CNS-222: Citrix NetScaler Essentials and Unified Gateway

Course Description

The objective of this course is to provide the foundational concepts and teach the skills necessary to deploy, secure and manage a Citrix NetScaler system with NetScaler Gateway in a desktop virtualization environment.

Target Audience

This course is designed for Network Administrators/Engineers, Citrix Administrators, Operations Engineers, Systems Administrators/Engineers and Cloud Administrators/Engineers who are new to NetScaler Gateway.

Format/Duration

Online Live
5 Days

Course Outline

1 – Getting Started

Introduction to the NetScaler System
TriScale
NetScaler Use Cases
NetScaler Functionality
NetScaler Overview
Product Features
NetScaler Operating System Overview
nCore Configuration Architecture
NetScaler File system
Deployment Scenarios
Logging in to the NetScaler System
NetScaler Licenses

2 – Basic Networking

OSI Networking Model
NetScaler Architecture Overview
NetScaler-Owned IP Addresses
Network Topology
NetScaler Network Interfaces
Virtual Local Area Networks (VLANs)
IP Routing
Determining the Source IP Address
Packet Forwarding
Use Source IP Mode
Client-IP HTTP Header Insertion
Path MTU Discovery
Link Aggregation
Access Control Lists
Network Address Translation (NAT)

3 – NetScaler Platforms

Architecture and General Concepts
Hardware Platforms Hardware Components
MPX Overview
VPX Overview
CPX Overview
SDX Overview
Identify the unique capabilities and functionality of the NetScaler SDX platform
Identify the networking characteristics of the NetScaler SDX platform
Explain the process of provisioning and administration of NetScaler VPX instances on a NetScaler SDX appliance

4 – High Availability

High Availability Functionality
High Availability Node Configuration
Propagation and Synchronization
Failover, Route Monitors, Fail Safe
Propagation, Synchronization
High Availability Management
Performing an Upgrade
Troubleshooting
Upgrading HA pair

5 – Load Balancing

Local Load Balancing concepts
Naming conventions
Persistence Service Types
LB Methods
Disabling Entities
Diagnostics/Troubleshooting
L4 vs L7 for TCP services
UDP ping vs L7
Monitor attributes
Built in L7 monitors
Monitors from Scripts
EAV Monitors
ECV Monitors
DataStream

6 – SSL Offload

SSL and TLS
SSL Session Process
SSL Administration
SSL Offload Overview
SSL Attacks Overview
SSL Troubleshooting
Cipher Suites
Certificate Management
Feature and Benefits
Offload Performance
Deployment Scenarios
Citrix Recommendations for SSL

7 – Securing the NetScaler

NetScaler Communication Ports
Overview of AAA
Authentication on the NetScaler
NetScaler Users
Command Policies
Admin Partitions

8 – Monitoring, Management, and Troubleshooting

Monitoring Needs
NetScaler Log Management
Simple Network Management Protocol
AppFlow on the NetScaler System
NetScaler Insight Overview
NetScaler Command Center Overview
Network Traffic Capture using NSTRACE
Troubleshooting with Filter Expressions
Decoding SSL Traffic with Wireshark
Display NetScaler System Information
NetScaler Command Line Tools

9 – Authentication and Authorization

System and AAA Users Groups
External Authentication
Authentication Actions and Policies
Authentication Configuration
Supported Authentication Types

10 – Access Policies

Endpoint Analysis
Policy, Profiles, and Expressions
Pre-Authentication Policies and Profiles
Post-Authentication Policies
Endpoint Analysis Troubleshooting

11 – End-User Access and Experience

Connection Methods
Endpoint Session Policies Settings
Timeout Settings
RDP Proxy
Clientless Access
VLAN Options

12 – Gateway Services Load Balancing

SSL Offload Overview
Traffic Types
Ldap, HDX, StoreFront Load Balancing
Extended Content Verification (ECV) Monitoring

13 – Integrating NetScaler with XenApp and XenDesktop

Required Firewall Rules
Web Interface or StoreFront Integration with NetScaler Gateway
WebFront Overview and Configuration
Session Policies

14 – Unified Gateway

NetScaler Unified Gateway Overview
NetScaler Unified Gateway Reference Architecture Review
Unified Gateway Key Features
Unified Gateway Topologies