Monthly Archives: January 2012

Citrix Netscaler

After been attending a Citrix Xenapp course the previous week, there was one thing at the course that I’ve actually never heard of and that was Citrix Netscaler.

What is Citrix Netscaler?
After been reading a bit about it, I simply can’t describe what it can do( cause its so much!). Mostly its a hardware based load-balancer.
It can also be used for caching. So if placed infront of a web server klients don’t have to get the information from the web-server it can get it directly from the netscaler. This can take alot of traffic away from the webservers ( Of course you can use it on a fil-server as well) You can also use it for SSL-VPN and as a proxy solution.

It has alot of other features that I don’t know about I myself have just started to read about it.

Who uses it ?
Most of the largest websites in the world use Netscaler infront. Take Microsoft as an example.
http://uptime.netcraft.com/up/graph/?host=www.microsoft.com and of course Citrix themself use Netscaler.
http://toolbar.netcraft.com/site_report?url=citrix.com

Alot of the other big sites out there, like Facebook use BIG-IP F5 which is one of Netscalers competitores in the marked.

I want to learn more!
Head over to Citrix website -> http://www.citrix.com/English/ps2/products/product.asp?contentID=21679
Citrix also offers a virtual appliance (built upon FreeBSD) 
that you can download from their website. Which is useable in vSphere, Xenserver or Hyper-V.

In my case I wanted to try it on my vmware workstation 7.x
I had to download the vSphere version from Citrix

After that I had to use OVF Tool, convert the downloaded OVF format Virtual Appliance to VMX format:ovftool.exe can be located in C:Program FilesVMwareVMware OVF Tool.  The following command can be used (where Source.ovf and Destination.vmx are replaced with the actual paths):
“C:Program FilesVMwareVMware OVF Toolovftool.exe” C:Source.ovf C:Destination.vmx

Then I could use the Import function in Workstation, applied some default configuration settings and im good to go.

 

PS: If you want to login to the console using the CLI the username is nsrecover and password is nsroot. Default for the webinterface is nsroot and nsroot

When its done, open a browser and point it to the IP address of the netscaler.

Type in nsroot and nsroot, and accept the Java plugin. and voila!

The picture above shows what functions I have avalible on my Virtual Appliance, the picture below shows all the features that Netscaler has to offer.

Later im going to show how to load balance 2 webinterface infront of Xenapp and how to use the Netscaler as the webinterface server.
 

war driving tools on android

This will be a short post since im typing it on my tablet. When reading for the ceh exam much of the objectives are based on getting as much information as possible. While a tablet can’t replace an laptop with backtrack it has some tools that you can use.

You can use wifi analyzer to probe for wireless network, see what channel they are on and which encryption they are using.

image

If you are so lucky as to find an open network you can use the tool fing do to a scan on network to find alive hosts, it can also do an port scan, not so advanced as nmap but it is useable to scan if someone has an web server on their router

image

image

Now that you have gained access to an open network bring your favorite laptop with backtrack and use the dsniff package ( more on that later) 🙂

ASA 5505 and http access

Since i’ve been studing for the CCNP firewall for the last couple of months,  I have played alot with the ASA 5505 from Cisco. By default, http is allowed from port 1 – 7 (inside interface) and port 8 if for Outside traffic. But…. if you are like me and change the config like crazy and have to reset the configuration to start over again, you will have to setup http access again if you want to use the ASDM.

First you have to create a VLAN with a name.
conf t (Enteres global configuration)
vlan 100 (creates vlan 100)
ip adress 192.168.1.1 255.255.255.0 (assigns the ip adress to the virtual lan)
nameif management (names the vlan management)
interface ethernet 0/1  (switches to interface 0/1)
switchport access vlan 100 (adds the switchport to vlan 100)
no shutdown (this means the oposite of shutdown = enable/start )

http server enable

http 192.168.1.0 255.255.255.0 management (this will allow access to http from 192.168.1.0 /24)

So next is that you have to assign an ip address to your computer on the 192.168.1.0/24 range, and open internet explorer/chrome and point it to the ip adress of the managent ip.

 

Office 365 and multiple adresses to a user

Alot of users, want to have multple adresses on their user in Exchange / Office 365.
Like manager@domain.com username@domain.com and f.lastname@domain.com

(You can user powershell as well, but I dont remember the command in my head and im sitting on a linux laptop 🙂

I suggest that you take a look here as well for Powershell commands to Office 365 Exchange ->

http://onlinehelp.microsoft.com/office365-enterprises/hh125002.aspx#BKMK_Exchange

Login into Offce 365 as an administrator. Go into the Administrator pane, and on the left side press “Users” then on the right side, choose the user to want to alter. Then press “More” then “Change Mailbox settings” -> This will redirect you to the Exchange Control Panel. There press E-mail options, and choose add. It will look something like this.

Now this adress will be avaliable to use.

My books of the week!

Most of my spare time goes to book reading (no I’m not a book worm ) But I can frankly say that I use a lot of time reading. Since im a big fan of certifications, the only books I actually read at Cert books / Study guides. ( I know there’s kindle & e books etc etc ) But I actually hate reading (walloftext) on a screen. And I think its a lot easier to go back and forth If you have a book.

Some of the books I’ve been reading the last couple of weeks are related to 2 Certifications. CCNP Security firewall (Cisco) And Ceh v7 (Certified Ethical Hacker EECouncil )

For those that don’t know these certifications I suggest you google them.

Ceh v7 book

CCNP Firewall

If you want to read abit about security I suggest you get the Ceh V7 book. Since the Cisco book is mostly about Cisco firewalls. Other books I can recommend is the Comptia security+ book, which Is a good entry level security cert.

PS: In case you want to study for one of these exams I suggest for the CCNP firewall that you buy on ASA box (either one of ebay or some other online store) and get familiar with the ASDM console.
For the Ceh V7 download virtual box and backtrack 5 (virtual edition) and start playing around.

 

Citrix Xenapp

Been attending a Citrix xenapp course this week at Commaxx@Norge. I haven’t worked a lot with Citrix, a bit XA 5 and I’ve tested 6.5 for the last month. I also attended some Citrix sessions at the NIC conference. But Ive realized that I’ve only touched the surface of what Citrix has to offer after I attended this course.

I mostly work with Microsoft products, but I see that Citrix has alot of functionality that Microsoft doesn’t have. Some examples.

Provisoning server
Netscaler
Access Gateway
Branch repeater

Cloudgateway (Is going to replace old webinterface)
Edgesight

Microsoft has some similar alternatives but ill cover those in a later post.

Most of these products, Citrix has available on their website as trial editions or as an (VA) Virtual appliance. I will spend the next couple of days blogging about these products. What they do and how they integrate with Xenapp. So if you guys are new to Xenapp and want to know a bit more about Citrix I suggest you follow my blog the next couple of days.
For those that have android / apple and don’t know what Im talking about. Go to the appstore / market place and download Citrix Reciver and give it a try 🙂