CTX-CNS-320: Citrix ADC Advanced Concepts - Security, Management and Optimization (formally Netscaler)

Learn how to configure your NetScaler environment to address application services security requirements with AppFirewall; automate and manage network services for scale-out of application architectures with the Management and Analytics System (MAS); and optimize NetScaler-managed application delivery traffic. This five-day course for experienced NetScaler architects, engineers and administrators will teach you to deploy and manage AppFirewall to protect web applications against different types of attacks. It will also give you a practical understanding of MAS capabilities for centralized management of multiple NetScaler platforms, orchestration of changes, transaction reporting, infrastructure visualization and planning.

This course has been renamed from 'Citrix NetScaler 12.x Advanced Topics - Security, Management,and Optimization' to 'Citrix ADC Advanced Concepts - Security, Management and Optimization'. Course content remains the same.

Audience:

Students interested in learning the skills required to deploy and manage AppFirewall to secure application access in their Citrix NetScaler environment, as well as NetScaler MAS to administer a Citrix NetScaler environment, or optimize NetScaler-managed application delivery traffic.
Specifically for administrators, implementers, engineers, and architects.

Prerequisites:

Recommended prerequisite courses:

  • CNS-102 NetScaler Overview
  • CNS-220 Citrix NetScaler Essentials and Traffic Management
  • CNS-222 Citrix NetScaler Essentials and Unified Gateway

Citrix also recommends an understanding of the following concepts and technologies:

  • Functionalities and capabilities of Citrix NetScaler
  • Basic NetScaler network architecture
  • Obtaining, installing, and managing NetScaler licenses
  • Use of NetScaler traffic management features
  • Basic Networking
  • Windows and Linux Server administration
  • Web Services
  • SSL encryption and certificates
  • Common web services attacks
  • 3rd party Network Management tools

Course goals:

Upon successful completion of this course, students will be able to:

  • Identify common web attacks and vulnerabilities
  • Write PERL compatible regular expressions
  • Understand how to utilize the adaptive learning engine
  • Configure AppFirewall to protect web applications
  • Utilize NetScaler Secure Insight to Monitor, Manage and report on Application Services security
  • Troubleshoot AppFirewall
  • Manage multiple NetScaler platforms centrally
  • Orchestrate configuration changes
  • Report on transactions passing through the NetScaler environment
  • Visualize infrastructure and plan expansion

Course outline:

Application Firewall Overview

  • AppFirewall solution Security Model (include signature)
  • Overview of types of attacks
  • PCIDSS
  • Adaptive Learning Engine
  • Packet Processing and Inspection
  • Log Files – view violations

Policies and Profiles

  • Profiles
  • Policies
  • Engine Settings

Regular Expressions

  • Forms of Regular Expressions
  • Using Regular Expressions
  • Metacharacters and Literal Characters
  • Escapes
  • Quantifiers
  • Back Referencing
  • Lookaheads
  • Regular Expression Scope

Attacks and Protections

  • Data Flow with AppFirewall
  • Security Checks
  • AppFirewall Actions
  • Adaptive Learning
  • Signatures
  • Code Quality (HTML Comment Striping)
  • Buffer Overflow • SQL injection
  • Cross-Site Scripting
  • Cookie Tampering
  • Cookie Protection
  • Parameter Tampering
  • Server Misconfiguration
  • Form Protections
  • Identity Theft - CC – Safe Object
  • URL Protections – Start URL and Deny URL
  • CSRF

Application Firewall Troubleshooting and Monitoring

  • Security Insight
  • HTTP Callout
  • Rate-Limit
  • AppQOE
  • IP Reputation

Introduction

  • NetScaler MAS Introduction and Configuration
  • Using NetScaler MAS to Manage and Monitor NetScalers
  • Using NetScaler MAS to Manage NetScaler configurations

MAS analytics

Optimization

  • Caching
  • Frontend Optimization
  • TCP/HTTP optimization 

NetScaler Web Logging

Other relevant courses