Citrix ADC 13 Administrator — Question 34

A Citrix Administrator needs to block access to multiple URLs for security reasons.
Which configuration should the administrator use to accomplish this requirement?

Answer options

• A. add policy patset BAD_URL bind policy patset BAD_URL badurl1.mylab.lab index 11 charset ASCll bind policy patset BAD_URL badurl2.mylab.lab index 10 charset ASCll add responder policy BAD_URL_DNS "DNS.REQ.QUESTION.DOMAIN.CONTAINS(\ "BAD_URL\")" DROP bind responder global BAD_URL_DNS 100 END type DNS_REQ_OVERRIDE
• B. add policy patset BAD_URL bind policy patset BAD_URL badurl1.mylab.lab index 11 charset ASCll bind policy patset BAD_URL badurl2.mylab.lab index 10 charset ASCll add responder policy BAD_URL_DNS "DNS.REQ.QUESTION.DOMAIN.CONTAINS_ANY(\ "BAD_URL\")" RESET bind responder global BAD_URL_DNS 100 END type DNS_REQ_OVERRIDE
• C. bind policy patset BAD_URL badurl1.mylab index 11 charset ASCll bind policy patset BAD_URL badurl2.mylab,lab index 10 charset ASCll add responder policy BAD_URL_DNS "DNS.REQ.QUESTION.DOMAIN.CONTAINS(\ "BAD_URL\")" RESET bind responder global BAD_URL_DNS 100 END type DNS_REQ
• D. add policy patset BAD_URL bind policy patset BAD_URL badurl1.mylab.lab index 11 charset ASCll bind policy patset BAD_URL badurl2.mylab.lab index 10 charset ASCll add responder policy BAD_URL_DNS "DNS.REQ.QUESTION.DOMAIN.CONTAINS(\ "BAD_URL\")" RESET

Correct answer: A

Explanation

The correct answer A utilizes the DROP action, which effectively blocks access to the specified URLs. Option B incorrectly uses RESET, which does not block the URLs but instead resets the DNS request. Options C and D also use RESET and lack the DROP action needed for blocking, making them ineffective for the administrator's goal.