« previous next »
Pages: [1]   Go Down

Author Topic: Netscaler and Virtual Directories  (Read 389 times)

Offline jblaaa

  • Contributor
  • *
  • Posts: 1
  • Karma: 0
Netscaler and Virtual Directories
« on: October 20, 2011, 09:54:06 AM »
Hello! I am trying to use the netscaler VPX appliance to load balance a couple web servers. I have a couple sites built for a dev environment All running windows 2008 R2 IIS 7

www.company.com/company1
www.company.com/company2

www.company.com is load balanced using the netscaler appliance. These are my front end servers.

Company1 and 2's web servers are not accessible directly from the internet.

I have setup separate VIPs for each company and load balanced their websites using service groups of port ANY.

on each front end server I want to setup a virtual directory that points to each company's VIP so that I can load balance the customer's web site.

I beleive I am super close to getting this to work. if I put company1's VIP in the browser, their website comes up fine. The problem I'm having is that VDs use Cfs/SMB to connect to the other servers. If I am load balancing the VIP has to forward these packets to the backend servers. The response I'm getting when setting up the VD is.. a login prompt for a user that can authenticate to get access. I enter my information (correctly..believe me.. :)) I put in the credentials and it just keeps prompting me. To troubleshoot I only allow 1 server to be in the service group so it's essentially not really load balancing. What I see in the web servers audit log is the following

An account failed to log on.
Subject:
      Security ID:            NULL SID
      Account Name:            -
      Account Domain:            -
      Logon ID:            0x0
Logon Type:                  3
Account For Which Logon Failed:
      Security ID:            NULL SID
      Account Name:            Administrator
      Account Domain:            CLOUDSANDBOX
Failure Information:
      Failure Reason:            An Error occured during Logon.
      Status:                  0xc000006d
      Sub Status:            0x0

Process Information:
      Caller Process ID:      0x0
      Caller Process Name:      -
Network Information:
      Workstation Name:      SANDBOX-C1-P1
      Source Network Address:      10.105.0.10
      Source Port:            29718
Detailed Authentication Information:
      Logon Process:           
      Authentication Package:      NTLM
      Transited Services:      -
      Package Name (NTLM only):      -
      Key Length:            0

It's appearing to me that the load balancer isn't passing my credentials properly, I also thought maybe I need to make the netscaler send the front end's server IP through to the backend webserver for authentication to work properly. Any help would be appreciated. I am really new to the netscaler platform.


running netscaler VPX on 9.2


Logged
Pages: [1]   Go Up
« previous next »