Citrix NetScaler 10.5 Essentials for ACE Migration
CNS208; 5 Days, Instructor-led
Course Description
The objective of the Citrix NetScaler 10.5 Essentials for ACE Migration course is to provide the
foundational concepts and advanced skills necessary to migrate from a Cisco ACE ADC to NetScaler, and to implement, configure, secure, monitor, optimize, and troubleshoot a NetScaler system from within a networking framework. This course is a variation of CNS-205 Citrix NetScaler 10.5 Essentials and
Networking designed specifically for learners familiar with the ACE appliance but who have limited or no previous NetScaler experience. In order to successfully complete this course, learners will have access to hands-on exercises within a virtual lab environment.
This course is based on the Citrix NetScaler 10.5 product, but the skills and fundamental concepts learned are common to earlier product versions.
At Course Completion
Upon successful completion of this course, learners are able to:
Identify the capabilities and functionality of the NetScaler
Explain basic NetScaler network architecture
Obtain, install, and manage NetScaler licenses
Explain how SSL is used to secure the NetScaler
Implement NetScaler TriScale Technology, including Clustering
Configure advanced load balancing and GSLB on the NetScaler system
Optimize the NetScaler system for traffic handling and management.
Customize the NetScaler system for traffic flow and content-specific requirements
Demonstrate monitoring and reporting through native NetScaler logging tools
Employ recommended tools and techniques to troubleshoot common NetScaler network and connectivity issues
Identify the unique capabilities and functionality of the NetScaler SDX platform.
Identify the networking characteristics of the NetScaler SDX platform.
Explain the process of provisioning and administration of NetScaler VPX instances on a NetScaler SDX appliance.
Compare and understand the similarities and differences between the features of ACE and NetScaler
Audience
This course is recommended for learners who are:
New to NetScaler platform
Migrating or considering migration from Cisco ACE appliances
Current Networking professionals
Note: For engineers interested in integrating NetScaler for Networking environments but who are not migrating from Cisco ACE appliances, please refer to CNS-205 Citrix NetScaler 10 Essentials and Networking.
Prerequisites
Before taking this course, Citrix recommends that students have a basic understanding of the following technologies:
Good knowledge of TCP/IP and HTTP protocols
Experience with network devices, networking protocols and aspects of application and site architecture
Experience with the Cisco ACE 4710 Appliance or ACE 10, 20 or 30 Service Module
Moderate exposure to UNIX or Linux
Familiarity with web server technologies
Knowledge of network security threats and site protection concepts
Course Outline
Getting Started
Introduction to the NetScaler System
NetScaler Functionality
NetScaler Overview
Product Features
NetScaler Operating System Overview
Hardware Platforms
Hardware Components
nCore Configuration Architecture
Deployment Scenarios
Logging in to the NetScaler System
NetScaler Licenses
Performing an Upgrade Basic Networking
OSI Networking Model
NetScaler Architecture Overview
NetScaler-Owned IP Addresses
Network Topology
Virtual Local Area Networks (VLANs)
IP Routing
Determining the Source IP Address
Packet Forwarding
Use Source IP Mode
Client-IP HTTP Header Insertion
Path MTU Discovery
Link Aggregation
Network Address Translation (NAT) High Availability
High Availability Functionality
High Availability Node Configuration
Propagation and Synchronization
High Availability Management o Securing NetScaler
o NetScaler System Communication
Access Control Lists
Access Control List Configuration
Detailed Access Control List Configuration
Users, Groups, and Command Policies
External Authentication for System Users
Authentication, Authorization, and Auditing (AAA) Issues
Authentication Troubleshooting Basic Load Balancing
Load Balancing Basics
Entity Management
Server Creation
Services Configuration Overview
Virtual Server Creation
Binding Virtual Servers to Services or a Service Group
Traffic Types
Service Monitoring
Persistence and Persistence Connections
Load-Balancing Configuration Protection
Advanced Services Options
Maintaining of Client Connection for Multiple Client Requests
Specified Source IP Addresses for Back-end Communication Using Network Profiles
Graceful Shutdown of Services
Removing Services
Configuration Verification
The Load-Balancing Visualizer
Configuring Load Balancing for DataStream
Link Load Balancing
Configuration of Sessionless Load-Balancing Virtual Servers
Load-Balancing Issues
Use of Telnet or Monitors to Check Ports SSL Offload
SSL
SSL Session Process
Feature and Benefits
Offload Performance
Digital Certificates
SSL Administration
SSL Offload Overview
Deployment Scenarios
Citrix Recommendations for SSL
SSL Renegotiation Attack
SSL Troubleshooting
Intermediate Certificate Not Linked Global Server Load Balancing
GSLB Deployment Methods
GSLB Concepts
GSLB Entities
GSLB DNS Methods
Metric Exchange Protocol
Implementing GSLB
Viewing and Configuring GSLB with the Visualizer
Configuring Site-to-Site Communication
RPC Node Password
Encryption of Site Metrics Exchange
Source IP Address for an RPC Node
GSLB Site Communication Example
Customizing the GSLB Configuration
Changing the GSLB Method
Using Dynamic Weights for Services
Monitoring GSLB Services
Binding Monitors to a GSLB Service
Monitoring GSLB Sites
Protecting the GSLB Setup Against Failure
Responding with an Empty Address Record When DOWN
Backup IP Address Configuration for a GSLB Domain
Implementing GSLB Failover for Disaster Recovery AppExpert Classic Policy Engine
Policies Overview
Expression Structures
Content Filtering
Content Filtering Actions
Content Filtering Rules AppExpert Default Policy Engine
Understanding Packet-Processing Flow
Understanding Policies
Policy Process Evaluation Flow
Identifying Default Policy Expressions
Actions
Understanding Bind Points
Understanding Policy Labels
Pattern Sets
Typecasting
Rewrite, Responder, and URL Transformation Rewrite, Responder, and URL Transform
Configuring Rewrite Policies and Actions
Responder Actions
Respondwith
Responder Action for Timeouts
Responder Policies
Responder HTML Page Imports
Binding Policies
URL Transformation
URL Transformation Actions
Content Switching
Introduction to Content Switching
Understanding Content Switching
Content Switching Based on Network Characteristics
Content-Switching Virtual Servers and Load-Balancing Virtual Servers
Configuring Content-Switching Virtual Servers
Configure a Load-Balancing Setup for Content Switching
Content-Switching Policies
Binding Content-Switching Policies
Content-Switching Rule Precedence Without Priority Specified
Content-Switching Rule Precedence With Priority Specified
Configuring Content Switching for DataStream Optimizing Traffic
Introduction to Compression
Action Analytics
AppExpert Templates
Terminology
Deploying NetScaler for an Application
Application Example
AppExpert Template Deployment Clustering
How Clustering Works
Cluster Synchronization
Cluster Connections
Cluster Communication Interfaces
Striped and Spotted IP Addresses
Traffic Distribution
Cluster and Node States
NetScaler Cluster Set up
NetScaler Cluster Traffic Distribution Mechanisms
To Configure a Cluster Link Aggregation Group Statically
Dynamic Configuration for a Cluster Link Aggregation Group
NetScaler Cluster Management
NetScaler Cluster Troubleshooting Monitoring and Management
Monitoring Needs
Simple Network Management Protocol
To Configure SMNPv1 and SMNPv2
AppFlow on the NetScaler System
AppFlow Collectors and EdgeSight Monitoring
AppFlow Actions and EdgeSight Monitoring Responder Policies
Third-Party Collectors
Network Traffic Capture using NSTRACE
Troubleshooting with Filter Expressions
Decoding SSL Traffic with Wireshark
Display NetScaler System Information
Addendum: Citrix NetScaler 10.1 Essentials for SDX Appliances
Identify the unique capabilities and functionality of the NetScaler SDX platform.
Identify the networking characteristics of the NetScaler SDX platform.
Explain the process of provisioning and administration of NetScaler VPX instances on a NetScaler SDX appliance.
ACE Migration
Review of Cisco Load Balancers
Review of Citrix NetScaler
Physical Deployments
Cisco vs Citrix Terminology
Cisco Data Centre Integration
Networking Terminology
Cisco ACE versus Citrix NetScaler (Load Balancers)
Cisco ACE versus Citrix NetScaler (SSL Service Options)
NetScaler Integration with ANM
Configuration Examples
Context-Based Load Balancing Example
