About this course

Course type Specialist
Course code CNS3201
Duration 5 Days

This course is designed for students with previous experience NetScaler experience, and best suited for individuals who will be deploying and/or managing Citrix NetScaler Application Firewall (AppFirewall) to secure application access in a Citrix NetScaler environment, as well as NetScaler Management and Analytics System (MAS) to administer a Citrix NetScaler environment or optimize NetScaler-managed application delivery traffic.

Students will learn the skills required to deploy and manage AppFirewall including types of web attacks, protections and signatures, the adaptive learning engine, AppFirewall policies and profiles, troubleshooting, and additional pertinent NetScaler security features.

Students will learn the skills required for deploying and utilizing the NetScaler Management and Analytics System including the ability to manage multiple NetScaler platforms centrally, orchestrate configuration changes, report on transactions passing through the NetScaler environment, visualize infrastructure, and plan expansions. Students will also learn how to implement features including Caching, Frontend Optimization, NetScaler Web logging, and TCP/HTTP optimization to optimize traffic managed by a NetScaler environment.

At the end of the course, students will be able to configure NetScaler environments to address application services security requirements with AppFirewall, as well as automate and manage network services for scale-out application architectures with Citrix NetScaler Management and Analytics System and optimize NetScaler managed application delivery traffic.

Audience
Students interested in learning the skills required to deploy NetScaler Management and Analytics System (MAS) to administer a Citrix NetScaler environment or optimize NetScaler-managed application delivery traffic. Specifically:

  • Administrators
  • Implementers / Engineers
  • Architects

Prerequisites

Citrix course materials are only available to delegates in e-courseware format. Delegates will be provided with instructions on how to access their e-courseware on day one of the event. Those delegates who are attending via either virtual or extended classroom will be required to provide either three monitors (to view courseware, labs and instructor demos simultaneously) or two monitors and a mobile device. Delegates will be required to have an active TCC (Training.Citrix.com) account in order to access course materials and labs.

Please set up Your TCC account up in advance of the course using the following link:

https://www.citrix.com/welcome/create-account/create-account-form.html

Please note: It is highly recommended that the delegate uses a personal email address (rather than company email) to set up their TCC account. If you do not wish to reference your company name when setting up your TCC account we recommend you use 'EDUCALC' as reference.

Should you encounter any issues in setting up your TCC account please ensure that you raise this directly with Citrix in advance of your event by visiting http://training.citrix.com then on the home page click, Help, then select Classroom Support, and submit a Critical or High priority request notifying Citrix of the course start date.

Technical Pre-requisites:

Citrix recommends students prepare for this course by taking the following courses:

  • CNS-102 NetScaler Overview

AND

  • CNS-220 Citrix NetScaler Essentials and Traffic Management

Citrix also recommends an understanding of the following concepts and technologies:

  • Functionalities and capabilities of Citrix NetScaler
  • Basic NetScaler network architecture
  • Obtaining, installing, and managing NetScaler licenses
  • Use of NetScaler traffic management features
  • Basic Networking
  • Windows and Linux Server administration
  • Web Services
  • SSL encryption and certificates
  • Common web services attacks
  • 3rd party Network Management tools

Delegates will learn how to

Key Skills Upon successful completion of this course, students will be able to:

  • Identify common web attacks and vulnerabilities
  • Write PERL compatible regular expressions
  • Understand how to utilize the adaptive learning engine
  • Configure AppFirewall to protect web applications
  • Utilize NetScaler Secure Insight to Monitor, Manage and report on Application Services security
  • Troubleshoot AppFirewall
  • Manage multiple NetScaler platforms centrally
  • Orchestrate configuration changes
  • Report on transactions passing through the NetScaler environment
  • Visualize infrastructure and plan expansion

Outline

Days 1-3

Application Firewall Overview

  • AppFirewall solution Security Model (include signature)
  • Overview of types of attacks
  • PCIDSS
  • Adaptive Learning Engine
  • Packet Processing and Inspection
  • Log Files – view violations

Policies and Profiles

  • Profiles
  • Policies
  • Engine Settings

Regular Expressions

  • Forms of Regular Expressions
  • Using Regular Expressions
  • Metacharacters and Literal Characters
  • Escapes
  • Quantifiers
  • Back Referencing
  • Lookaheads
  • Regular Expression Scope

Attacks and Protections

  • Data Flow with AppFirewall
  • Security Checks
  • AppFirewall Actions
  • Adaptive Learning
  • Signatures
  • Code Quality (HTML Comment Striping)
  • Buffer Overflow
  • SQL injection
  • Cross-Site Scripting
  • Cookie Tampering
  • Cookie Protection
  • Parameter Tampering
  • Server Misconfiguration
  • Form Protections
  • Identity Theft - CC – Safe Object
  • URL Protections – Start URL and Deny URL
  • CSRF

Application Firewall Troubleshooting and Monitoring

  • Security Insight
  • HTTP Callout
  • Rate-Limit
  • AppQOE
  • IP Reputation

Days 4-5

Introduction

  • NetScaler MAS Introduction and Configuration
  • Using NetScaler MAS to Manage and Monitor NetScalers
  • Using NetScaler MAS to Manage NetScaler configurations

MAS analytics

Optimization

  • Caching
  • Frontend Optimization
  • TCP/HTTP optimization

NetScaler Web Logging

Specialist Course

5 Days

Duration
Citrix
Delivery Method

Delivery method

Classroom / Attend from Anywhere

Receive classroom training at one of our nationwide training centres, or attend remotely via web access from anywhere.

Trusted, awarded and accredited

Fully accredited to ensure we provide the highest possible standards in learning

All third party trademark rights acknowledged.