[NS10.5]How to limit NetScaler Management IP for specially client IP to access

[NS10.5]How to limit NetScaler Management IP for specially client IP to access

book

Article ID: CTX219638

calendar_today

Updated On:

Description

How to limit NetScaler Management IP for specially client IP to access

Instructions

Extended ACL can satisfy this requirement.

Example:

Only allow 172.16.3.80 to access NS Management IP 172.16.151.202

Step 1: allow 172.16.3.80 to access NSIP 172.16.151.202
add ns acl <acl_name_1> ALLOW -srcIP = <allow_ip> -destIP = <NSIP> -priority 5 -kernelstate SFAPPLIED61

Step 2: deny all other client IP to access NSIP
add ns acl <acl_name_2> DENY -destIP = <NSIP> -destPort = 80 -protocol TCP -priority 7 -kernelstate SFAPPLIED61

Reference: https://docs.citrix.com/en-us/netscaler/11/networking/access-control-lists-acls/extended-acls-and-extended-acl6s.html

Powered by Wolken Software