Citrix NetScaler Deploying SSL Offload

One excellent feature of Citrix NetScaler is SSL Offload. To configure SSL offloading, you must enable SSL processing on the NetScaler appliance and configure an SSL based virtual server that will intercept SSL traffic, decrypt the traffic, and forward it to a service that is bound to the virtual server.

Step 1: Enable SSL
System -> Settings -> Configure Basic Features

2020-06-16_12-20-13

Step 2: Create a Back-end
Traffic Management -> Load Balancing -> Servers -> Click Add
2020-06-16_11-54-14

Step 3: Create a Services
We are running a HTTP service, using the default of port 80 on the previously created server object.
Traffic Management -> Load Balancing -> Services Services -> Add
2020-06-16_11-57-19

Step 4: Create a vServer
Traffic Management -> Load Balancing -> Virtual Servers  -> Add
2020-06-16_12-00-18

Step 5: Bind the SSL key pair to the SSL vserver
2020-06-16_12-03-44

Step 6: Select the certificate of Web Server.
2020-06-16_12-05-07

Step 7: Now add in the vServer previously created.
2020-06-16_12-06-10

Step 8: Select the vServer.
2020-06-16_12-07-02

Step 9: Click Done
2020-06-16_12-08-50

Step 10: Check if your Load balance is UP.
2020-06-16_12-11-43

Step 11: Let’s test our SSL offload configuration.

If you hit the VIP the NetScaler is presenting on HTTPS, it converts it to HTTP.
2020-06-16_12-13-51

For more details: https://docs.citrix.com/en-us/netscaler/12/ssl/config-ssloffloading.html

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Cancel

Connecting to %s

Create a website or blog at WordPress.com

Up ↑

%d bloggers like this: