
add route 0.0.0.0 255.255.255.0 10.11.1.1
set ns hostname ns
add ns ip 10.11.1.7 255.255.254.0 –type SNIP
Answer: A
TASK TESTING ASPECT
Set initial Hostname, NetScaler IP,
subnet and gateway
How
Question 2 Scenario: A network engineer has connected interface 1/1 from a NetScaler
MPX to a test network. The test network will be used for testing load
balancing of an SSL application.
What must the engineer do to ensure that if the interface goes down then
high availability does not force a fail over?
A. Enable LACP on interface 1/1.
B. Enable INC mode on interface 1/1.
C. Disable HA monitoring on interface 1/1.
D. Bind a monitor to the virtual server and set the „Reverse‟ option.
Answer: C
TASK TESTING ASPECT
Configure Interfaces How
Citrix Education © 2013 Citrix Systems, Inc. All rights reserved. 16
EXAM PREPARATION GUIDE | Implementing NetScaler 10 for
Networking and Traffic Optimization
Question 3 A network engineer is managing an environment that uses smart card
with single sign-on configured on NetScaler Access Gateway to
secure the ICA communications.
How could the engineer prevent users from receiving the second PIN
prompt?
A. Configure the virtual server and filter by certificate authentication
policy.
B. Configure the virtual server and disable client certificate
authentication requirement.
C. Configure session policy on the virtual server and disable client
certificate authentication requirement.
D. Configure the second virtual server for ICA SSL relay and disable
client certificate authentication requirement.
Answer: D
TASK TESTING ASPECT
Set up authentication How
Question 4 Scenario: A network engineer needs to create a new GSLB service for an
HTTPS application on a server with an IP of 192.168.10.100. The service
will run in the GSLB site named London.
Using the command-line interface, which command must the engineer run
to add the GSLB service?
A. add gslb site London 192.168.10.100
B. add service GSLB 192.168.10.100 SSL_TCP 443
C. add service SVC-GSLB-WEBSSL 192.168.10.100 SSL 443
D. add gslb service SVC-GSLB-WEBSSL 192.168.10.100 SSL 443 –
siteName London
Answer: D
TASK TESTING ASPECT
Configure GSLB (Global Server Load Balancing) How/When
Citrix Education © 2013 Citrix Systems, Inc. All rights reserved. 17
EXAM PREPARATION GUIDE | Implementing NetScaler 10 for
Networking and Traffic Optimization
Question 5 Scenario: A NetScaler engineer has received an SSL Certificate from a
public certificate authority and bound it to an external facing virtual server.
On connecting to the virtual server from a web browser, users receive an
error indicating the certificate is NOT trusted.
What should the engineer do to resolve this issue?
A. Regenerate the CSR.
B. Restart the NetScaler.
C. Convert the key format to PEM.
D. Link the intermediate CA certificate.
Answer: D
TASK TESTING ASPECT
Create, verify and import certificates and
link certificate chains
How AND Why
Question 6 A network engineer should configure rate limiting on a NetScaler system to
mitigate against a __________ attack. (Choose the correct option to
complete the sentence.)
A. DDoS
B. SQL Injection
C. Buffer Overflow
D. Cross-side scripting
Answer: A
TASK TESTING ASPECT
Configure HTTP callout Why
Citrix Education © 2013 Citrix Systems, Inc. All rights reserved. 18
EXAM PREPARATION GUIDE | Implementing NetScaler 10 for
Networking and Traffic Optimization
Question 7 Scenario: To correctly monitor a web site and it‟s connection to the back-
end database, a network engineer has created an HTTP-ECV monitor type
to look for a specific pattern. The engineer notices that intermittently the
monitor is showing the back-end servers as DOWN even when they appear
to be working.
Why is this behavior occurring?
A. The web site is using javascript and the monitor does not support
javascript
B. The monitor only inspects the first 24K bytes of the response body and
the pattern occurs randomly in the result.
C. The monitor only inspects the first 24K bytes of the full response and
the pattern occurs randomly in the result.
D. The monitor only inspects the first 100K bytes of the full response and
the pattern occurs randomly in the result.
E. The web site is using SSL and the engineer forgot to check the Secure
button in the monitor configuration.
Answers: B
TASK TESTING ASPECT
Set up ECV monitoring When/Why
Question 8 Scenario: The hostname (US-NS1) in the Access Gateway Platform
license file matches the hostname shown in the header of the GUI.
However, the license is missing on the License pane after restarting.
Which file should be verified to ensure that the hostname entry is present?
A. rc.conf
B. ns.conf
C. ntp.conf
D. snmpd.conf
Answer: A
TASK TESTING ASPECT
Troubleshoot licensing issues How
Citrix Education © 2013 Citrix Systems, Inc. All rights reserved. 19
EXAM PREPARATION GUIDE | Implementing NetScaler 10 for
Networking and Traffic Optimization
Question 9 A network engineer sees the output displayed below:
VIP(141.128.58.149:80:UP:WEIGHTEDRR): Hits(38200495, 17/sec)
Mbps(2.03) Pers(OFF) Err(0)
Pkt(186/sec, 610 bytes) actSvc(4) DefPol(NONE) override(0)
Conn: Clt(253, 1/sec, OE[252\]) Svr(3)
S(141.128.49.40:80:UP) Hits(9443063, 4/sec, P[2602342, 0/sec\]) ATr(5)
Mbps(1.02)BWlmt(100 kbits) RspTime(112.58 ms)
Other: Pkt(36/sec, 712 bytes) Wt(10000) RHits(31555)
Conn: CSvr(42, 0/sec) MCSvr(20) OE(16) RP(11) SQ(0)
How much traffic is being passed through the public IP?
A. 100kbits
B. 1.02Mbps
C. 2.03Mbps
D. 112.58ms
Answer: C
TASK TESTING ASPECT
Read and interpret logs What [does it mean]
Question 10 A network engineer has configured monitoring for a RADIUS service
group and notices that the RADIUS servers are discarding all packets
required to monitor.
In order to troubleshoot this issue, the engineer should check if the
__________. (Choose the correct option to complete the sentence.)
A. VIP address is in the RADIUS database
B. NSIP address is in the RADIUS database
C. SNIP address is in the RADIUS database
D. RADIUS server sends a process_radius radius rejects error
E. RADIUS server sends an access-reject response with code 3
Answers: C
TASK TESTING ASPECT
Troubleshoot traffic management issues with
NetScaler
How