-
Configuration guide for Citrix Virtual Apps and Desktops workloads
-
Dynamic PAC file customization
-
Citrix SD-WAN Orchestrator on-premises configuration on Citrix SD-WAN appliance
-
-
This content has been machine translated dynamically.
Dieser Inhalt ist eine maschinelle Übersetzung, die dynamisch erstellt wurde. (Haftungsausschluss)
Cet article a été traduit automatiquement de manière dynamique. (Clause de non responsabilité)
Este artículo lo ha traducido una máquina de forma dinámica. (Aviso legal)
此内容已经过机器动态翻译。 放弃
このコンテンツは動的に機械翻訳されています。免責事項
이 콘텐츠는 동적으로 기계 번역되었습니다. 책임 부인
Este texto foi traduzido automaticamente. (Aviso legal)
Questo contenuto è stato tradotto dinamicamente con traduzione automatica.(Esclusione di responsabilità))
This article has been machine translated.
Dieser Artikel wurde maschinell übersetzt. (Haftungsausschluss)
Ce article a été traduit automatiquement. (Clause de non responsabilité)
Este artículo ha sido traducido automáticamente. (Aviso legal)
この記事は機械翻訳されています.免責事項
이 기사는 기계 번역되었습니다.책임 부인
Este artigo foi traduzido automaticamente.(Aviso legal)
这篇文章已经过机器翻译.放弃
Questo articolo è stato tradotto automaticamente.(Esclusione di responsabilità))
Translation failed!
Dynamic PAC file customization
With the increase in enterprise adoption of mission-critical SaaS applications and distributed workforce, it becomes highly critical to reduce latency and congestion. Latency and congestion are inherent in traditional methods of backhauling traffic through the Data Center. Citrix SD-WAN allows direct internet break out of SaaS applications such as Office 365. For more information, see Office 365 Optimization.
If there are explicit web proxies configured on the enterprise deployment all traffic are steered to the web proxy making it difficult for classification and direct internet breakout. The solution is to exclude SaaS application traffic from getting proxied by customizing the enterprise PAC (Proxy Auto-Config) file.
Citrix SD-WAN 11.0 allows proxy bypass and local Internet breakout for Office 365 application traffic by dynamically generating and serving custom PAC file. PAC file is a JavaScript function that defines whether web browser requests go directly to the destination or to a web proxy server.
How PAC file customization works
Ideally, the enterprise network host PAC file on the internal web server, these proxy settings are distributed via group policy. The Client browser requests for PAC files from the enterprise web server. The Citrix SD-WAN appliance serves the customized PAC files for sites where Office 365 breakout is enabled.
-
Citrix SD-WAN periodically requests and retrieves the latest copy of the enterprise PAC file from the enterprise web server. The Citrix SD-WAN appliance patches office 365 URLs to the enterprise PAC file. The enterprise PAC file is expected to have a placeholder (SD-WAN specific tag) where the Office 365 URLs are seamlessly patched.
-
The Client browser raises a DNS request for enterprise PAC file host. Citrix SD-WAN intercepts the request for the proxy configuration file FQDN and responds with the Citrix SD-WAN VIP.
-
The Client browser requests for the PAC file. Citrix SD-WAN appliance serves the patched PAC file locally. The PAC file includes enterprise proxy configuration and Office 365 URL exclusion policies.
-
On receiving a request for Office 365 application, the Citrix SD-WAN appliance performs a direct internet breakout.
Prerequisites
-
The enterprises should have a PAC file hosted.
-
The PAC file should have a placeholder SDWAN_TAG or one occurrence of findproxyforurl function for patching Office 365 URLs.
-
The PAC file URL should be domain based and not IP based.
-
The PAC file is served only over the trusted identity VIPs.
-
Citrix SD-WAN appliance should be able to download enterprise PAC file over its management interface.
Configure PAC file customization
You can enable PAC file customization globally or at site level.
Note
The Office 365 breakout option must be enabled for dynamic PAC file customization. For information on how to enable Office 365 breakout, see Office 365 Optimization.
To configure dynamic PAC file customization globally for all sites, in the configuration editor navigate to Global > Proxy Auto-config settings.
Select Enable dynamic PAC file customization. In the PAC file URL field, enter the URL of the enterprise PAC file server. The Office 365 breakout rules are dynamically patched to the enterprise PAC file.
To configure dynamic PAC file customization for a site, navigate to Sites > [Site] > Proxy Auto-config settings. You can also choose to override global PAC file server settings, and specify a different PAC file server URL.
Troubleshooting
You can download the customized PAC file from the Citrix SD-WAN appliance for troubleshooting. Navigate to Configuration > Appliance Settings > Logging/Monitoring > Application and click Download.
You can also view the PAC file patching status in the Events section, navigate to Configuration > System Maintenance > Diagnostics, click Events tab.
Limitations
-
HTTPS PAC file server requests are not supported.
-
Multiple PAC files in a network are not supported, including PAC files for routing domains or security zones.
-
Generating PAC file on Citrix SD-WAN from scratch is not supported.
-
WPAD through DHCP is not supported.
Share
Share
This Preview product documentation is Cloud Software Group Confidential.
You agree to hold this documentation confidential pursuant to the terms of your Cloud Software Group Beta/Tech Preview Agreement.
The development, release and timing of any features or functionality described in the Preview documentation remains at our sole discretion and are subject to change without notice or consultation.
The documentation is for informational purposes only and is not a commitment, promise or legal obligation to deliver any material, code or functionality and should not be relied upon in making Cloud Software Group product purchase decisions.
If you do not agree, select I DO NOT AGREE to exit.