Citrix NetScaler MPX Manual Download Page 33 | Manualshive

Page: 33 / 69

background image

© 1999-2017 Citrix Systems, Inc. All rights reserved.

p.33

https://docs.citrix.com

Accessing an Appliance by Using SSH Keys and No
Password

Apr 16, 2013

In a setup where you have a large number of appliances in a network, you need to store and look up passwords for each
appliance before you can log on to the appliance. You can set up Secure Shell (SSH) access with public key encryption on
the appliances so that you are not prompted for the password. To do this, generate the public/private key on the Linux
client and then copy the public key to the appliance.

To generate the public/private key on a Linux client

1. Change the directory to

/root/.ssh

.

2. Generate the public and private key pair. At the command prompt, type

[root@localhost .ssh]# ssh-keygen -t rsa

3. Press Enter when prompted for a file name to save the key.

4. Press Enter when prompted for a passphrase.

To copy the public key (id_rsa.pub) to the remote appliance

1. Log on to the remote appliance from the Linux client.

2. Change the directory to

/nsconfig/ssh

. At the command prompt, type:

cd /nsconfig/ssh

3. Change to binary mode and copy the public key to this directory. At the command prompt, type:

bin
put id_rsa.pub

To set up SSH access with public key encryption on the appliance

1. Open a connection to the appliance using a telnet/SSH client, such as PuTTY.

2. Log on to the appliance using the administrator credentials.
3. At the shell prompt, change the directory to

/nsconfig/ssh

.

4. Append the public key to the authorized_keys file and change permissions. At the command prompt, type:

cat id_rsa.pub >> authorized_keys
chmod 755 authorized_keys

5. Remove the public key (optional). At the command prompt, type

rm id_rsa.pub

6. At the prompt type the following command to complete the configuration:

cp authorized_keys /root/.ssh/authorized_keys2

7. Change the directory to /nsconfig. At the prompt type:

cd /nsconﬁg

8. To prevent your changes from being lost if the appliance is restarted, add the following line to the rc.netscaler file:

cp /nsconfig/ssh/authorized_keys /root/.ssh/authorized_keys2

Important: If the /nsconfig directory does not contain a rc.netscaler file, you must create one.

To verify SSH access with public key encryption on the appliance

On the Linux client, verify that you can connect to the remote appliance using SSH, without entering the password.

At the prompt, type:

«
...
31
32
33
34
35
...
»

Summary of Contents for NetScaler MPX

Page 1: ...nstalling the Model MPX Appliance in a Rack Connecting the Cables to the MPX Appliance Turning on the Model MPX Appliance Performing the Initial Con guration of the MPX Appliance Configuring the Model...

Page 2: ...sing vSphere Importing NetScaler Gateway VPX to VMware Installing NetScaler Gateway VPX on Microsoft Server 2008 R2 Upgrading NetScaler Gateway VPX Con guring NetScaler Gateway VPX for the First Time...

Page 3: ...ware that are supported on the MPX appliance NetScaler Gateway version MPX support 9 2 Classic Yes 9 2 nCore You must install a minimum of Build 55 5 to use nCore on a 9 2 appliance Yes 9 3 nCore Yes...

Page 4: ...s are visible on the back panel of the MPX A 4 GB removable CompactFlash card that is used to store the operating system A power switch that turns off power to the MPX as if you were to unplug the pow...

Page 5: ...d hard disk drive Power Supply and Fan Appliances are con gured with either a single power supply or for higher capacity fault tolerant models a dual power supply con guration The power supply on the...

Page 6: ...speed of 100 megabits per second Mbps The MPX appliance has a single 10 100BASE T port 10 100 1000BASE T port This type of port has a maximum transmission speed of 1 GB which is 10 times faster than t...

Page 7: ...on Transmitter Wavelength nm Fiber Type Typical Reach m Products EW3A0000234 EW3B0000234 EW3C0000234 EW3D0000234 EW3E0000234 EW3F0000234 EW3P0000142 EW3X0000234 EW3Z0000086 Citrix NetScaler 1G SFP Eth...

Page 8: ...1 Gbps Left Link Activity Off No link Solid green Link is established but no traffic is passing through the port Blinking green Traffic is passing through the port Right Speed Off No connection Yellow...

Page 9: ...ps docs citrix com RJ45 Green Traffic rate of 100 Mbps Amber Traffic rate of 1 gigabit per second Right Link Activity Off No link Solid yellow Link is established but no traffic is passing through the...

Page 10: ...parts according to the appliance you ordered Next verify that the location where you will install the appliance meets temperature and power requirements Also verify that the server cabinet or oor to c...

Page 11: ...One 6 ft RJ 45 DB 9 cable One power cable One mounting rail kit with all the models In addition to the items included in the box with your new appliance you will need the following items to complete...

Page 12: ...s a humidity level no greater than 45 percent and a dust free environment Power density Wiring capable of handling at least 4000 W per rack unit in addition to power needs for the CRAC Rack Requiremen...

Page 13: ...ny appliance before performing repairs or upgrades Do not overload the wiring in your server cabinet or on your server room rack During thunderstorms or anticipated thunderstorms located in the vicini...

Page 14: ...ficient for safe operation Leave enough clearance in front of the rack to open the front door completely 25 inches Leave approximately 30 inches of clearance behind the rack to allow for sufficient ai...

Page 15: ...environmental standards and the server rack is in place according to the instructions you install the hardware After you mount the appliance you connect it to the network to a power source and to the...

Page 16: ...you use a pre installation checklist for the Model MPX For more information see the NetScaler Gateway Pre Installation Checklist You can use the checklist to collect the following network information...

Page 17: ...u can access the LCD and various ports on the front panel of the appliance Leave approximately 30 inches of clearance in the back of the rack to allow for sufficient airflow and easy servicing Install...

Page 18: ...nect the NetScaler Gateway appliance 1 Install NetScaler Gateway in a rack if it is rack mounted 2 Connect the power cord to the AC power receptacle 3 Connect either the serial cable to a Windows base...

Page 19: ...ide of the appliance as well as screws to attach the rails You must install the assemblies before mounting the appliance in the rack To mount the appliance you must rst install the rails and then inst...

Page 20: ...g inner rails 4 Repeat steps 1 through 3 to install the left inner rail on the left side of the appliance To install the rack rails 1 Position the rack rails at the desired location in the rack keepin...

Page 21: ...transceiver 1 Insert the RJ 45 connector on one end of your Ethernet cable into an appropriate port on the front panel of the appliance as shown in the following figure Figure 1 Inserting an Ethernet...

Page 22: ...insert the optional converter provided into the console port and attach the cable to it 2 Insert the RJ 45 connector at the other end of the cable into the serial port of the computer or terminal Conn...

Page 23: ...u are connected to the appliance through a console or Ethernet port This step will ensure that you can configure the appliance after you turn it on 2 Press the ON OFF toggle power switch on the back p...

Page 24: ...om a remote network or if you want to install multiple appliances and then con gure them without using the console port you can use Dynamic Host Con guration Protocol DHCP to assign each new appliance...

Page 25: ...t panel of the appliance You can access the Setup Wizard from any computer that is on the same network as the new NetScaler Gateway appliance However because this method uses the default IP address fo...

Page 26: ...e values is changed This key is also known as the ENTER key You are prompted to enter the subnet mask NetScaler Gateway IP address and default gateway in that order The subnet mask is associated with...

Page 27: ...27 https docs citrix com If all of the values you enter are valid when you press the ENTER key the following message appears Values accepted Rebooting The subnet mask NetScaler Gateway IP address and...

Page 28: ...ed terminal emulation program 3 Press ENTER The terminal screen displays the logon prompt Note You might have to press ENTER two or three times depending on the terminal program you are using 4 Log on...

Page 29: ...a subnet or mapped IP address If the default IP address of the appliances is 192 168 100 1 For more information about the rst time con guration see Con guring NetScaler Gateway with the First Time Us...

Page 30: ...system ID sysid on the serial number sticker on the back panel of the appliance 2 Set up a DHCP server and configure it with the vendor class identifier To con gure a Linux or UNIX DHCP server for Ne...

Page 31: ...lowing code example shows an entry in a DHCP server s dhcpd leases le This entry veri es the binding state of the appliance with a sysid of 45eae1a8157e89b9314f lease 10 102 33 248 starts 3 2009 08 19...

Page 32: ...nabled in the con guration le you should disable it and then save the con guration le If the DHCP client is enabled the appliance will poll the DHCP server again for an IP address when it restarts The...

Page 33: ...ge to binary mode and copy the public key to this directory At the command prompt type bin put id_rsa pub To set up SSH access with public key encryption on the appliance 1 Open a connection to the ap...

Page 34: ...1999 2017 Citrix Systems Inc All rights reserved p 34 https docs citrix com ssh nsroot NSIPaddress You should not receive a prompt for a password Example ssh nsroot 10 102 96 50...

Page 35: ...an install the software on your hypervisor of choice and receive the same granular con guration as with the physical appliance User connections work the same as with the virtual appliance and you can...

Page 36: ...ion For more information about VMware ESX or vSphere or Microsoft Hyper V see the manufacturer s documentation Each supported hypervisor also has management software that you use to install and manage...

Page 37: ...on the hypervisor that appears to the user as a separate physical machine The machine however shares physical resources with other virtual machines The virtual machine is portable because it is abstr...

Page 38: ...er to install NetScaler Gateway VPX on XenServer For more information about XenCenter see the XenServer documentation Example of a NetScaler Gateway VPX Setup on XenServer A NetScaler Gateway VPX setu...

Page 39: ...o install to use and manage VMware ESX and VMware ESXi You use vSphere to install the virtual image le ova for NetScaler Gateway on VMware You also use vSphere to con gure the basic settings of the vi...

Page 40: ...ll virtualization systems Hyper V enables you to create a virtualized computing environment that results in better usage of your hardware resources Hyper V is a type 1 hypervisor that comes preinstall...

Page 41: ...ateway VPX has speci c hardware virtual computer and operating system requirements for the hypervisor management consoles These requirements differ depending on the version of NetScaler Gateway VPX th...

Page 42: ...tes GB Disk space Locally attached storage PATA SATA SCSI with minimum of 20 GB of disk space Network One 1 Gbps network adapter required Recommended Two network adapters of 1 Gbps each For NetScaler...

Page 43: ...ce is installed on ESX 4 0 the maximum is 10 XenCenter System Requirements XenCenter is a Windows based application The application cannot run on the same computer as the XenServer host The following...

Page 44: ...yper V Role and Configure a Virtual Machine on the Microsoft website Download the VPX setup files Obtain NetScaler Gateway VPX license files Windows Server 2008 R2 Hardware Requirements The following...

Page 45: ...virtual image is a le name with the le name extension of vhd You can get the virtual image from the Citrix web site after you purchase NetScaler Gateway VPX To download NetScaler Gateway VPX 1 Go to t...

Page 46: ...ole for your version to download and install XenCenter 1 Click Start All Programs Citrix XenCenter 2 In the navigation pane click the name of the XenServer on which you want to install NetScaler Gatew...

Page 47: ...here management tool Caution During installation you must attach at least one network interface If you do not attach a network interface the virtual appliance will automatically restart and enter reco...

Page 48: ...configure a maximum of eight virtual network adapters Even if the physical network adapter is down the virtual appliance assumes that the virtual network adapter is up because it can still communicat...

Page 49: ...itional network adapters that you want to use repeat steps 6 and 7 9 Click Apply and then click OK To con gure NetScaler Gateway VPX 1 Right click the virtual appliance that you previously installed a...

Page 50: ...d subnet of the network adapter that is called eth0 as well as the IP address of the default gateway device For Access Gateway VPX 5 0 you use the management console You can also use the XenCenter or...

Page 51: ...on by using the PING command Access Gateway VPX requires two network interfaces one for the public Internet network and the second for the internal network For Access Gateway VPX 4 6 you cannot con gu...

Page 52: ...ge Center To download the VPX software for your NetScaler Gateway version see Downloading the Virtual Image for NetScaler Gateway VPX To upgrade NetScaler Gateway by using the Upgrade Wizard 1 In the...

Page 53: ...k the virtual image and then click Delete 4 Select Delete attached virtual disks and then click OK To delete the virtual image in vSphere 1 Open the VMware vSphere Client 2 In the navigation pane righ...

Page 54: ...perform the NetScaler Gateway VPX installation you use vSphere which you must install on a remote computer that can connect to the VMware host through the network After you install NetScaler Gateway V...

Page 55: ...teway 5 0 You can install the model 2010 in the DMZ or the secure network The precon gured IP address of Access Gateway 5 0 on the Model 2010 is 10 20 30 40 To change the IP address you can use a seri...

Page 56: ...cations Sep 16 2010 The Model 2010 appliance is a standard 1U 19 inch rack mountable appliance that supports up to 500 concurrent users The 2010 appliance has the following ports Two front mounted 10...

Page 57: ...Access Gateway VPX and other virtual machines Network One 1 Gbps network adapter required Recommended Two network adapters of 1 Gbps each To install XenServer see the XenServer Installation Guide on t...

Page 58: ...The following table describes the system requirements for XenCenter Table 3 System Requirements for XenCenter Installation Operating system Windows XP Windows Server 2003 Windows Vista or Windows 7 N...

Page 59: ...tall Access Gateway in a rack if it is rack mounted 2 Connect the power cord to the AC power receptacle 3 Connect either the serial cable to a Windows based computer a cross over cable to a Windows ba...

Page 60: ...l use of the appliance if you choose not to install the appliance in a rack The following illustration shows the sections of the outer rails for the Model 2010 appliance and how you should attach them...

Page 61: ...the appliance When the rails are attached to the appliance install the outer rails to the rack To install the outer rails to the rack 1 Attach the short bracket to the outside of the long bracket The...

Page 62: ...are installed on the rack 2 Line up the rails on the appliance A and B with the front of the rack rails C 3 Slide the appliance rails into the rack rails keeping the pressure even on both sides You mi...

Page 63: ...wo post Telco rack follow the directions given on the previous pages for rack installation The only difference in the installation procedure is the positioning of the rack brackets to the rack Space t...

Page 64: ...1 Verify that you are connected to the appliance through a console or Ethernet port This step will ensure that you can con gure the appliance after you turn it on 2 Plug in the power cable Note The mo...

Page 65: ...network adapter that is called Interface 0 as well as the IP address of the default gateway device You con gure subsequent settings using the Management Console in Access Gateway 5 0 or the Administra...

Page 66: ...Citrix online plug ins Desktop Receiver and published resources in single hop and double hop DMZ deployments Note When NetScaler Gateway is deployed in a double hop DMZ only connections between onlin...

Page 67: ...e 2 NetScaler Gateway deployment When the Secure Gateway is removed from the DMZ and replaced with NetScaler Gateway you have the option of moving the Web Interface to the secure network NetScaler Gat...

Page 68: ...you transfer the certificate and fully qualified domain name FQDN on the Secure Gateway to NetScaler Gateway Parallel migration in which you obtain a new signed certificate and FQDN for NetScaler Gat...

Page 69: ...nd other settings on the appliance Users continue to connect to the Secure Gateway until con guration of NetScaler Gateway is complete The Secure Gateway runs parallel to NetScalter Gateway until you...

Reviews:

No comments

Related manuals for NetScaler MPX

Brand: LOYTEC Pages: 150

Brand: B&B Electronics Pages: 83

Brand: Pace Pages: 36

ONLY SMART HOME D-FTC2E

Brand: ENANCER Pages: 9

Brand: Digi Pages: 6

Brand: TENA Pages: 40

Brand: TANDBERG Pages: 39

Brand: RTA Pages: 68

Brand: LANSITEC Pages: 25

Brand: iSMA CONTROLLI Pages: 29

Brand: VOPtel Pages: 38

Brand: Wildix Pages: 14

Brand: ZyXEL Communications Pages: 477

Envoy-S Standard ENV-S-WB-230-F

Brand: enphase Pages: 2

hotspot gateway

Brand: Jaze Pages: 102

Brand: Cooper Atkins Pages: 21

Brand: IBM Pages: 1066

Brand: YANZI Pages: 2

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands