Obviously all ports are closed except explicitly what is needed and in this case only port 53 UDP was opened for DNS, ping ICMP is closed. We also had LDAPS opened to the same server within the same ports security rule on the firewall and that service was working fine so the issue lies within the DNS service itself. DNS server is on a different subnet/VLAN from NSIP and SNIP.įirewall rules where triple checked and everything seemed to be in order. Issue:Ĭustomer has opened UDP 53 to his DNS server from both NSIP and SNIP IP`s never the less DNS name server added on NetScaler keeps on showing status ‘Effective State’ as DOWN and I am not able to resolve any hostname. Now that I am stuck at a high profile security customer with no way to maneuver with networking/security requests other than what was originally requested, its time to look into this matter further. I have faced this issue couple of times now on different NetScaler builds (10 & 11) but used Citrix approach to solve the issue detailed here ( ).
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |