Category: Security

Management, Security

NetScaler VPX – management certificate

René Jorissen on October 9, 2015 0 Comments • Tags: #certificate #management #netscaler #ssl #vpx

I would like to upgrade my current NetScaler VPX Express configuration via GUI. For some security reason Internet Explorer and FireFox aren’t able to access the GUI. They return the error message that the NetScaler is using a wrong SSL certificate. The default SSL self-signed certificate is installed on the appliance. I have uploaded a … Read More

Proxy, Security

Citrix Secure Gateway via https-only

René Jorissen on February 4, 2013 0 Comments • Tags: #address #citrix #gateway #http #https #ip #redirect #restriction #secure #unsecure

Configuring a Citrix Secure Gateway (CSG) server is simple, but provides a powerful solution to access resource from remote locations. CSG is an application installed on a DMZ server. Mostly I also configure the Citrix WebInterface on the same server. The CSG instance listens on TCP/443 and the WI instance listens on TCP/80. To improve … Read More

IPSec / SSL VPN, Security

Microsoft UAG – Invalid External Port bug

René Jorissen on November 2, 2011 4 Comments • Tags: #2010 #a #access #activated #address #be #cannot #choose #different #due #external #following #forefront #gateway #invalid #microsoft #port #sp1 #the #to #uag #unified

Last week I have installed a Microsoft UAG array. I installed Microsoft ForeFront Unified Access Gateway 2010 including Service Pack 1. When using an array configuration you have to deploy Microsoft’s Network Load Balancing (NLB) for redundancy and load balancing purposes. I configured NLB with multicast and IGMP support. I had configured some HTTPS trunks … Read More

Firewalling, Security

ISA Server 2006 array – renew certificate

René Jorissen on May 23, 2011 0 Comments • Tags: #2006 #array #authenticate #certificate #channel #configuration #encrypted #isa #renew #server #ssl #storage

When configuring a Microsoft ISA Server 2006 array you have two options for authentication and communication between the Microsoft ISA 2006 Configuration Storage Server and the array members. Windows Authentication: Choose this option if ISA server and the Configuration Storage server are in the same domain, or in different domains with a trust relationship between … Read More

Configuration Example, Security

Windows CA template – web server and private key export

René Jorissen on May 23, 2011 1 Comment • Tags: #ca #duplicate #export #grayed #key #out #private #server #template #web #windows

Creating a web server certificate request is very easy when using a Windows CA server. There is one disadvantage. The requested certificate is directly stored in the user store (by default) or the local computer store, if specified during the request. The disadvantage is that you cannot export the requested certificate including the private keys. … Read More

Configuration Example, Security

Tunneling sessions via Plink

René Jorissen on August 25, 2010 1 Comment • Tags: #plink #ssh #tunnel

Plink stands for PuTTY Link and is a command-line connection tool similar to Unix ssh. As a networking consultant I often need to support customers from remote locations. Access to their networking equipment is mostly blocked from unknown locations. Sometimes it is allowed to directly access networking equipment, like a company firewall, from a known … Read More