Environment: NETSCALER is in the DMZ & Web Interface, Xenapp farm is behind the Firewall i.e (secure N/W).
1.) MIP: Mapped IP address is the interface which communicated with STA: 80 /443 so these ports need to be opened from the NS in the DMZ all the way to STA server. Also Ports ICA:1494 & CGP:2598 need to be opened from NS in the DMZ to the Xenapp /Xendesktop farm
2.) From secure N/w to connect to Netscaler ports 80,22,3010 need to be opened.
3.) NSIP : Netscaler IP address From Netscaler to secure N/W you need to open following ports if you are configuring LDAP, LDAPS, RADIUS, RSA etc..
LDAP: TCP 389
LDAPS: TCP 636
RADIUS : UDP 1812
4.) The Access Gateway IP address is the NAT ed IP address.
5.) The users hit the Access Gateway with External IP address (Eg: 209.12...). This IP address does a
NAT ing to Virtual server Access Gateway Enterprise N/W.
NAT ing to Virtual server Access Gateway Enterprise N/W.
6.) From External N/W to AG : Port 80 & 443 needs to be opened
From Netscaler to Xenapp Farm : It happens through the MIP Port 80 & 443, 1494, 2598 needs to
be opened.
If you need Authentication to be happens at Netscaler : Port TCP 389, 636 & UDP 1812 needs
to be opened.
7.) Vserver - Virtual Server actually refer to Netscaler AG Enterprise edition.
Access Gateway is nothing more than a Vserver that lives on Netscaler
Netscaler is a Load Balancing device. So instead of being a Load Balancer, Application Firewall, Citrix
have added a Vserver(AG) that you can load on a netscaler and makes it a NS AGEE ( NetScaler
Access Gateway Enterprise Edition )
Good One, straight to the point.
ReplyDeleteIt is amazing and wonderful to visit your site. Thanks for sharing this information; this is useful to everyone...
ReplyDeleteRead more about citrix netscaler training, citrix netscaler certification india