Citrix Access Control Administration — Question 63

Scenario: A Citrix Administrator suspects an attack on a load-balancing virtual server (IP address 192.168.100.25). The administrator needs to restrict access to this virtual server for 10 minutes.
Which access control list (ACL) will accomplish this?

Answer options

• A. add ns acl rule1 DENY -destIP 192.168.100.25 -TTL 600000
• B. add simpleacl rule1 DENY -srcIP 192.168.100.25 -TTL 600000
• C. add ns acl rule1 DENY -destIP 192.168.100.25 -TTL 600
• D. add simpleacl rule1 DENY -srcIP 192.168.100.25 -TTL 600

Correct answer: C

Explanation

The correct answer is C because it uses the appropriate command to deny access to the destination IP (192.168.100.25) with a TTL of 600 seconds, which is equivalent to 10 minutes. Options A and B use incorrect TTL values or source IP, while D also incorrectly addresses the source IP instead of the destination IP.