• View Communities
    • Citrix Developer Network
      The place for unfiltered straight talk on Citrix products. Blogs, code downloads, best practices, APIs, and more can all be found here.
    • Citrix Ready Community Verified
      Does it work with Citrix? Application compatibility questions are a thing of the past with the new Citrix Community Verified site.
    • Blogs
      Learn the latest from the Citrix employees who are building application delivery infrastructure technologies.
    • Blogosphere
      The Citrix Blogosphere is a window into the thousands of conversations taking place about Citrix and Application Delivery.
  •  Sign In
The Citrix Blog
Personal Blog
Craig Ellrod
Blogs
Profile
Related Tags
xendesktop
Added by Craig Ellrod, last edited by Craig Ellrod on Sep 03, 2008  (view change)
Permalink | Twitter Post to Twitter | Comments (1) | Views (10813) |
11 Jan 2008 06:09 PM EST
Secure Application Developer Portal
[ Tags: netscaler ,   sap ,   appexpert ,   xenapp ,   apptips ,   tips ,   netscaler ,   mpx ,   lb ,   llb ,   slb ,   gslb ,   clustering ,   rewrite ,   client-ip ,   x-forwarded-for ,   apache ,   iis ,   headers ,   policies ,   policy ,   pe ,   request ,   response ,   cache ,   caching ,   appcache ,   compress ,   compression ,   appcompress ,   controller ,   acceleration ,   soa ,   soap ,   xml ,   wsdl ,   wisl ,   uddi ,   ica ,   rdp ,   ssl vpn ,   ica proxy ,   citrix load balancer ,   citrix load balancing ,   link load balancer ,   link load balancing ,   load balancer ,   load balancing ,   server load balancer ,   server load balancing ,   security load balancer ,   security load balancing ,   hardware load balancer ,   hardware load balancing ,   next gen load balancing ,   website load balancer ,   website load balancing ,   application load balancer ,   application load balancing ,   application switch ,   web application controller ,   application controller ,   application delivery ,   tcp multiplexing ,   ssl offload ,   ssl multiplexing ,   global server load balancing ,   wan load balancing ,   xml load balancer ,   xml load balancing ,   content rewrite ,   external url ,   internal url ,   home page redirect ,   apache rewrite ,   server obfuscation ,   application obfuscation ,   http header ,   policy engine ,   content switching ,   content switch ,   content acceleration ,   content accelerator ,   application acceleration ,   application accelerator ,   tcp acceleration ,   ssl acceleration ,   xml firewall ,   xml gateway ,   xml rewrite ,   xml acceleration ,   enterprise soa ,   terminal server ,   terminal switch ,   virtual terminal ]
posted by Craig Ellrod

We recently had a meeting with a large partner of ours and they handed down some hefty requirements.  An average of 100 partners using their portal on any given month to access their development environments on the backend.  It was clear that NetScaler could scale, but the question was how to keep all of those partners separated from each other, without them peeking into each others traffic. It turned out to be easier than we thought using the NetScaler as an SSL VPN with the addition of some policies bound to each partner's user group.  The following is an overview of the network diagram, and there are some deployment guides to walk you through these installations. 


The Citrix SSL VPN CPS Deployment Guide walks you through deploying NetScaler SSL VPN as an ICA Proxy and authentication point.  It then walks you through deploying Citrix Presentation Server and the steps necessary to connect the SSL VPN to the CPS Applications.  The guide includes Session policies which direct users upon authentication to specific CPS farms on the backend of the NetScaler SSL VPN.  Think of it as an authentication portal.

The Citrix SSL VPN Deployment Guide walks you through deploying NetScalers as an HA Pair, and then as an SSL VPN with ICA Proxy OFF.  The intention was to use the SSL VPN for regular VPN traffic, and not Citrix Presentation Server traffic.  Just as well, policies can be combined on the same NetScaler Application Switch to allow both non-CPS and CPS traffic to traverse the same SSL VPN.

Tap into the power of AppExpert

Labels

netscaler netscaler Delete
sap sap Delete
appexpert appexpert Delete
xenapp xenapp Delete
apptips apptips Delete
tips tips Delete
netscaler netscaler Delete
mpx mpx Delete
lb lb Delete
llb llb Delete
slb slb Delete
gslb gslb Delete
clustering clustering Delete
rewrite rewrite Delete
client-ip client-ip Delete
x-forwarded-for x-forwarded-for Delete
apache apache Delete
iis iis Delete
headers headers Delete
policies policies Delete
policy policy Delete
pe pe Delete
request request Delete
response response Delete
cache cache Delete
caching caching Delete
appcache appcache Delete
compress compress Delete
compression compression Delete
appcompress appcompress Delete
controller controller Delete
acceleration acceleration Delete
soa soa Delete
soap soap Delete
xml xml Delete
wsdl wsdl Delete
wisl wisl Delete
uddi uddi Delete
ica ica Delete
rdp rdp Delete
ssl vpn ssl_vpn Delete
ica proxy ica_proxy Delete
citrix load balancer citrix_load_balancer Delete
citrix load balancing citrix_load_balancing Delete
link load balancer link_load_balancer Delete
link load balancing link_load_balancing Delete
load balancer load_balancer Delete
load balancing load_balancing Delete
server load balancer server_load_balancer Delete
server load balancing server_load_balancing Delete
security load balancer security_load_balancer Delete
security load balancing security_load_balancing Delete
hardware load balancer hardware_load_balancer Delete
hardware load balancing hardware_load_balancing Delete
next gen load balancing next_gen_load_balancing Delete
website load balancer website_load_balancer Delete
website load balancing website_load_balancing Delete
application load balancer application_load_balancer Delete
application load balancing application_load_balancing Delete
application switch application_switch Delete
web application controller web_application_controller Delete
application controller application_controller Delete
application delivery application_delivery Delete
tcp multiplexing tcp_multiplexing Delete
ssl offload ssl_offload Delete
ssl multiplexing ssl_multiplexing Delete
global server load balancing global_server_load_balancing Delete
wan load balancing wan_load_balancing Delete
xml load balancer xml_load_balancer Delete
xml load balancing xml_load_balancing Delete
content rewrite content_rewrite Delete
external url external_url Delete
internal url internal_url Delete
home page redirect home_page_redirect Delete
apache rewrite apache_rewrite Delete
server obfuscation server_obfuscation Delete
application obfuscation application_obfuscation Delete
http header http_header Delete
policy engine policy_engine Delete
content switching content_switching Delete
content switch content_switch Delete
content acceleration content_acceleration Delete
content accelerator content_accelerator Delete
application acceleration application_acceleration Delete
application accelerator application_accelerator Delete
tcp acceleration tcp_acceleration Delete
ssl acceleration ssl_acceleration Delete
xml firewall xml_firewall Delete
xml gateway xml_gateway Delete
xml rewrite xml_rewrite Delete
xml acceleration xml_acceleration Delete
enterprise soa enterprise_soa Delete
terminal server terminal_server Delete
terminal switch terminal_switch Delete
virtual terminal virtual_terminal Delete
lang-eng lang-eng Delete
Enter labels to add to this page:
Please wait 
Looking for a label? Just start typing.

Comments (1)

 

  1. Jan 11, 2008

    Vishal Ganeriwala says:

    Very good read. Keep blogging.

    Very good read. Keep blogging.

Add Comment