Jump to content
Welcome to our new Citrix community!

Cant get EDT working through Netscaler


Kent Soumlderlund

Recommended Posts

As many others I have problem with EDT through Netscaler

  • Connect from a LAN machine to the VDA. UDP OK
  • The same machine from Internet through Netscaler (12.1.50.28), no UDP
  • Wireshark in front of the Netscaler = see UDP traffic, after the Netscaler. No UDP
  • DTLS checked in the Netscaler
  • Certificate rebound a couple of times
  • Session reliability checked in Storefront
  • EDT checked in policy

 

Bug in Netscaler?

Link to comment
Share on other sites

Hi,

 

Please confirm

 

1.if you are able to launch the application/desktop or its stuck at Enumeration

2. which version you are facing this issue.

3. is this working intermittently or doesn't work at all on UDP

4. is appflow enabled 

 

Thanks

Anil

 

Link to comment
Share on other sites

8 minutes ago, Anil Saini said:

Hi,

 

Please confirm

 

1.if you are able to launch the application/desktop or its stuck at Enumeration

2. which version you are facing this issue.

3. is this working intermittently or doesn't work at all on UDP

4. is appflow enabled 

 

Thanks

Anil

 

Hello Anil and thansk for your answer

1. It falls back to TCP. If I run diagnostic mode I get an error and it not started

2. The latest of everything. Updated DDC, VDA, Netscaler, Workspace App yesterday

3. It doesnt work att al through UDP (through Netscaler)

4. You got me there. Where do I do that?

 

/Kent

Link to comment
Share on other sites

On 2019-01-22 at 3:29 AM, Adam Walker said:

did you confirm DTLS and EDT is supported for your VPX/MPX/SDX model?

do you have compatible ciphers inside your cipher group?

 

did you rebind the certificate after enabling dtls as per citrix instructions?

https://docs.citrix.com/en-us/netscaler-gateway/11-1/hdx-enlightened-data-transport-support/configuring-netscaler-gateway.html

Hello Adam and thnks for your answer.

Yes! It shoild be supported on Netscaler VPX 1000

Havent changed anything around ciphers. Its a brand new installed VPX

Yes! Many, many times

 

/Kent

Link to comment
Share on other sites

9 hours ago, Michael Shuster1709152649 said:

Might be a silly question but asking just in case, has the firewall been updated client to gateway VIP to permit UDP 443? I've seen some folks forget to do this when moving to use EDT on an existing implementation.

I promise you, at this kevel of frustration, no questions is silly 

Yes, we can see with wireshark that we get UDP traffic on the incoming interface on the Netscaler

 

/Kent

Link to comment
Share on other sites

  • 1 year later...
  • 3 months later...

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...