Citrix NetScaler AppFirewall Review

If the internet connection at one of the branches goes down we can still route them and they carry on working

What is our primary use case?

Our primary use case is for proxy firewalling. 

How has it helped my organization?

In South Africa, we're going through load-shedding. When our primary link goes down I can still get to my Cisco devices and the NetScaler devices on-prem because of the SDN solution. If the internet connection at one of the branches goes down, we can still route them, they still get internet based on the SDN solution through one of the other sites. They can carry on working.

What is most valuable?

We incorporated all three because of the fact that we have one central proxy server and everything's on an SDN, so we can get any device anywhere anytime.

What needs improvement?

Security could be improved because then I can get rid of my Cisco firewalls. If they improve the security then I could run my security, my proxy, my firewalling and my SDN solution on one device instead of having to have multiple devices.

What do I think about the scalability of the solution?

We have 55,000 people around the country and we have plans to roll the solution out worldwide.

How was the initial setup?

The initial setup was complex because we've got different applications so the firewalling needs to be done properly and then we actually do IP subnet changes at certain times. We decided to go to all sites. We did a subnet change on all sites and then we deployed NetScaler. We did the head office first and then we went site by site.

Deployment between nine sites around the country took about four weeks. 

We only require one person for maintenance. Deployment took three people. 

What's my experience with pricing, setup cost, and licensing?

The standard licensing fees work in the way that you get one license with it for whatever you're going to be utilizing it for. We integrated the firewall, the proxy services, and the SDN.

Which other solutions did I evaluate?

We also looked at FortiGate and Palo Alto. 

What other advice do I have?

The advice I would give somebody researching this solution is to do your research properly and see what's the best solution for the company and the company's needs before you make a decision. You can't just randomly pick a device. You have to do your investigations first. Put in proof of concepts, speak to your seniors. You must tell them what exactly is your company requirements and which device is going to suit those requirements the best.

I would rate it a nine out of ten. 

Disclosure: I am a real user, and this review is based on my own experience and opinions.
Add a Comment
Sign Up with Email