Author Archives: Johannes Norz

About Johannes Norz

Citrix consultant, evangelist, blogger and trainer, Austria

Binding many NetScaler Gateways to a content switching vServer on Citrix NetScaler, Method 1

last update: November 14 /2017 Or: The power of the ANY service type This is a work around for a well-known problem in NetScaler: Binding NetScaler Gateways to content switching vServers. This solution does not follow Citrix best practices. Avoid using it, if you can! My solution will work with… Read more »

Splitting up a NetScaler site using admin partitions

(a nice but partly failed try) Complex web applications may lead to complex NetScaler configuration. And sometimes an administrator may get lost troubleshooting complex websites, especially sites using content switching. This is an example of a real world website: The portal page is assembled of several independent web applications. Each… Read more »

Changing my Citrix NetScaler VPX based website from http to https and scoring an A+ in SSL labs test

Last update: July 12 2018 This blog is about NetScaler versions up to 12. For 12.1 read here Citrix NetScaler load balancing and content switching servers will only score an C in quality labs SSL test, no matter if you use a VPX, MPX or SDX. There are several reasons for… Read more »

How to get a valide certificate for our NetScaler, if possible for free?

This is an updated blog entry. I first posted it on my old and discontinued blog at blog.com for Citrix NetScaler 10, this one is for Citrix NetScaler 11. We all know how to get a private Certificate for free: You just have to set up a Windows Server, add… Read more »

Preparing Citrix NetScaler 11 integrated Caching for Front End Optimization

Front End Optimization on a Citrix NetScaler will only work, if caching is set up correctly. This is especially true for image optimization. Usually it’s caching to blame for if image optimization does not work. So what to do? Citrix tells us (edocs.citrix.com): Front end optimization requires the NetScaler integrated… Read more »

Making a NetScaler Gateway on NetScaler 11 a bit more secure

last update February 7th 2017 We have previously created a NetScaler Gateway on our NetScaler 11. That’s great! Time to check if it’s secure. I usually use SSL labs SSL test, a widely used tool to test the security of a website. I have an other blog about NetScaler virtual… Read more »

Setting up a NetScaler Gateway on NetScaler 11

It is quite easy to set up a NetScaler Gateway on NetScaler 11. It’s quite similar to NetScaler 10.5, but the wizard is much more powerful now! I’ll show you how to do it. Prerequisites I assume you have: a certificate in place. This certificate should be a valid certificate created… Read more »

Replacing HTTP server related information using a NetScaler policy label

It may not be the strongest security measure, but many administrators are not quite sure about HTTP headers like Server or X-Powered-By. There seems to be just one reason why this header has to be in a HTTP response: It makes life easier for a hacker. So why not just… Read more »

Pimping a website using NetScaler 10.5 (adding style, favicon, …)

I wanted to customise my blog, but I did not want to dig deep into wordpress. This seemed to much effort, and I don’t know if next update of WordPress would compromise my changes. I wanted to make permanent changes in a way that would survive any update. So I… Read more »

Customizing a website using NetScaler rewrite policies

In one of my previous posts I installed badstore.net on my XenServer. This was not that easy, i solved all problems, however the results had not been so very good. There are 2 reasons for this: Badshop uses a java script to forward users to http://www.badshop.net/cgi-bin/badstore.cgi. So it will forward… Read more »