Scenario: A Citrix Engineer creates a Responder policy to redirect users attempting to access an application protected with Citrix Web App Firewall. Instead of being redirected, users are seeing an ‘Access Denied’ page.
This is happening because Citrix Web App Firewall is processed ___________. (Choose the correct option to complete the sentence.)
Citrix Web App Firewall is processed before Responder, and a violation is occurring. This means that the Web App Firewall is identifying and enforcing a violation before the Responder policy takes effect. As a result, users see an 'Access Denied' page instead of being redirected.
Should be C - see https://docs.citrix.com/en-us/citrix-adc/current-release/getting-started-with-citrix-adc.html#packet-flow
actually, this might be wrong it could still be B
Why it might be wrong? You have the official flow diagram
C. before Responder, and a violation is occurring The Web Application Firewall (App Firewall) is processed before the Responder. If users are seeing an 'Access Denied' page instead of being redirected as intended by the Responder policy, it suggests that the Web App Firewall is identifying a violation and is enforcing an action (such as blocking access) before the Responder policy can redirect the user.