Citrix NetScaler MPX Скачать руководство пользователя страница 68 | Manualshive

Страница: 68 / 69

background image

© 1999-2017 Citrix Systems, Inc. All rights reserved.

p.68

https://docs.citrix.com

Migrating from the Secure Gateway to NetScaler
Gateway

Jul 15, 2013

This topic discusses how to prepare to migrate from the Secure Gateway to NetScaler Gateway, and the two migration
options you can choose: In-place migration or parallel migration.

Preparing to Migrate

Before migrating from the Secure Gateway to NetScaler Gateway, consider the following:

Make sure that user devices meet system requirements. For more information about system requirements, see the
appropriate guide for the Citrix online plug-in.
Make sure port 443, the default security port on the firewall is open between the Internet and NetScaler Gateway. This
requirement is identical in a Secure Gateway deployment.
Install NetScaler Gateway. For details, see the installation instructions for your NetScaler Gateway appliance.
Acquire and install the appropriate certificates on NetScaler Gateway. These include:

Server certificate for NetScaler Gateway
Root certificates for NetScaler Gateway, Secure Ticket Authority (STA), and user devices

Configure the networks that users can connect to through NetScaler Gateway.

Migrating Options

You can choose from the following two options for migrating from the Secure Gateway to NetScaler Gateway:

In-place migration, in which you transfer the certificate and fully qualified domain name (FQDN) on the Secure Gateway
to NetScaler Gateway
Parallel migration, in which you obtain a new signed certificate and FQDN for NetScaler Gateway

Each option is valid; however, the in-place migration has the potential to temporarily disrupt access to internal resources
when compared with a new installation.

After the migration is complete, users can log on with their current credentials and do not have to perform any
conﬁguration to their device. Each option requires minimal user support.

Performing an In-Place Migration

When you choose an in-place migration from the Secure Gateway to NetScaler Gateway, you export the Secure Gateway
certiﬁcate, upload it to NetScaler Gateway and bind it to a virtual server.

The certificate must be in PEM format before you can install it on NetScaler Gateway. If you are unfamiliar with the
process of converting certificates, Citrix recommends a new installation of NetScaler Gateway and the use of a new
certificate.
Important: If you are transferring a certificate from the Secure Gateway to Access Gateway Enterprise Edition, the FQDN
of the certificate installed on the virtual server must match the FQDN of the Secure Gateway. With this option, you
cannot take a phased approach because two identical FQDNs cannot reside on the same network.
An in-place migration is identical to a new installation of NetScaler Gateway, except for the following items:

You use the Secure Gateway certificate on NetScaler Gateway

«
...
66
67
68
69
»

Содержание NetScaler MPX

Страница 1: ...nstalling the Model MPX Appliance in a Rack Connecting the Cables to the MPX Appliance Turning on the Model MPX Appliance Performing the Initial Con guration of the MPX Appliance Configuring the Model...

Страница 2: ...sing vSphere Importing NetScaler Gateway VPX to VMware Installing NetScaler Gateway VPX on Microsoft Server 2008 R2 Upgrading NetScaler Gateway VPX Con guring NetScaler Gateway VPX for the First Time...

Страница 3: ...ware that are supported on the MPX appliance NetScaler Gateway version MPX support 9 2 Classic Yes 9 2 nCore You must install a minimum of Build 55 5 to use nCore on a 9 2 appliance Yes 9 3 nCore Yes...

Страница 4: ...s are visible on the back panel of the MPX A 4 GB removable CompactFlash card that is used to store the operating system A power switch that turns off power to the MPX as if you were to unplug the pow...

Страница 5: ...d hard disk drive Power Supply and Fan Appliances are con gured with either a single power supply or for higher capacity fault tolerant models a dual power supply con guration The power supply on the...

Страница 6: ...speed of 100 megabits per second Mbps The MPX appliance has a single 10 100BASE T port 10 100 1000BASE T port This type of port has a maximum transmission speed of 1 GB which is 10 times faster than t...

Страница 7: ...on Transmitter Wavelength nm Fiber Type Typical Reach m Products EW3A0000234 EW3B0000234 EW3C0000234 EW3D0000234 EW3E0000234 EW3F0000234 EW3P0000142 EW3X0000234 EW3Z0000086 Citrix NetScaler 1G SFP Eth...

Страница 8: ...1 Gbps Left Link Activity Off No link Solid green Link is established but no traffic is passing through the port Blinking green Traffic is passing through the port Right Speed Off No connection Yellow...

Страница 9: ...ps docs citrix com RJ45 Green Traffic rate of 100 Mbps Amber Traffic rate of 1 gigabit per second Right Link Activity Off No link Solid yellow Link is established but no traffic is passing through the...

Страница 10: ...parts according to the appliance you ordered Next verify that the location where you will install the appliance meets temperature and power requirements Also verify that the server cabinet or oor to c...

Страница 11: ...One 6 ft RJ 45 DB 9 cable One power cable One mounting rail kit with all the models In addition to the items included in the box with your new appliance you will need the following items to complete...

Страница 12: ...s a humidity level no greater than 45 percent and a dust free environment Power density Wiring capable of handling at least 4000 W per rack unit in addition to power needs for the CRAC Rack Requiremen...

Страница 13: ...ny appliance before performing repairs or upgrades Do not overload the wiring in your server cabinet or on your server room rack During thunderstorms or anticipated thunderstorms located in the vicini...

Страница 14: ...ficient for safe operation Leave enough clearance in front of the rack to open the front door completely 25 inches Leave approximately 30 inches of clearance behind the rack to allow for sufficient ai...

Страница 15: ...environmental standards and the server rack is in place according to the instructions you install the hardware After you mount the appliance you connect it to the network to a power source and to the...

Страница 16: ...you use a pre installation checklist for the Model MPX For more information see the NetScaler Gateway Pre Installation Checklist You can use the checklist to collect the following network information...

Страница 17: ...u can access the LCD and various ports on the front panel of the appliance Leave approximately 30 inches of clearance in the back of the rack to allow for sufficient airflow and easy servicing Install...

Страница 18: ...nect the NetScaler Gateway appliance 1 Install NetScaler Gateway in a rack if it is rack mounted 2 Connect the power cord to the AC power receptacle 3 Connect either the serial cable to a Windows base...

Страница 19: ...ide of the appliance as well as screws to attach the rails You must install the assemblies before mounting the appliance in the rack To mount the appliance you must rst install the rails and then inst...

Страница 20: ...g inner rails 4 Repeat steps 1 through 3 to install the left inner rail on the left side of the appliance To install the rack rails 1 Position the rack rails at the desired location in the rack keepin...

Страница 21: ...transceiver 1 Insert the RJ 45 connector on one end of your Ethernet cable into an appropriate port on the front panel of the appliance as shown in the following figure Figure 1 Inserting an Ethernet...

Страница 22: ...insert the optional converter provided into the console port and attach the cable to it 2 Insert the RJ 45 connector at the other end of the cable into the serial port of the computer or terminal Conn...

Страница 23: ...u are connected to the appliance through a console or Ethernet port This step will ensure that you can configure the appliance after you turn it on 2 Press the ON OFF toggle power switch on the back p...

Страница 24: ...om a remote network or if you want to install multiple appliances and then con gure them without using the console port you can use Dynamic Host Con guration Protocol DHCP to assign each new appliance...

Страница 25: ...t panel of the appliance You can access the Setup Wizard from any computer that is on the same network as the new NetScaler Gateway appliance However because this method uses the default IP address fo...

Страница 26: ...e values is changed This key is also known as the ENTER key You are prompted to enter the subnet mask NetScaler Gateway IP address and default gateway in that order The subnet mask is associated with...

Страница 27: ...27 https docs citrix com If all of the values you enter are valid when you press the ENTER key the following message appears Values accepted Rebooting The subnet mask NetScaler Gateway IP address and...

Страница 28: ...ed terminal emulation program 3 Press ENTER The terminal screen displays the logon prompt Note You might have to press ENTER two or three times depending on the terminal program you are using 4 Log on...

Страница 29: ...a subnet or mapped IP address If the default IP address of the appliances is 192 168 100 1 For more information about the rst time con guration see Con guring NetScaler Gateway with the First Time Us...

Страница 30: ...system ID sysid on the serial number sticker on the back panel of the appliance 2 Set up a DHCP server and configure it with the vendor class identifier To con gure a Linux or UNIX DHCP server for Ne...

Страница 31: ...lowing code example shows an entry in a DHCP server s dhcpd leases le This entry veri es the binding state of the appliance with a sysid of 45eae1a8157e89b9314f lease 10 102 33 248 starts 3 2009 08 19...

Страница 32: ...nabled in the con guration le you should disable it and then save the con guration le If the DHCP client is enabled the appliance will poll the DHCP server again for an IP address when it restarts The...

Страница 33: ...ge to binary mode and copy the public key to this directory At the command prompt type bin put id_rsa pub To set up SSH access with public key encryption on the appliance 1 Open a connection to the ap...

Страница 34: ...1999 2017 Citrix Systems Inc All rights reserved p 34 https docs citrix com ssh nsroot NSIPaddress You should not receive a prompt for a password Example ssh nsroot 10 102 96 50...

Страница 35: ...an install the software on your hypervisor of choice and receive the same granular con guration as with the physical appliance User connections work the same as with the virtual appliance and you can...

Страница 36: ...ion For more information about VMware ESX or vSphere or Microsoft Hyper V see the manufacturer s documentation Each supported hypervisor also has management software that you use to install and manage...

Страница 37: ...on the hypervisor that appears to the user as a separate physical machine The machine however shares physical resources with other virtual machines The virtual machine is portable because it is abstr...

Страница 38: ...er to install NetScaler Gateway VPX on XenServer For more information about XenCenter see the XenServer documentation Example of a NetScaler Gateway VPX Setup on XenServer A NetScaler Gateway VPX setu...

Страница 39: ...o install to use and manage VMware ESX and VMware ESXi You use vSphere to install the virtual image le ova for NetScaler Gateway on VMware You also use vSphere to con gure the basic settings of the vi...

Страница 40: ...ll virtualization systems Hyper V enables you to create a virtualized computing environment that results in better usage of your hardware resources Hyper V is a type 1 hypervisor that comes preinstall...

Страница 41: ...ateway VPX has speci c hardware virtual computer and operating system requirements for the hypervisor management consoles These requirements differ depending on the version of NetScaler Gateway VPX th...

Страница 42: ...tes GB Disk space Locally attached storage PATA SATA SCSI with minimum of 20 GB of disk space Network One 1 Gbps network adapter required Recommended Two network adapters of 1 Gbps each For NetScaler...

Страница 43: ...ce is installed on ESX 4 0 the maximum is 10 XenCenter System Requirements XenCenter is a Windows based application The application cannot run on the same computer as the XenServer host The following...

Страница 44: ...yper V Role and Configure a Virtual Machine on the Microsoft website Download the VPX setup files Obtain NetScaler Gateway VPX license files Windows Server 2008 R2 Hardware Requirements The following...

Страница 45: ...virtual image is a le name with the le name extension of vhd You can get the virtual image from the Citrix web site after you purchase NetScaler Gateway VPX To download NetScaler Gateway VPX 1 Go to t...

Страница 46: ...ole for your version to download and install XenCenter 1 Click Start All Programs Citrix XenCenter 2 In the navigation pane click the name of the XenServer on which you want to install NetScaler Gatew...

Страница 47: ...here management tool Caution During installation you must attach at least one network interface If you do not attach a network interface the virtual appliance will automatically restart and enter reco...

Страница 48: ...configure a maximum of eight virtual network adapters Even if the physical network adapter is down the virtual appliance assumes that the virtual network adapter is up because it can still communicat...

Страница 49: ...itional network adapters that you want to use repeat steps 6 and 7 9 Click Apply and then click OK To con gure NetScaler Gateway VPX 1 Right click the virtual appliance that you previously installed a...

Страница 50: ...d subnet of the network adapter that is called eth0 as well as the IP address of the default gateway device For Access Gateway VPX 5 0 you use the management console You can also use the XenCenter or...

Страница 51: ...on by using the PING command Access Gateway VPX requires two network interfaces one for the public Internet network and the second for the internal network For Access Gateway VPX 4 6 you cannot con gu...

Страница 52: ...ge Center To download the VPX software for your NetScaler Gateway version see Downloading the Virtual Image for NetScaler Gateway VPX To upgrade NetScaler Gateway by using the Upgrade Wizard 1 In the...

Страница 53: ...k the virtual image and then click Delete 4 Select Delete attached virtual disks and then click OK To delete the virtual image in vSphere 1 Open the VMware vSphere Client 2 In the navigation pane righ...

Страница 54: ...perform the NetScaler Gateway VPX installation you use vSphere which you must install on a remote computer that can connect to the VMware host through the network After you install NetScaler Gateway V...

Страница 55: ...teway 5 0 You can install the model 2010 in the DMZ or the secure network The precon gured IP address of Access Gateway 5 0 on the Model 2010 is 10 20 30 40 To change the IP address you can use a seri...

Страница 56: ...cations Sep 16 2010 The Model 2010 appliance is a standard 1U 19 inch rack mountable appliance that supports up to 500 concurrent users The 2010 appliance has the following ports Two front mounted 10...

Страница 57: ...Access Gateway VPX and other virtual machines Network One 1 Gbps network adapter required Recommended Two network adapters of 1 Gbps each To install XenServer see the XenServer Installation Guide on t...

Страница 58: ...The following table describes the system requirements for XenCenter Table 3 System Requirements for XenCenter Installation Operating system Windows XP Windows Server 2003 Windows Vista or Windows 7 N...

Страница 59: ...tall Access Gateway in a rack if it is rack mounted 2 Connect the power cord to the AC power receptacle 3 Connect either the serial cable to a Windows based computer a cross over cable to a Windows ba...

Страница 60: ...l use of the appliance if you choose not to install the appliance in a rack The following illustration shows the sections of the outer rails for the Model 2010 appliance and how you should attach them...

Страница 61: ...the appliance When the rails are attached to the appliance install the outer rails to the rack To install the outer rails to the rack 1 Attach the short bracket to the outside of the long bracket The...

Страница 62: ...are installed on the rack 2 Line up the rails on the appliance A and B with the front of the rack rails C 3 Slide the appliance rails into the rack rails keeping the pressure even on both sides You mi...

Страница 63: ...wo post Telco rack follow the directions given on the previous pages for rack installation The only difference in the installation procedure is the positioning of the rack brackets to the rack Space t...

Страница 64: ...1 Verify that you are connected to the appliance through a console or Ethernet port This step will ensure that you can con gure the appliance after you turn it on 2 Plug in the power cable Note The mo...

Страница 65: ...network adapter that is called Interface 0 as well as the IP address of the default gateway device You con gure subsequent settings using the Management Console in Access Gateway 5 0 or the Administra...

Страница 66: ...Citrix online plug ins Desktop Receiver and published resources in single hop and double hop DMZ deployments Note When NetScaler Gateway is deployed in a double hop DMZ only connections between onlin...

Страница 67: ...e 2 NetScaler Gateway deployment When the Secure Gateway is removed from the DMZ and replaced with NetScaler Gateway you have the option of moving the Web Interface to the secure network NetScaler Gat...

Страница 68: ...you transfer the certificate and fully qualified domain name FQDN on the Secure Gateway to NetScaler Gateway Parallel migration in which you obtain a new signed certificate and FQDN for NetScaler Gat...

Страница 69: ...nd other settings on the appliance Users continue to connect to the Secure Gateway until con guration of NetScaler Gateway is complete The Secure Gateway runs parallel to NetScalter Gateway until you...

Отзывы:

Нет отзывов

Похожие инструкции для NetScaler MPX

Power Xpert Meter 2000

Бренд: Eaton Страницы: 71

Power Xpert Gateway 900

Бренд: Eaton Страницы: 25

Subnet16 BIS Z-GW-001-IND

Бренд: Balluff Страницы: 2

Бренд: ZyXEL Communications Страницы: 2

Бренд: Pulse Secure Страницы: 39

Бренд: THOMSON Страницы: 52

Бренд: D-Link Страницы: 55

DVG-3104MS - VoiceCenter PSTN Gateway

Бренд: D-Link Страницы: 3

Бренд: D-Link Страницы: 7

Бренд: D-Link Страницы: 9

Бренд: D-Link Страницы: 7

Бренд: D-Link Страницы: 7

Бренд: D-Link Страницы: 7

Бренд: D-Link Страницы: 92

Бренд: D-Link Страницы: 56

Бренд: D-Link Страницы: 71

Бренд: D-Link Страницы: 76

Бренд: D-Link Страницы: 87

Бренды по названию

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Популярные бренды

Загрузить еще бренды