NetScaler Times newsletter for Week 40 - 2024

Bug fixes on 13.1 Console

Hello Everyone

It’s Andrew again over at Cloud Software Group. This NetScaler Times update aims to provide you with valuable pointers to keep you up-to-date! 🚀

I would greatly appreciate your continued engagement and feedback, my contact details are at the bottom of this newsletter. I say this as I sometimes make assumptions about what people know and that can lead to gaps in the notes below. :-)

High level agenda for this week:

• This NetScaler Times newsletter includes firmware builds, WAF signature updates, security bulletins, support docs, and community & labs site information.

• Latest firmware builds are listed for NetScaler Consoler and other form factors.

• New WAF signatures were released on September 19th.

• There are no new security bulletins this week.

• Support docs on troubleshooting WAF, configuring CEF logs, and IP reputation are provided.

• Upcoming events include webinars on web security, NetScaler integration, and Citrix Community Webinars.

• Feedback on the newsletter is welcomed.

1. The latest firmware builds.

The details for the various builds have been listed below, as this helps plan for new releases in your environment. This support document has a lot more details on the various release cycles.

The NetScaler has multiple form factors to support different environments. NetScaler is built on a single operating system with a software-based architecture, so the behaviour will be the same no matter which is used — hardware, virtual machine, bare metal, or container.

Latest Build Versions:

NetScaler Consoler 13.1-55.29

This did get an update last week, it was just bug fixes (3). Release notes are here

NetScaler Certifications

There is now have a dedicated page on the NetScaler website with information on our product certifications, including FIPS for our public sector customers: Click me

What features are included with Standard, Advanced or Premium bundles?

Check this out..

NetScaler Feature Data sheet

Which release should I use?

The release families are designed such that 14.1 has more elements changing with each update, hence the feature phase designation. There will be less changing in 13.1, so unless you need a capability only available in the 14.1 release, the advice is to choose 13.1 for most production deployments.

End Of Sale Appliances

These appliances are End of Sale (unavailable to buy new now), they will live and run for 5 more years from 2023, so four more from this year. The 26k-50s and 15k-50G FIPS will be EOS soon..:-(

EOL Appliances

Here is a table showing the significant EOL appliance events for the next 12 months. A common question about EOL is ‘Can I offer you some $ to extend this?’ Unfortunately, EOL is an absolute, there are no extensions.

Questions about End of Life?

Read this:

NetScaler EOL & Migration

2. WAF signature updates

19 September we have released new WAF signatures. Link

3. Recent security bulletins

There are no changes on the security bulletins this week, here are the last two support articles.

NetScaler ADC and NetScaler Gateway Security Bulletin for CVE-2023-4966 and CVE-2023-4967

July 15

Exploits of CVE-2023-4966 on unmitigated appliances have been observed. ... Cloud Software Group strongly urges customers of NetScaler ADC and NetS...

ProductNetScaler; NetScaler Gateway

Citrix Secure Access client for Ubuntu Security Bulletin for CVE-2023-24492

July 13

This issue has been addressed in the following versions of Citrix Secure Access client for Ubuntu: ... Citrix recommends that customers who are aff...

ProductNetScaler; NetScaler Gateway

4. Support Docs

These are some selected Support articles on the support portal Knowledge Center

Troubleshooting WAF Common Problems

• Configuring the Web App Firewall

• Large Files upload Failure 

• High CPU

• High Memory

• NetScaler WAF learning functionality issues

• Configuring CEF logs - an open log management standard

• IP reputation

WAF Functionalities

• CTX568725 - Web Application Firewall is blocking a valid image upload

• CTX235668 - WAF Rules blocks traffic even though relaxation Rules are added

WAF Signature

• CTX492163 - Unable to update WAF Signatures "File too large"

• CTX138858 - Signature Auto Update Feature of Web Application Firewall

• CTX570604 - How to manually update Web Application Firewall Signatures

5. Events

It looks like there are three webinars for September, the last two are the same just at different times on the 26th:

Fortify your web security: Mastering WAF recommendations and SQL injection prevention

18 September 2024, 4:00 PM      4:30 PM

Join us for a comprehensive session on enhancing web application security with NetScaler. In today’s increasingly vulnerable digital landscape, safeguarding your applications is more crucial than ever. This session will provide a deeper understanding of web application security, focusing on practical techniques for configuring NetScaler’s security features. You’ll gain hands-on experience with Web Application Firewall (WAF) recommendations and SQL Injection prevention, learning how to effectively protect your apps while minimizing false positives. Additionally, this is a valuable opportunity for IT professionals, including system administrators, network engineers, and security analysts, to exchange insights on best practices. Equip yourself with the knowledge and skills needed to strengthen your security strategy in a dynamic threat environment.

In this demo, the NetScaler experts will give you insights on:  

• How NetScaler can help you protect against SQL Injection attacks and simplify WAF deployment by using WAF recommendation engine

• Configuring NetScaler security features.

• Integration of NetScaler with other security solutions to provide a comprehensive defense.

Event page

NetScaler Live Demo : NetScaler Integration for Cisco Duo Universal Prompt using Oauth

25 September 2024, 4:00 PM      4:30 PM

Agenda

As a valued customer of Duo and NetScaler, you can now benefit from NetScaler’s native support for the Duo Universal Prompt. This new integration enhances your security experience by seamlessly incorporating Duo’s authentication prompt into your NetScaler environment, eliminating the need for a separate FAS deployment.

Join the NetScaler Live Demo, where the NetScaler experts will provide comprehensive insights and practical guidance on:

• Configuration Steps for Cisco Duo Universal Prompt: Learn how to set up and configure the Duo Universal Prompt within your Cisco Duo environment to ensure a smooth integration with NetScaler.

• Related Configuration on NetScaler: Understand the necessary configurations on NetScaler to fully support and optimize the Duo Universal Prompt integration.

• Live Demonstration: Watch a live demo showcasing the integration in action, highlighting key features and providing a step-by-step walkthrough of the setup process.

Event page

Citrix Community Webinar | NetScaler-APJ/EMEA | Sep 26

26 September 2024, 9:30 AM      10:30 AM

Citrix Community Webinar | NetScaler-Americas | Sep 26

26 September 2024, 4:00 PM      5:00 PM

The NetScaler experts will cover:

1. Support Assist: Best practices for High Availability(HA) mechanisms

2. GSLB New Features: IP change enhancements

3. Networking Update: 

   1. Admin Partition

   2. DNS ECS insertion support

APJ/EMEA event page

Americas event page

Labs

Go here for the hands-on labs. Link

6. Feedback for this newsletter

Naturally, if something you feel should be added/removed or called out, drop me a note; Andrew.Scott@cloud.com. All mistakes are mine.

I would happily get feedback on what you could do with seeing more of or what you find hard to set up. You can get all the previous newsletters plus other articles here:

Have a great week!