1. Home
  2. Citrix
  3. 1Y0-351

Citrix 1Y0-351 Online Practice Questions and Exam Preparation

1Y0-351 Exam Details

  • Exam Code
    :1Y0-351
  • Exam Name
    :Citrix NetScaler 10.5 Essentials and Networking
  • Certification
    :Citrix Certifications
  • Vendor
    :Citrix
  • Total Questions
    :289 Q&As
  • Last Updated
    :May 25, 2026

Citrix 1Y0-351 Online Questions & Answers

  • Question 261:

    Which protocol is responsible for exchanging site metric, network metric, and persistence information between sites using Global Server Load Balancing (GSLB)?

    A. SSH
    B. MEP
    C. RPC
    D. NITRO

  • Question 262:

    What should an engineer configure in an environment where two NetScaler appliances are configured in high availability (HA) mode to prevent both nodes from reporting a state of NOT_UP at the same time?

    A. Fail-Safe Mode
    B. Route Monitors
    C. Command Propagation
    D. Configuration Synchronization

  • Question 263:

    Which statement is true about interface link-state on the NetScaler?

    A. Interface link-state is controlled by ifconfig in BSD.
    B. Interface link-state is dependent on the HAMON setting.
    C. Interface link-state CANNOT be brought down from the NetScaler.
    D. Interface link-state on both appliances is unaffected by the force failover command.

  • Question 264:

    Scenario: A network engineer gets an error message when using the configuration utility to import a PKCS#12 certificate that contains a dollar sign ($), a backquote (`), or an escape (\) character password. In order to address this error, the network engineer could prefix it with __________. (Choose the correct option to complete the sentence.)

    A. an escape character (\)
    B. a backquote character (`)
    C. a dollar sign character ($)
    D. a double quotation character (")

  • Question 265:

    Company policy states that all passwords should travel the network in encrypted packets except SNMP. Which command should the network engineer execute to comply with this policy?

    A. set ns ip 10.20.30.40 -ssh disabled -telnet disabled -gui enabled
    B. set ns ip 10.20.30.40 -telnet disabled -gui secureonly -ftp disabled
    C. set ns ip 10.20.30.40 -mgmtaccess disabled -restrictaccess enabled D. set ns ip 10.20.30.40 -gui secureonly -ssh enabled -restrictaccess enabled

  • Question 266:

    Scenario: A network engineer has created an SSL offload virtual server. The virtual server shows

    as a DOWN state.

    Which two scenarios could cause the virtual server showing as DOWN? (Choose two.)

    A. Persistence is set to NONE.
    B. The protocol should be SSL_TCP.
    C. A responder policy has been bound.
    D. The service is not bound to the virtual server.
    E. No SSL certificate is bound to the virtual server.

  • Question 267:

    Scenario: A network engineer adds a secondary node for high availability (HA) purposes. To confirm the implementation is working, the engineer initiates a fail over; however when this is complete, some virtual servers are un-reachable. What is a possible cause of this issue?

    A. SSL has not been enabled as a feature.
    B. The network configuration is mismatched on the nodes.
    C. HA sync does not propagate network settings by default.
    D. The nsroot password has been changed on the new node.

  • Question 268:

    A network engineer should enable the Rate Limiting feature of a NetScaler system to mitigate the threat of __________ attack. (Choose the correct option to complete the sentence.)

    A. reverse proxying
    B. Java decompilation
    C. source code disclosure
    D. brute force logon attacks

  • Question 269:

    Scenario: NetScaler features are NOT licensed. A NetScaler Engineer has checked that the proper platform license file has been uploaded. Why are the NetScaler features NOT licensed?

    A. The features are NOT enabled.
    B. The NetScaler needs to be restarted.
    C. The NetScaler initial setup is NOT completed.
    D. There is no universal license on the NetScaler.

  • Question 270:

    Scenario: A NetScaler Engineer is addressing an issue discovered during a vulnerability scan. The security team is requiring that the engineer disable specific SSL ciphers on the SSL VServer. Which two methods could the engineer use to meet this requirement? (Choose two.)

    A. Modify the list of ciphers in the Default cipher group.
    B. Change the list of bound ciphers on the VServer directly.
    C. Enable Cipher Redirect on the VServer and configure OCSP.
    D. Disable SSLv2 Redirect on the VServer and update the CRLs.
    E. Un-assign the default group, create a custom cipher group and assign it to the VServer.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Citrix exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 1Y0-351 exam preparations and Citrix certification application, do not hesitate to visit our Vcedump.com to find your solutions here.