Comments on: Add Citrix DDoS mitigation service to Citrix Virtual Apps and Desktops to protect your business https://www.citrix.com/blogs/2022/01/13/citrix-ddos-mitigation-service-protect-your-business/ Official Citrix Blogs Wed, 26 Jan 2022 18:11:00 +0000 hourly 1 https://wordpress.org/?v=6.5.5 By: Lena Yarovaya https://www.citrix.com/blogs/2022/01/13/citrix-ddos-mitigation-service-protect-your-business/#comment-198153 Wed, 26 Jan 2022 18:11:00 +0000 https://citrixblogs.wpengine.com/?p=174255929#comment-198153 In reply to Chris Marreel.

Whitelist CWAAP IP ranges with upstream ISP or edge router.

]]> By: Chris Marreel https://www.citrix.com/blogs/2022/01/13/citrix-ddos-mitigation-service-protect-your-business/#comment-198142 Mon, 17 Jan 2022 13:43:00 +0000 https://citrixblogs.wpengine.com/?p=174255929#comment-198142 Nice article, but in the left picture there is a Firewall between the intenet and the Citrix ADC.
The ‘change’ from Left to Right picture is most probably the public DNS-name is pointed to a new Public IP hosted in the CWAAP-service.
In the right picture there is also that same Firewall between the internet and the Citrix ADC, but a DDOS-attack can always contact the public IP of your Citrix ADC to bring it down. I assume in such a setup it must be a best-practice to limit the access from internet to your Citrix ADC only for the public IP’s of the CWAAP-service. Is this a fixed range of public IP’s ?
Or how is this achieved ?

]]> By: Jason Poole https://www.citrix.com/blogs/2022/01/13/citrix-ddos-mitigation-service-protect-your-business/#comment-198141 Mon, 17 Jan 2022 08:47:00 +0000 https://citrixblogs.wpengine.com/?p=174255929#comment-198141 NIce blog Brian. Frequently a business forgets that it’s employee apps can be taken down thorugh DDoS. Every company should employ DDoS itigation services.

]]>