Best Practise for NetScaler Application Firewall Learning Mode

book

Article ID: CTX211451

calendar_today

Updated On:

Description

The following are some of the best practices for NetScaler Application Firewall learning mode:

It is recommended to enable learning mode in positive test (UAT) environment and then import the databases to the production NetScaler.
Learn one check at a time.
Dedicate 3-4 hours minimum of learning per application.
Use positive automate scripts.
Take back up copies of the learning databases as they are portable and can be loaded on any NetScaler. They can be found in /var/nslog directory with .db extension.
Turn on blocking after loading the learn database or after finishing the learning on device.

If for some reason,you need to do this on the production, then you need to actively monitor the device and finish the application tests one after the other for security check.

Issue/Introduction

This article lists some of the best practices for NetScaler Application Firewall learning mode.

Additional Information

http://docs.citrix.com/en-us/netscaler/11-1/application-firewall/DeploymentGuide.html
Netscaler App Firewall deployment guide.

Was this article helpful?

thumb_up Yes

thumb_down No

Welcome to "KB Articles"