How to Configure ADC Virtual Server to Accept Traffic for a Specific Protocol and Port Range

How to Configure ADC Virtual Server to Accept Traffic for a Specific Protocol and Port Range

book

Article ID: CTX129192

calendar_today

Updated On:

Description

This article contains information about configuring a Virtual Server (VServer) on a Citrix ADC appliance to accept traffic for a specific protocol and port range.

Background

You might want to configure a Virtual Server only to accept TCP traffic on ports 443, 80, and ports between 10000 and 19999. In such a case, you can create multiple VServers, approximately 10000, to accept traffic for specific ports, or create a VServer with the protocol type ANY. A VServer with the protocol type ANY accepts all the traffic.

Instructions

To configure a VServer of a Citrix ADC appliance to accept traffic for a specific protocol and port range, complete the following procedure:

  1. Expand the Traffic Management node on the Navigation pane of the appliance.

  2. Expand the Load Balancing node and then select the Virtual Servers node.

  3. Click Add on the Virtual Servers page.

  4. Type * in the Port field.

  5. Select ANY from the Protocol list.

  6. Type the other required details to create the VServer.

  7. Click Ok, as shown in the following screen shot:

    2021-06-25 09_12_12-Citrix ADC VPX - Configuration.png

  8. Click Continue and then Done.
    The VServer with protocol ANY is created.

  9. Select the Virtual Server with protocol ANY.

  10. Click Edit on the Virtual Server.

  11. Click the pencil icon in the Basic Settings.

  12. Click on More.

  13. Type 1 in the Listen Priority field.

  14. Click Configure.

  15. Type “CLIENT.TCP.DSTPORT.EQ(80) || Client.TCP.DSTPORT.EQ(443)||Client.TCP.DSTPORT.BETWEEN(10000,19999)” in the Listen Policy Expression field.

  16. Click Create, as shown in the following screen shot:

    2021-06-25 08_38_20-Citrix ADC VPX - Configuration.png

  17. Click Continue and then Click Done.

  18. Bind the required services to the Virtual Server.

Issue/Introduction

This article contains information about configuring a Virtual Server (VServer) on a NetScaler appliance to accept traffic for a specific protocol and port range.

Additional Information

The services or service groups should be configured the same way, as the Load Balancing VServer, with  * in the Port field and ANY selected from the protocol list. This way, any incoming traffic destined to the Load Balancing VServer on a specific port can be sent to the services and services groups on that same port. 

For a list of expressions that can be used to define advanced policies on the Citrix ADC appliance, refer to Citrix ADC 13.0 Advanced Policy Expression Reference

Powered by Wolken Software