How to Restrict Access to NetScaler Owned IP Addresses Only from the Management Applications

How to Restrict Access to NetScaler Owned IP Addresses Only from the Management Applications

book

Article ID: CTX126736

calendar_today

Updated On:

Description

Any application running on the NetScaler appliance's operating system is exposed to the world through NetScaler-owned IP addresses. This exposure may result in network attacks, which can negatively impact the performance of the NetScaler appliance.

Note: You can block the non-management application port access on the NetScaler appliance from a NetScaler owned IP address and apply the L7 based policies.

Instructions

To restrict access to NetScaler owned IP addresses only from the management applications, complete the following procedure:

  1. Log on to the NetScaler appliance.

  2. Expand the SystemNetwork node.

  3. Select the IPs node.

  4. From the IPs page, select the NetScaler owned IP address.

  5. Click Open.

  6. In the Configure IP dialog box, select Allow access only to management applications option, as shown in the following screen shot:
    User-added image

  7. Click OK.

To make similar changes from the command line interface, run the following command:
set ns ip <IP_Address> -restrictAccess ENABLED

Note: By default, this feature is disabled.

Issue/Introduction

This article contains information about restricting access to NetScaler owned IP addresses only from the management applications.

Additional Information

CTX120318 - Using Mapped and Subnet IP Addresses on a NetScaler Appliance

Powered by Wolken Software