Book Image

Implementing NetScaler VPX??? - Second Edition

By : Marius Sandbu
Book Image

Implementing NetScaler VPX??? - Second Edition

By: Marius Sandbu

Overview of this book

With a large demand for responsive websites and availability of services, IT administrators are faced with an ever-rising need for services that are optimized for speed. NetScaler VPX is a software-based virtual appliance that provides users with the comprehensive NetScaler feature set. Implementing apps and cloud-based services is much easier with its increased service performance and integrated security features. This book will give you an insight into all the new features that NetScaler VPX™ has to offer. Starting off with the basics, you will learn how to set NetScaler up and configure it in a virtual environment including the new features available in version 11, such as unified gateway and portal theme customization. Next, the book will cover how to deploy NetScalar on Azure and Amazon, and you will also discover how to integrate it with an existing Citrix infrastructure. Next, you will venture into other topics such as load balancing Microsoft and Citrix solutions, configuring different forms of high availability Global Server Load Balancing (GSLB), and network optimization. You will also learn how to troubleshoot and analyze data using NetScaler's extensive array of features. Finally, you will discover how to protect web services using an application firewall and will get to grips with other features such as HTTP, DOS, and AAA.
Table of Contents (15 chapters)
Implementing NetScaler VPX™ Second Edition
About the Author
About the Reviewer

HTTP DoS protection

In some cases, it might not be that easy to detect an attack. For instance, in a suspected HTTP DDoS attack, a web server may be attacked with legitimate traffic, and therefore they are regular HTTP requests. This is where we can use HTTP DoS protection. HTTP DoS protection allows NetScaler to respond with a JavaScript challenge to all incoming HTTP requests. Now, since an HTTP DDoS attack is typically done using a cluster of multiple nodes running a scripted attack, these nodes do not support any form of JavaScript request. Therefore, when they cannot respond to the JavaScript challenge, NetScaler closes the connection. Regular users who surf through a regular browser that supports JavaScript are therefore granted access. This happens in the background, and the user never sees that it happens. Enabling HTTP DoS puts a lot of strain on NetScaler, especially if there is a lot of traffic and the client detect rate is at 100 percent.

To enable HTTP DoS, navigate to Security...