• View Communities
    • Citrix Developer Network
      The place for unfiltered straight talk on Citrix products. Blogs, code downloads, best practices, APIs, and more can all be found here.
    • Citrix Ready Community Verified
      Does it work with Citrix? Application compatibility questions are a thing of the past with the new Citrix Community Verified site.
    • Blogs
      Learn the latest from the Citrix employees who are building application delivery infrastructure technologies.
    • Blogosphere
      The Citrix Blogosphere is a window into the thousands of conversations taking place about Citrix and Application Delivery.
  •  Sign In
The Citrix Blog
Blogs for tag 'ssl vpn gateway'

Permalink | Twitter Post to Twitter | Comments (0) | Views (3969) |

08 Jun 2009 05:23 PM EDT
Cloud Burst
[ Tags:  cloudburst ,   cloudbridge ,   secure cloud ,   xenserver ,   xenapp ,   vyatta ,   citrix ,   softlayer ,   amazon ,   ec2 ,   c3 ,   virtual cloud ,   cloud network ,   cloud vpn ,   cloud routing ,   cloud switching ,   cloud datacenter ,   virtual appliance ,   virtual gateway ,   virtual ssl vpn ,   virtual vpn ,   xen cloud ,   openvpn ,   virtual switch ,   virtual router ,   network virtualization ,   elastic compute cloud ,   ssl vpn gateway ,   free network ,   free router ,   free switch ,   low cost cloud ,   cheap cloud ,   free cloud ,   rack in the cloud ,   open source rack ,   cdn ,   xenapp ,   xendesktop ,   xenserver ,   netscaler ,   workflow-studio ,   nonspecific ]
posted by Craig Ellrod

Cloud Networking is secure and robust

You can create a complete end-to-end network from one cloud network, running on XenServer, through a VPN to another network in a different cloud. All servers and hosts communicate securely over SSL VPN. Amazon Machine Images are secured by the Amazon infrastructure using security groups.

The proof of concept speaks for itself. Between the Softlayer cloud and the Amazon EC2 cloud is running a site-to-site SSL VPN using Vyatta. All of the images in this architecture are running on XenServer. This proof of concept gives rise to many networking architectures for cloud computing.

The reason for using Vyatta site-to-site SSL VPN between the Softlayer and Amazon EC2 clouds is there needs to be a secure network between the two for the transfer of data. The Vyatta AMI (Amazon Machine Image) can also function as a complete router, firewall and DNS cache. The Vyatta SSL VPN router provides security with scalability. Suppose I wanted to separate the Vyatta SSL VPN from a Vyatta OSPF router, I would just launch another instance of the Vyatta AMI.

As you can see from the network diagram and video, complete routing from the Softlayer cloud to the Amazon cloud network is seamless, without having to buy any proprietary hardware. In fact, it is very low cost compared to traditional network solutions. Virtualized networking is here, it is fast, secure and cheap.

A CloudBurst happens when Citrix Workflow Studio determines that one of the devices in the Softlayer Cloud has reached a high watermark. WFS then instructs the NetScaler VPX to start sending traffic to the Cloud - CloudBurst.

To get your own cloud, go here

Configurations used

Vyatta SSL VPN (V1) - Datacenter Configuration
Vyatta SSL VPN (V2) - Cloud Configuration
XenApp VPN Client - Cloud Configuration

Links for this solution

Vyatta for XenServer - go here
Amazon EC2 - go here
XenServer is Free! - go here
XenApp - go here
Workflow Studio - go here
XenApp VPN Client - go here
Dell Server - go here
IP Addresses - go here

Watch This


Read more news like this.

Its powerful AppExpert!

Expand Blog Post
Permalink | Twitter Post to Twitter | Comments (3) | Views (4878) |

08 Jun 2009 05:00 PM EDT
Cloud Bridge
[ Tags:  cloudbridge ,   cloudburst ,   secure cloud ,   xenserver ,   xenapp ,   vyatta ,   citrix ,   softlayer ,   amazon ,   ec2 ,   c3 ,   virtual cloud ,   cloud network ,   cloud vpn ,   cloud routing ,   cloud switching ,   cloud datacenter ,   virtual appliance ,   virtual gateway ,   virtual ssl vpn ,   virtual vpn ,   xen cloud ,   openvpn ,   virtual switch ,   virtual router ,   network virtualization ,   elastic compute cloud ,   ssl vpn gateway ,   free network ,   free router ,   free switch ,   low cost cloud ,   cheap cloud ,   free cloud ,   rack in the cloud ,   branch repeater ,   branch-repeater ,   accelerator ,   acceleration ,   application delivery ,   fast cloud ,   fast data ,   cdn ,   xenapp ,   xenserver ,   netscaler ]
posted by Craig Ellrod

Cloud Networking is fast

You can create a complete end-to-end network from the datacenter to the cloud. All cloud servers communicate securely over SSL VPN.

Between the datacenter and the Amazon EC2 cloud is a site-to-site SSL VPN built with Vyatta. On the XenApp server in the cloud runs the Citrix Accelerator which connects back to the Citrix Branch Repeater/WANScaler at the datacenter, to accelerate data connections. The Citrix Accelerator makes cloud computing fast, Vyatta makes it secure.

The reason for using Vyatta site-to-site SSL VPN between the datacenter and Amazon EC2 cloud is there needs to be a secure network between the two for the transfer of data. The Vyatta AMI (Amazon Machine Image) can also function as a complete router and firewall. The Vyatta SSL VPN router provides security with scalability.

As you can see from the network diagram and video, complete routing from the datacenter to the Amazon cloud network is seamless. Data resides at the datacenter and is accessed, over the SSL VPN, by the Application running in XenApp. The remote user connects to XenApp, runs the application, and the application delivers the data to the remote user, quickly and securely.

To get your own cloud, go here.

Configurations used

Vyatta SSL VPN (V1) - Datacenter Configuration
Vyatta SSL VPN (V2) - Cloud Configuration
Windows VPN Client - Cloud Configuration

Links for this solution

Vyatta - go here
Amazon EC2 - go here
XenServer is Free! - go here
XenApp - go here
XenApp VPN Client - go here
Dell Server - go here
IP Addresses - go here

Watch This


Read more news like this.

Its powerful AppExpert!

Expand Blog Post
Permalink | Twitter Post to Twitter | Comments (0) | Views (6240) |

18 Mar 2009 06:18 PM EDT
Cloud Computing is Secure
[ Tags:  secure cloud ,   cloud secure ,   xenserver ,   xenapp ,   vyatta ,   citrix ,   virtual cloud ,   cloud network ,   cloud ssl vpn ,   cloud routing ,   cloud switching ,   datacenter cloud ,   cloud datacenter ,   virtual appliance ,   virtual gateway ,   virtual ssl vpn ,   virtual vpn ,   xen cloud ,   openvpn ,   virtual switch ,   virtual router ,   network virtualization ,   elastic compute cloud ,   ssl vpn gateway ,   free network ,   free router ,   free switch ,   low cost cloud ,   cheap cloud ,   free cloud ]
posted by Craig Ellrod

Network Virtualization is secure and routable

You can create a complete end-to-end network from your corporate datacenter, running on XenServer, through the VPN to the network in the cloud. All servers and hosts communicate securely over SSL VPN.

The best part about this solution is that when one vendor said that virtualization breaks the network, it really doesn't.

I just did the proof of concept between a Citrix datacenter and Amazon cloud services. Between the Citrix datacenter and the Amazon cloud, I am running a site-to-site SSL VPN. The SSL VPN running at the Citrix datacenter is running inside of XenServer on a Dell 2950 III server, optimized for virtualization.

The SSL VPN Gateway running in the Cloud is also running on Xen as a virtual appliance, or virtual gateway if you will. The Windows Server(s) in the cloud are connected to the SSL VPN using OpenVPN.

The reason for using OpenVPN on the Windows Server(s) to connect to the SSL VPN Gateway in the Cloud is twofold:

  1. Amazon doesn't allow the reconfiguration of default gateways on their Amazon Machine Images (AMIs). By configuring the OpenVPN client connection, you can send all traffic from the Windows Server (S3) through the SSL VPN gateway (V2), through the VPN (vtun0) Tunnel, through the SSL VPN gateway (V1) to the private network in the Citrix datacenter AND vice versa.
  2. Provides an extra layer of security for traffic traversing the intra-cloud network.


Its powerful AppExpert!

Expand Blog Post