Application Firewall - CCGC Test

Citrix Cloud Gateway Connector protects against a wide variety of threats with integrated security capabilities (like Application firewall) that protect applications resources, augmenting existing network-layer security protections. The Application Firewall secures web applications, prevents inadvertent or intentional disclosure of confidential information and aids in compliance with information security regulations such as PCI-DSS.

This test tracks the network traffic flowing through the Application Firewall, and reports the count of requests/responses transferred and the count of requests that were aborted/redirected by the Application Firewall. The statistics reported by this test thus serve as a good measure of the efficiency of the Application Firewall.

Target of the test : A Citrix Cloud Gateway Connector

Agent deploying the test : A remote agent

Outputs of the test : One set of results for the Citrix Cloud Gateway Connector to be monitored.

Configurable parameters for the test
Parameter Description

Test Period

How often should the test be executed.

Host

The host for which the test is to be configured.

Port

The port at which the connector listens. By default, this is 443.

Username and Password

To monitor a Citrix Cloud Gateway Connector, the eG agent should be configured with the credentials of a user with read-only privileges to the target connector. Specify the credentials of such a user in the Username and Password text boxes.

Confirm Password

Confirm the Password by retyping it here.

SSL

By default, the SSL flag is set to No indicating that the eG agent will communicate with the connector via HTTP by default. If the target connector is SSL-enabled, then set this flag to Yes to enable the eG agent to communicate with target connector via HTTPS.

Measurements made by the test

Measurement

Description

Measurement Unit

Interpretation

Requests

Indicates the number of HTTP/HTTPS requests transmitted through the Application Firewall during the last measurement period.

Number

 

Request rate

Indicates the number of HTTP/HTTPS requests transmitted through the Application Firewall per second during the last measurement period.

Requests/sec

 

Responses

Indicates the number of HTTP/HTTPS responses transferred through the Application Firewall during the last measurement period.

Number

 

Response rate

Indicates the number of HTTP/HTTPS responses transmitted through the Application Firewall per second during the last measurement period.

Responses/sec

 

Aborts

Indicates the number of incomplete HTTP/HTTPS requests aborted by the client before the Application Firewall completes processing during the last measurement period.

Number

High values for these measures could warrant an investigation.

 

Abort rate

Indicates the number of incomplete HTTP/HTTPS requests aborted by the client before the Application Firewall completes processing per second during the last measurement period.

Aborts/sec

Redirects

Indicates the number of HTTP/HTTPS requests redirected by the Application Firewall to a different web page or web server during the last measurement period.

Number

 

Redirect rate

Indicates the number of HTTP/HTTPS requests redirected by the Application Firewall to a different web page or web server per second during the last measurement period.

Redirects/sec