NetScaler Gateway with XenDesktop 7.1

I am trying to get my NetScaler configured so my users can securely access my Citrix StoreFront.  Right now I am trying to do this all on one subnet to simplify configuration.  The NetScaler, clients and XenDesktop server are all on the same network.  I have been reading "Implementing NetScaler VPX" by Marius Sandbu, specifically section 2.  It is a good book but I still don't have a working solution.  I seem to be stuck setting up the virtual server.  I can't get the state to change from down.
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Dirk KotteSECommented:
which license do you install?
check/post system/licensing
Daniel BorgerSenior Citrix Engineer- CCEECommented:
If you setup storefront with HTTPS the virtual server would need a Certificate to be shown as up.  It should also be networking.  Netscaler?system/diagnostics/ping and try to ping storefront from Netscaler.  This may be helpful...

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
kferreiraAuthor Commented:
@dkotte I am running the demo version of VPX (1000).  

> show license
      License status:
                         Web Logging: YES
                    Surge Protection: YES
                      Load Balancing: YES
                   Content Switching: YES
                   Cache Redirection: YES
                        Sure Connect: YES
                 Compression Control: YES
                   Delta Compression: NO
                    Priority Queuing: YES
                      SSL Offloading: YES
        Global Server Load Balancing: YES
                      GSLB Proximity: YES
                 Http DoS Protection: YES
                     Dynamic Routing: YES
                   Content Filtering: YES
                  Integrated Caching: YES
                             SSL VPN: YES  (Maximum users = 5)  (Maximum ICA users = Unlimited)
                                 AAA: YES
                        OSPF Routing: YES
                         RIP Routing: YES
                         BGP Routing: YES
                             Rewrite: YES
           IPv6 protocol translation: YES
                Application Firewall: YES
                           Responder: YES
                      HTML Injection: YES
                      NetScaler Push: YES
                 Web Interface on NS: YES
                             AppFlow: YES
                         CloudBridge: YES
                        ISIS Routing: YES
                          Clustering: NO
                            CallHome: NO
                              AppQoE: YES
                     Appflow for ICA: YES
                               Vpath: NO
                     Model Number ID: 1000
                        License Type: Platinum License
Daniel BorgerSenior Citrix Engineer- CCEECommented:
Some notes from a build sheet, hard to find anything that doesn't have customer info.  

   Go to Access Gateway, Virtual Servers
      Create new virtual server Storefront External 443/SSL
      Enter DMZ IP address (NATED IP from external IP)
       SSL protocol port 443  

     Max users- enter # of users listed in licenses "maximum ICA Users Allowed (10000)
      Published Applications Secure Ticket Authority click add
      Enter 2 STA servers from Citrix farm
      Verify servers are reporting in (save refresh and open vip_external_access/ published applications
Add Certificate
Add Policies – These depend on what you want.

Add Authentication Policies

      Published Applications  TAB Secure Ticket Authority click add
      Enter 2 STA servers from Citrix farm
      Verify servers are reporting in (save refresh and open vip_external_access/ published applications
      Create new virtual server vip_ext_authentication
kferreiraAuthor Commented:
@dborger I did not have a DNS server setup under Traffic Management.  I just added it.  I also turned off the Windows Firewall for domain networks on the store front server.  After that I was able to ping the Storefront server using the full name.  Strange it could not assume the domain.  

I am just starting to go through the "Netscaler for Dummies" link you left.  It looks like that could be helpful.
kferreiraAuthor Commented:
The info provided was helpful.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.