Solved

citrix netscaler 10010 udp flood

Posted on 2014-12-08
9
61 Views
Last Modified: 2016-10-25
is there any possibility to block udp flood on netscaler ?
0
Comment
Question by:Cahit Eyigunlu
  • 5
  • 4
9 Comments
 
LVL 3

Expert Comment

by:Barry Molenwijk
ID: 40487527
You could create an ACL (Access Control List) denying all UDP traffic.
In case you need to allow UDP from specific sources, you can create a new rule and place it in front of the deny, since an ACL reads from top to bottom.

There's nothing more you can do against a UDP flood, it's a nasty bugger.
0
 

Author Comment

by:Cahit Eyigunlu
ID: 40487557
Attack directly coming to port that we need so acl does not resolve
0
 
LVL 3

Expert Comment

by:Barry Molenwijk
ID: 40487594
What I meant was: If you set the ACL to block all UDP traffic from external sources and allow the traffic from the sources you do need, problem solved. If both sources are the same, you're royally screwed :(
0
 

Author Comment

by:Cahit Eyigunlu
ID: 40487608
Unfortinately there is a public stream on the port so we could not write an acl gor sources
0
Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

 
LVL 3

Expert Comment

by:Barry Molenwijk
ID: 40488253
Sounds like worst case scenario to me then, as far as I know an ACL is the only solution to your problem. Is there a pattern (like a country or time) in the flood attack?
0
 

Author Comment

by:Cahit Eyigunlu
ID: 40488559
15  Byte packts the only similer thing
0
 
LVL 3

Accepted Solution

by:
Barry Molenwijk earned 500 total points
ID: 40489209
Then you have to decide what the impact is of blocking all packets of that size. There is no other way I know.
0
 

Author Comment

by:Cahit Eyigunlu
ID: 40490249
how should we block depending on packet size on netscaler
0
 

Author Closing Comment

by:Cahit Eyigunlu
ID: 40710819
Thank you
0

Join & Write a Comment

Citrix XenApp, Internet Explorer 11 set to Enterprise Mode and using central hosted sites.xml file.
#Citrix #Internet Explorer #Enterprise Mode #IE 11 #IE 8
How to install and configure Citrix XenApp 6.5 - Part 1. In this video tutorial we have explained step by step installation of Citrix XenApp 6.5 Server on Windows Server 2008 R2 is explained in this video. We have explained the difference between…
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now