Jump to content
Updated Privacy Statement

Jeff Riechers

  • Posts

  • Joined

  • Last visited

  • Days Won


Jeff Riechers last won the day on April 19

Jeff Riechers had the most liked content!

Profile Information

  • User name display option
    User name

Recent Profile Visitors

4,125 profile views

Jeff Riechers's Achievements

  1. https://support.citrix.com/article/CTX135299/setting-vdisk-boot-menu-as-a-default-option https://support.citrix.com/article/CTX200089/unable-to-boot-the-target-device-when-vdisk-is-not-replicated-to-all-the-provisioning-service-servers Also you might need HKLM\Software\Citrix\ProvisioningServices\SkipRimsForPrivate to 1 (Dword)
  2. Newer VDAs disable all non Citrix channels. There is a policy in studio where you can either turn off that disabling feature, or you need to allow list all the virtual channels you are going to use.
  3. Can you redirect the event logs to d:\ they will report data right up to the bsod.
  4. What did you set for Ram size for MCS caching? Also how large is the writecache drive for the machines? If they are BSOD can you check to see if that writecache drive is getting filled? I have recommended that all MCS machines be setup with a writecache drive that is 100% the size of the c:\ to prevent this from happening.
  5. I just upgraded a client from the 14.1 build 12 version to the latest build 21 to get the WAF and Security scans. After we did that their pre-authentication scans are failing for every user. We updated the latest EPA files and it still looks like the EPA.exe file gets damaged during the download as the EXE is not executable after download. Anyone else seen this? I would like to avoid going nfactor, because that is a different PITA when I only have remote access to the client via Teams.
  6. Do you have any tab sleeping setup via GPO? I have seen sleeping tabs crash with the Ah Snap. Unfortunately 1GB of Ram for tabs is pretty common if the tab is running a bunch of processing javascript.
  7. If you choose the Ram cache to be larger than the VMs available ram you are going to have huge paging problems. You don't set any settings for how much disk cache you will use, so your writecache drive should be the size of your provisioned C:\ drive, and thin provisioned only. There is no need for thick provisioning of the storage, you don't get any performance benefit. If your VM has 12GB of ram, I would only set the Ram cache to 1GB. To do 10GB of cache you will need 48GB of ram or more on the VM. I did create a little script that allows you to query the VM to see exactly how much RAM cache you are using versus how much disk cache. https://www.jeffriechers.com/wiki/pvs-writecache-usage-script/
  8. The SDX SVM is a similar build to the ADM. They don't use an ns.conf like the NetScaler VPX/MPX uses. You can backup the SVM as part of the backup engine, and then take a look at the code, but there isn't a single file to handle the environment.
  9. Are the users connecting to the Storefront directly, and then having Optimal Gateway Routing have them going to Gateways? Or does the workspace App talk directly to the gateway and never see the storefront url. I have seen this if the Storefront URL is the same as the Gateway URL. So what I do to mitigate it is set the Storefront URL to a different address, and set the beacons to be non-accessible so that it will never try and connect to the storefront bypassing the gateway. Now Workspace will still cache some information, so if the Storefronts are not replicated together the IDs in the cached published resources won't match to the new storefront, so it will require either a refresh, or a full reset.
  10. Don't touch those. Studio handles the naming and placement of those and everything is programmed to them. It will remove older files as part of it's own cleanup. Those old items are for rollback if needed.
  11. Why do you need all machines running? All you need is enough machines to handle login loads. Have anything not needed shutdown to save resources for active users.
  12. What are you looking to forward? An IIS site? An apache web server? If it is a single URL you create an SSL Load balancer with an IP and a certificate bound to it, and a service pointing to your backend server. If it is multiple URLS, you create an SSL Content Swith with an IP and certificate bound to it. They you create policies that will look at the hostname hitting the IP and send it to appropriate load balancer with the backend service. Don't just start with the name of the tech. Give us a run-down on what you are trying to do, and we can help design something for you.
  13. Does the client NEED to connect directly to backend via IP? Because this will change the URL and Hostname so that the client connects directly. Instead you would setup a non-addressable LB and have the content switch keep the HOSTNAME, but just change the URL portion after the hostname. Then it would drop that to the LB that then goes to the backend server on how it is defined in the LB service.
  14. I have seen this happen if users are reconnecting to an existing session, or if they try to launch 2 copies of the app at the same time. Are users actually not getting sessions, or are you just seeing these messages in director. Do you have gateway? If so, take VPN out of the mix and just use gateway.
  • Create New...