<div>
Thanks Carl. <br />
We have 2 x environments one with CSG and another with Netscaler, Yes we are going to decomm CSG and not sure how SF servers behind Netscaler in DMZ could become vulnerable for SQL Injection attacks.
</div>


Thanks Carl.
We have 2 x environments one with CSG and another with Netscaler, Yes we are going to decomm CSG and not sure how SF servers behind Netscaler in DMZ could become vulnerable for SQL Injection attacks.

<div>
<div class="content wysiwyg-content">
Hello there,<br />
<br />
We have 3 x Citrix farms with Citrix Secure gateway in DMZ and Netscslers in DMZ and 2 x Citrix URL to access these externally. WE had recent;y SQL injection attacks which bypassed FW and tried to hit WI and SF servers which are in DMZ and SF servers are behind FW.<br />
<br />
Please advise how to avoid these type of attacks.<br />
<br />
I am aware that these attacks use http/https headers.<br />
<br />
Any suggestions?<br />
<br />
Please advise.<br />
<br />
Thanks and Regards
</div>
</div>


Hello there,

We have 3 x Citrix farms with Citrix Secure gateway in DMZ and Netscslers in DMZ and 2 x Citrix URL to access these externally. WE had recent;y SQL injection attacks which bypassed FW and tried to hit WI and SF servers which are in DMZ and SF servers are behind FW.

Please advise how to avoid these type of attacks.

I am aware that these attacks use http/https headers.

Any suggestions?

Please advise.

Thanks and Regards

How to avoid SQL injection attack on Citrix Web Interface and Storefront servers?

Citrix is the synonym for the virtualization and application infrastructure systems developed by the company of the same name. Main areas are application virtualization, Software-As-A-Service (SaaS), cloud-computing and networking. The two most well-known are Citrix XenApp or Citrix CloudPlatform.

Citrix

The Hypertext Transfer Protocol (HTTP) is an application protocol for distributed, collaborative, hypermedia information systems. Hypertext is structured text that uses logical links (hyperlinks) between nodes containing text. HTTP is the protocol to exchange or transfer hypertext. HTTP functions as a request-response protocol in the client-server computing model. HTTP is designed to permit intermediate network elements to improve or enable communications between clients and servers. HTTP is an application layer protocol designed within the framework of the Internet Protocol Suite; it presumes an underlying and reliable transport layer protocol.

HTTP Protocol

Hardware-based firewalls provide more sophisticated protection for inbound and outbound traffic than the simple Windows software firewall or the basic NAT firewalls found in routers. These devices implement techniques such as stateful packet inspection, deep packet inspection, and content filtering; and may include built-in antivirus and anti-malware protection.

Hardware Firewalls

NetScaler is the industry’s leading web and application delivery controller that maximizes the performance and availability of all applications and data, and also provide secure remote access to any application from any device type. NetScaler products are easily selected by determining the edition providing functional needs and the appropriate physical or virtual appliance platform to fulfill performance needs.