Sophos XG Firewall LTE Backup

I work a good bit from my home office so obviously internet access is pretty important – so important that I have 2 carriers: Comcast via coax and AT&T via bonded pair DSL. As you may also know, I use the Sophos XG firewall home edition as a full-featured firewall and internet gateway – the conversion from Sophos UTM to XG was a bit tricky due to the UI of XG being…let’s just say not … Read more…

‘Thank you’ to Citrix and the Community

I started my professional technology career as a help desk administrator supporting a small healthcare organization that was still using something that was called Citrix Metaframe XP – it was the first time I had dealt with a real IT infrastructure, and also the first time I interacted with a Citrix product. That was nearly 13 years ago. After that, I interacted with Metaframe and XenApp (among other products) on and off until I started … Read more…

Enabling Horizon View PCoIP Connections via NetScaler

This post is probably not necessary because the configuration is pretty simple and easy to get it working – all you need are a NetScaler running 12.0 code or later, and a view connection server v7.0.1 or later. Currently, it is limited to proxying PCoIP traffic only. NetScaler Settings for PCoIP There are two parts to the configuration on the NetScaler: PCoIP VServer Profiles – located in NetScaler Gateway > Policies > PCoIP ; this is … Read more…

Getting Started with NetScaler SD-WAN

I’ve been talking and working a LOT with NetScaler SD-WAN lately – and I noticed that my first post (here) still has the name of Cloudbridge VWAN. If you don’t know what it is, the best way to explain it is with a short video. It’s cutting edge technology for your WAN!! So to make things right, and add to the previous post – I’ll be covering how to build a simple, initial SD-WAN configuration for … Read more…

NetScaler SAML and Okta

These days, SAML authentication is mainstream and web services are expected to support it in some fashion or another; the SAML 2.0 standard is over 10 years old at this point! One of the key areas of focus for NetScaler is Authentication and Authorization and as such you would expect full support of SAML – and you’d be right. But if you’ve never worked with the SAML protocol, it can seem very daunting at first! … Read more…

Getting Started with NetScaler IP Reputation

Ever wish that you could just block all network traffic from known bad IP addresses? When you start to think about the logistics of this, it would be nice if you didn’t have to manage it either. If you have NetScaler Platinum, you’ve got both of your wishes – and as an added bonus, it’s free! That’s right, if you have a NetScaler Platinum appliance and you are running build 11.0 or later, you have an … Read more…

Windows BitLocker text missing

I ran into an issue recently on my Dell XPS 15 running Windows 10 where the BitLocker PIN entry text was missing. I have BitLocker TPM+PIN enabled so at boot or wakeup from hibernation, I am prompted to enter a PIN to unlock the drive. The screen was still the same blue color but the problem was that all of the text was missing – it was a blank blue screen. A workaround I found was to … Read more…

Adding an e1000 NIC in XenServer 7

*Note: This is not officially supported – do this at your own risk.* Sometimes, virtual appliances or other random VMs in your lab need a simple, widely supported NIC and just wont boot (or install) without one. XenServer uses a Realtek RTL8139 10/100 card when you don’t have integration services installed. This is usually not an issue…but it certainly can be. In older versions of XenServer, there was a patch available as mentioned in this … Read more…

NetScaler Authentication Error – /cgi/selfauth

While I was rebuilding my lab, I ran into an issue when building out my demo Exchange OWA front-ended by NetScaler – the error was pretty generic, I would attempt to access the OWA page, was then prompted for authentication by the NetScaler AAA engine running as a part of Unified Gateway, then I was dumped to the following error page: Http/1.1 Service Unavailable – /cgi/selfauth/xxxxx This error page is being presented by the NetScaler, … Read more…

The blog has migrated!

I’ve been very happy with WordPress – it’s easy to use, has a TON of support behind it and can do just about anything you need it to do. After being self-hosted for a while, I realized that it was not a very good model for keeping the site up since my ISP is not super-reliable, and as much as I’d like it to be, the home lab is not an actual datacenter. So I … Read more…