Posted by: Sulaiman Syed
2010, CAS, Citrix, Configure, hosted, how, HUB, Load Balancer, microsoft, NetScaler, OA, OWA, SSL Offload
In part 1 I showed the general architecture of hosted Microsoft Exchange 2010. I mentioned the ports and virtual ports that will be used for the load balancing. In this Entry, I would show what features are needed for Load Balancing, How to import security certificate, and the re-writing policy.
Before starting the configuration on Citrix NetScaler, please make sure that all the features required are enabled. Features are: SSL offloading, compression, write, load balance. The figure shows where and how to enable it.
as mentioned earlier, we would be SSL offloading from the server, this means that Security Certificate should be installed on the Load Balancer. The certificate has to be mapped to all the names, and ports that we will be load balancing. In our case, we have mapped ports 80,443, pop3, IMAP4, and SMTP with a single certificate.
To import the certificate please do the following: First, we need to import the PKCS#12 into the load balancer.
Next step is installing the imported certificate. Go to the SSL>Certificates>add. as shown below.
Create a name for the Certificate-Key Pair name that you can refer using them certificate with load balancing. The Certificate file Name will be the same file name created in the above step when importing the certificate.
Once installation is done. the next step is to create the re-write policies. This is required because Load Balancer will be re-writing the actual traffic and sending the new traffic to the CAS. Go to Rewrite and create the action first as shown in the images below.
Our initial /prerequisite setup is done. What would follow is the actual Load Balance configuration in the next Entry.