I was asked to jump in on a project this week to help configure Microsoft Direct Access load balancing using the NetScaler platform. when I went looking their wasn’t a lot of info other than a good video on how it works https://www.petri.com/webinars/using-advanced-adc-configuration-for-microsoft-direct-access-to-improve-datacenter-security
After reaching out to Richard, https://directaccess.richardhicks.com he pointed me in the right direction so I took a few screen grabs as I went and this is the first part configuring the NLS Web server on NetScaler so that it returns 200 OK to the clients when they are on the LAN.
First Step is to create the internal NLS web server on your NetScaler
Create Responder Action
Select Add
Create Responder Action
Enter Name
Select respond with :
Enter Expression
“HTTP/1.0 200 OK” + “\r\n\r\n” + “<html><body>DirectAccess Network Location Server (NLS)</body></html>” + “\r\n”
Create Repsonder Policy
Select Add
Create Repsonder Policy
Enter Policy Name
Select Action DirectAccess (name from above)
Enter Expression :
HTTP.REQ.IS_VALID
Select create
Create Service
Select Add
Create Service
Enter Name of Service
Enter Looopback IP address
Select 443
Enter port 62112
Un-check health monitoring
Create and install Certificate for the vServer
Create Certificate Key
Select Create Key
Enter Details
Enter details as above
Create CSR
Create CSR
Enter details above ensure you enter the correct URL of the internal
Pass the CRS to the Certificate authority to sign and return the certificate
When returned copy it to the cert location on the NetScaler
Also copy the root certificate and any certificate chain if required.
Install Certificate
Select Install
Give the certificate a name
Browse to the NetScaler and select the returned file and the key that you originally created.
Enter the password that was created earlier
Install the Root CA
Select Install
Enter a name for certificate
Browse the NetScaler and select the Root CA you just up loaded
Link the certificate chain
Select the certificate you need to chain
Select Actions and then Link
Select the correct Root CA
Select OK
Create vServer for NLS
Select Add
Enter vServer name
Select SSL
Enter IP address
Select OK
Select Load balancing Service
click to select Service
Select DirectAcces
Select OK
Select Bind
Select OK
Select Certificates
Click to select certificate
Select the correct certificate to be used on the vServer
Select Bind
Select OK
Select Policies
Select to open policies
select responder
select request
Click to select policy
Select the policy created earlier
Select OK
Select Bind
Select Done
You then need to add a DNS record to point to the IP of the vServer and point you internal clients to this and you should be good to go.
ronnie.ie 
Hi, yeah this piece of writing is actually good and I have learned lot of things from it on the topic of blogging.
thanks.
LikeLike
This stuff is very satisfactorily written. The article was informational to elocutionists who exactly have a great value for articles. We look forward for more of the same. He has detailed each and every little thing extremely nicely and in brief.
LikeLike
Very good blog! Do you have any helpful hints for aspiring writers?
I’m hoping to start my own site soon but I’m a little lost on everything.
Would you propose starting with a free platform like
Wordpress or go for a paid option? There are so many options out there that I’m completely overwhelmed ..
Any recommendations? Appreciate it!
LikeLike
best thing is to just start with a free one and just pick a topic you are working on and use it as a way to record how you achieved something… as you get more comfortable writing you can expand what you want to write about start reviewing products topics etc. main thing is to start
LikeLike