<div>
Wow this is a great reason.... I have to admit thought you answer was do in-depth it was a bit over my head.<br />
<br />
So does using USIP on a Netscaler require any changes on the firewall????
</div>


Wow this is a great reason.... I have to admit thought you answer was do in-depth it was a bit over my head.

So does using USIP on a Netscaler require any changes on the firewall????

<div>
no changes as NS is to send over the actual Src IP as stated. The key takeaway is the FW has to assume the syn attack and surge protection which NS can do as well but due to this change of retaining Src IP, the benefits are not of effect from NS anymore or minimal.
</div>


no changes as NS is to send over the actual Src IP as stated. The key takeaway is the FW has to assume the syn attack and surge protection which NS can do as well but due to this change of retaining Src IP, the benefits are not of effect from NS anymore or minimal.

<div>
<div class="content wysiwyg-content">
I am not a networking expert but was hoping of someone could clarify this for me.<br />
<br />
We are using a Citric Netscaler 9.3 which has one of it load balanced services set to use Source IP. &nbsp;This is needed so we see the clients actually IP address instead of seeing all connections in the log as coming from the Netscaler. Anyway now &nbsp;this is working perfectly but I was told that by default a route will drop a packet if the source IP differs from what is was received on....<br />
<br />
I do not manage our firewall but am interested to learn more about his for my own knowledge.
</div>
</div>


I am not a networking expert but was hoping of someone could clarify this for me.

We are using a Citric Netscaler 9.3 which has one of it load balanced services set to use Source IP.  This is needed so we see the clients actually IP address instead of seeing all connections in the log as coming from the Netscaler. Anyway now  this is working perfectly but I was told that by default a route will drop a packet if the source IP differs from what is was received on....

I do not manage our firewall but am interested to learn more about his for my own knowledge.

Netscaler 9.3 Source IP and Firewalls

Citrix is the synonym for the virtualization and application infrastructure systems developed by the company of the same name. Main areas are application virtualization, Software-As-A-Service (SaaS), cloud-computing and networking. The two most well-known are Citrix XenApp or Citrix CloudPlatform.

Citrix

Hardware-based firewalls provide more sophisticated protection for inbound and outbound traffic than the simple Windows software firewall or the basic NAT firewalls found in routers. These devices implement techniques such as stateful packet inspection, deep packet inspection, and content filtering; and may include built-in antivirus and anti-malware protection.

Hardware Firewalls

NetScaler is the industry’s leading web and application delivery controller that maximizes the performance and availability of all applications and data, and also provide secure remote access to any application from any device type. NetScaler products are easily selected by determining the edition providing functional needs and the appropriate physical or virtual appliance platform to fulfill performance needs.