Solved

Netscaler Clientless VPN - Bookmark URL Masking

Posted on 2016-09-20
  • VPN
  • Citrix
  • Web Development
  • Web Applications
  • SSL / HTTPS
  • +1
3
107 Views
Last Modified: 2016-10-25
Hi

We have the following issue with users who connect to internal web pages/web applications via Clientless VPN Bookmarks.

When the user connects, the Netscaler masks the address, so instead of:

http://servername/sitename

it becomes:

https://netscalerexternal/cvpn/http/servername/sitename

Is there anyway to stop this behaviour whilst still allowing a user to access the site? I can apprecaite why it does it, however it is causing issues with a few of the Javascripts that run.

If anyone has any information on this, it would be greatly appreciated.

Many Thanks

Richard
0
Comment
Question by:Fletch_r21
  • 2
3 Comments
 
LVL 23

Assisted Solution

by:Dirk Kotte
Dirk Kotte earned 250 total points (awarded by participants)
ID: 41808163
With clientless-VPN you gon't get a real VPN.
If you access internal webpages you have to use the NetScaler as reverse-proxy (only for your session and secure) you should not get a Connection if you try to open internal server directly (http://servername/sitename)
Netscaler rewrites the Webpage content so all included links matching the reverse Proxy URL.
Possible this don't work with some special scripts.

Do you have examples for non working scripts?

Possible you need full-VPN with you web-site, so your users reach this page directly without rewrite.
0
 
LVL 63

Accepted Solution

by:
btan earned 250 total points (awarded by participants)
ID: 41808689
I am thinking if this rewrite may help
You will need to define domains for clientless access in order to have it only re-write certain links. In the Access Gateway Global Settings, click the link for 'Configure Domains for Clientless Access'. Choose "Allow Domains", then type in the domains you want to have re-written. I don't know if you can specify individual sites (site.company.com) or if you can only do domains (company.com). If you did this and entered "company.com", then any links / bookmarks that ended with that would be re-written; anything not specified (like google.com) would not be.
https://discussions.citrix.com/topic/251028-url-rewriting-in-bookmarks-with-clientless-ssl-vpn/?p=1401049

Or maybe we can find the Published Applications section and click No Url to bind Bookmarks.
http://www.carlstalhood.com/netscaler-gateway-11-1-ssl-vpn/#bookmarks
0
 
LVL 63

Expert Comment

by:btan
ID: 41836569
As per advice on rewriting options
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

An enjoyable and seamless user experience can go a long way on an eCommerce site. While a cohesive layout and engaging copy play roles in creating a positive user experience, some sites neglect aspects that seem marginal but in actuality prove very …
Color can increase conversions, create feelings of warmth or even incite people to get behind a cause. If you want your website to really impact site visitors, then it is vital to consider the impact color has on them.
Learn how to set-up custom confirmation messages to users who complete your Wufoo form. Include inputs from fields in your form, webpage redirects, and more with Wufoo’s confirmation options.
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

829 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question