Jump to content
Welcome to our new Citrix community!

ADC GeoLocation DB updates


Dan King1709154083

Recommended Posts

What is the mechanism for ADC to update the GeoLocation DB? From what I have been reading it's part of a firmware update, but the latest updates have a file dated from 2018.

Filename: Citrix_Netscaler_InBuilt_GeoIP_DB.csv

Date modified: 1/11/2018

Current version: NS12.1 65.21.nc

  • Is this an overlooked piece of the firmware update process?
  • Are we on our own now to get and update this info from a third party?
  • Is the ADC supposed to connect via the internet to a source and periodically get these updates?

 

I am experiencing an issue where a subnet is not listed in the GeoLocation DB file(s), and allowing the source country is not working due to the range missing.

I have created a rule to allow the specific subnet as a temporary workaround.

Image below shows a significant chunk of IPs missing where the green line is; my user happens to be on a source IP in that range.

image.thumb.png.e0baebacd387ef692661fffb8e0a3523.png

I found a second file GeoIPCountryWhois.csv dated 11/6/2018 on our ADC.

This file is also missing the range, but has more ranges than the built-in CSV.
image.thumb.png.bd9dbddf2f67ae6d8796f4efac618ae2.png

 

References I have used:
https://support.citrix.com/article/CTX130701/how-to-use-netscaler-to-block-access-to-a-website-using-a-location-database-based-on-users-country

Link to comment
Share on other sites

  • 1 month later...
  • 4 weeks later...

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...