Which configuration uses a policy expression to block POST requests with a content length greater than 10000 bytes using a REQ_OVERRIDE action?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $9.99Unlock all

Prepare for the Citrix 1Y0-241 and 1Y0-240 Exam. Use flashcards and multiple choice questions to enhance your understanding and success. Discover tips and strategies for acing your certification.

Multiple Choice

Which configuration uses a policy expression to block POST requests with a content length greater than 10000 bytes using a REQ_OVERRIDE action?

Explanation:
Block at the request level by combining precise request characteristics into a single policy expression and then enforcing a drop when those characteristics are met. Here, the expression checks two things: the HTTP method must be POST and the request’s content length must be greater than 10,000 bytes. Using a responder policy with the DROP action means any matching request is rejected right away, rather than being forwarded. Binding this policy globally with the REQ_OVERRIDE type ensures this decision overrides normal processing for all traffic that meets the criteria, applying the rule consistently across the entire deployment. This is the right approach because it targets exactly the scenario: large POST requests. The other options don’t fit as well: using OR would trigger on either condition, not on both; targeting GET misses the requirement; and binding a rewrite policy (even with REQ_OVERRIDE) is not the same as blocking at the responder/request stage, which is what a DROP in a responder policy achieves.

Block at the request level by combining precise request characteristics into a single policy expression and then enforcing a drop when those characteristics are met. Here, the expression checks two things: the HTTP method must be POST and the request’s content length must be greater than 10,000 bytes. Using a responder policy with the DROP action means any matching request is rejected right away, rather than being forwarded. Binding this policy globally with the REQ_OVERRIDE type ensures this decision overrides normal processing for all traffic that meets the criteria, applying the rule consistently across the entire deployment.

This is the right approach because it targets exactly the scenario: large POST requests. The other options don’t fit as well: using OR would trigger on either condition, not on both; targeting GET misses the requirement; and binding a rewrite policy (even with REQ_OVERRIDE) is not the same as blocking at the responder/request stage, which is what a DROP in a responder policy achieves.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy