Question 13 - Citrix 1Y0-241 Real Exam Questions [Feb 2026 Update]

Q: 13

Which Citrix ADC Access Control List (ACL) command can a Citrix Administrator use to bridge traffic originating from the IP address 192.168.10.200?

Options

Correct Answer:

Explanation

The add ns acl command is used to create an extended Access Control List (ACL) for IPv4 traffic on a Citrix ADC. Extended ACLs provide granular control and support multiple actions, including ALLOW, DENY, and BRIDGE. The BRIDGE action specifically instructs the ADC to bypass all Layer 3 processing (such as load balancing or content switching) and forward the matching packets at Layer 2. Since the requirement is to bridge traffic from the IPv4 address 192.168.10.200, add ns acl is the correct command.

Why Incorrect

A. add ns simpleacl6: This command is for simple ACLs that filter IPv6 traffic and does not support the BRIDGE action.

B. add ns simpleacl: This command creates a simple ACL for IPv4, but it only supports the DENY action, not BRIDGE.

D. add ns acl6: This command is for extended ACLs that filter IPv6 traffic, whereas the source IP address provided is IPv4.

References

1. Citrix ADC 13.1 Product Documentation

"Access Control Lists": In the section "Configuring Extended ACLs

" the documentation states

"You can configure extended ACL rules to allow

deny

or bridge packets that match the conditions specified in the rules." This confirms that extended ACLs support the BRIDGE action.

Source: Citrix Product Documentation

"Access Control Lists

" section "Configuring Extended ACLs."

2. Citrix ADC 13.1 Command Reference

"add ns acl": The command reference for add ns acl explicitly lists BRIDGE as a possible value for the aclaction parameter. The description for the BRIDGE action is: "The Citrix ADC bridges the packets that match the ACL rule. These packets bypass all features

such as content switching

caching

and SSL

on the appliance."

Source: Citrix ADC 13.1 Command Reference

add ns acl command details

aclaction parameter description.

3. Citrix ADC 13.1 Command Reference

"add ns simpleacl": The command reference for add ns simpleacl shows it does not have an action parameter. The documentation on Simple ACLs clarifies their function is to deny packets matching the rule

with a default ALLOW for all other traffic. This confirms it cannot perform a BRIDGE action.

Source: Citrix ADC 13.1 Command Reference

add ns simpleacl command details.

Premium Access Includes

FLASH OFFER

avail 10% DISCOUNT on YOUR PURCHASE