netscaler & botnet

I want to  use my netscaler for protect from botnet

1. how should i check what if the user agent is a real browser
2. Is there any way to trace if the user really downloading the images
3. our citrix's caching has been activated it colllects objects but it sends the calls to the server still for cached objects
3XLcomAsked:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

x
 
Dave BaldwinConnect With a Mentor Fixer of ProblemsCommented:
if user downloads the images that mean it is a real visitor
No, there is no way to detect a 'real' visitor.  Almost everything about browsing a web page can be automated.

As for the 'netscaler cache', you'll have to check the netscaler documentation.  Cache is not necessarily a simple operation.  Web browsers cache web pages and files but they also check with the server to see if there is a new version.  You have to look at what the traffic is for, not just if there is some.
0
 
Dave BaldwinFixer of ProblemsCommented:
1. The user agent string is very easy to fake with a program like cURL or probably even wget.

2. What does that even mean?  If the file is transferred, it was downloaded.  Viewing the images in a browser involves downloading the files to the local computer.

3. Have no idea.

A look at the Netscaler page tells me that it isn't designed for those two things because they are not 'threats'.  At best they are excess traffic.  And frankly, it is next to Impossible to 'protect' from a well designed 'bot' because they don't trigger any of the threat signals.  They will look exactly like a browser fetching a page.
0
 
3XLcomAuthor Commented:
1. thanks
2. if user downloads the images that mean it is a real visitor
3. ok than we ask for is there any way to serve web page from directly netscaler cache
0
 
3XLcomAuthor Commented:
thanks
0
 
Dave BaldwinFixer of ProblemsCommented:
You're welcome.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.