Binding many NetScaler Gateways to a content switching vServer on Citrix NetScaler, Method 2


Or: Admin partitions Update, December 2020: It does not work with current versions This is a work around for a well-known problem in NetScaler: Binding NetScaler Gateways to content switching vServers. This solution does not follow Citrix best practices. Avoid using it, if you can! My solution will work with NetScaler 11.1 upward. The Problem Up to 11.0 it was impossible to bind a NetSaler...

SSH keys on Citrix ADC / NetScaler, a miracle?


Thinking back to the end of my UNIX days, there had been something called SSH. It had been a replacement for telnet and had a nice feature called SSH keys. SSH keys were a safe and easy way to replace those tiresome passwords. I loved them! Almost at the same time, Windows came up and I lost contact with UNIX. I always hoped, IT will switch over to Linux, but it never happened and my UNIX...

Migrating parts of a Citrix ADC / NetScaler configuration from test site to production site


This is an old problem with Citrix ADC / NetScaler: You should test all changes in test-site first and move them to production, or synchronise production site and disaster recovery site. Unfortunately, there is no built-in mechanism to synchronize configuration. So, over time, these sites will start differing, a very unwelcome state. This is especially true for WAF, as applications tend to change...

A simple way for a Citrix ADC (NetScaler) to respond with a 404 not found


I am a big fan of cheating if it comes to security. Giving wrong answers to questions may be misleading and will direct attackers into the wrong direction. This will cost time and, at the same time, rise the risk of being caught red-handed. If someone attacks a website, he has to be discrete and fast. Discrete to not get trapped, quick to be long gone in case the owner learns about the attack. So...

A quick way to expand performance on Citrix (NetScaler) Gateways


This is Corona time, and Corona drives virtualization like nothing else did before. I recently had to fix issues with remote access. Usually, it would have to handle round about 1,500 users, but now, the number of users increased to 15,00, so ten times as much. The existing MPX-11500 could not handle all these connections, latency was way to high. Our customer needed a quick resolution, as every...

Using Geo-Location in Citrix ADC / NetScaler


Last update: 2021-02-18   There are several use cases for geo-location information in Citrix ADC / NetScaler. It may be helpful with WAF logs. I am European, I won’t spend much time on a positive, if the log comes from North Korea, but I would consider it to be a “false positive”, if it comes from Germany, Italy or Sweden. Even though I would not consider it to be secure...

Are there Syslog events coming from partitions?


© Wikipedia, Creufop There seems to be no way to log events inside partitions, even though there are settings for logging and configuration seems to be right. They are exactly the same as in default partition. Syslog server is, so the local machine. Everything seems to be perfect. But /var/partitions/<partitionname>/log will remain empty. Why? Well, the syslog-server is

Creating a Citrix ADC / NetScaler Test environment #2


last update: May 5th 2020 Almost two years ago I created a test website for Citrix NetScaler. The product is now called Citrix ADC. It had been a set of files, both, for both, Linux and Windows. It allowed you to create a test environment to test load-balancing solutions, content switching and more. My test web page is very similar to the pages, Citrix Educations use in CNS-220 and the first 3...

How to recover a Citrix ADC/NetScaler VPX from CVE-2019-19781 (both on Hypervisor and on SDX)


last update: March 2nd 2020 Well, there are many guides. So why do I write a blog about it? Just to have one more? Bull shit! The truth is: I don’t like them at all! What’s wrong about all these guides? They all focus on how to remove malware currently installed on our Citrix ADCs (NetScalers). And, to be honest, it does not make the least little bit of sense. How can you ever be 100%...

Protecting a URL using Citrix ADC responder policies


Recently a friend asked a question: How is it possible to bypass a responder policy. They knew it happened, but they could not reproduce. HTML- Encoding HTML Encoding is a stupid trick, used by hackers ever since. Any character may get encoded using a encoding table. So instead of using you might use something like . This is strictly following standards. No one does, as it is huge overhead, but...

Recent Posts

Recent Comments