After a recent upgrade from 13.0 build 90.11 to 13.1 build 48.47, I noticed a new internal service was installed. "set service nshttpd-gui-x.x.x.x -80 -cip ENABLED" Is this a necessary service and what is it's purpose? If it's not needed, I'd like to disable since it's using port 80.

To clarify, the 'nshttpd' service on a NetScaler appliance is responsible for handling the management traffic and providing the web interface (GUI) for administration purposes. It serves as the HTTP/HTTPS server for the NetScaler management interface.

There may be situations where you want to enable access to the management interface over HTTP (port 80) as well. This can be useful for certain scenarios, such as:

1. Redirection: You may want to redirect HTTP requests on port 80 to HTTPS on port 443. This ensures that all management interface access is securely encrypted.

2. Troubleshooting: Enabling HTTP access temporarily on port 80 can be helpful for troubleshooting purposes or to validate connectivity before configuring HTTPS.

3. Specific Use Cases: Some integrations or external systems may require access to the management interface over HTTP on port 80 due to their limitations or compatibility requirements.

To disable the 'nshttpd-gui-x.x.x.x-80' service, you can use the following command in the NetScaler CLI:

disable service nshttpd-gui- x.x.x.x

By disabling the service, you are effectively closing port 80 on the local machine, which further enhances the security of your NetScaler appliance.

However, before proceeding with the disabling of any services, it is always recommended to thoroughly test the impact on your environment and ensure that you have alternative secure access methods in place to continue managing the NetScaler appliance effectively.

If you have already configured your NetScaler appliance to allow secure access to the GUI only and have designated 'SECUREONLY' for management access, and if you are blocking port 80 in the firewall, then it indicates that you are taking the necessary steps to ensure secure access to the NetScaler management interface. By disabling the service, you are effectively closing port 80 on the local machine, which further enhances the security of your NetScaler appliance. However, before proceeding with the disabling of any services, it is always recommended to thoroughly test the impact on your environment and ensure that you have alternative secure access methods in place to continue managing the NetScaler appliance effectively.