Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

PLEASE help me setup citrix to be access from outside

Status
Not open for further replies.
rmcp2k

rmcp2k

IS-IT--Management
Aug 29, 2005
175
US
Hello,

currently i have citrix ps4.0 to be setup to use internally. It is setup with everything in it; Web interface, licensing, secure gateway and secure ticketing authority. Now that we like it, i want to set it up to be access from outside. i would like people to access using ip address instead of FQDN. Please help with this. i would need to install the certificate also but do not know where i need to install.

info:

citrix box ip: 172.20.1.80
outside ip: 69.x.x.x
 
Sort by date Sort by votes
Do you have fix IP address ?

You can the SSL certificate from Thawte or many others. Can be installed right away. You have to install this tichet on your server where you have web interface.
Let me know if you need more.
 
Upvote 0 Downvote
forget one thing.
If you have fix IP address, then access via browser will be Standard will be port 443. You will need your webinterface to listen ONLY on port 443 and talk with citrix box on port 80 and 1494 (if you don't use PAT ) and internal encryption.
 
Upvote 0 Downvote
it would be static ip, how would i set this up in citrix? i would like to use NAT. i would also like to put this on the dmz.
 
Upvote 0 Downvote
Okay, I'll try to explain but you will need to reference the admin guide for detail.
1. Firewall (better to have professional one like checkpoint). Open only 443. Tranfer all incoming to CSG.
2. Install CSG in DMZ. WI and SSL on this server. Listen ONLY on 443 on all interfaces. Let the CSG talk to Citrix servers behind second firewall.

Try this step first to succeed with NAT. Test this from outside connection using ICA client.

If you succeeded, then install second firewall between DMZ and secured zone. Move the Citrix servers into this zone.

Test again from outside if still accessible.
If OK, then configure NAT and PAT on firewalls as you like. Write down each step you have change so that you can back track if you need. Change/configure ONE AT A TIME so you know what went wrong if not working.

I suggest you setup the CSG will SSL first and see the result if you can access from outside using https connection. There are cheaper SSL keys offering around 70$ per year.

let me know when you succeeded this first SSL step.
Are you using IIS or unix ?
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

gazonk.del
  • Locked
  • Question
How to Copy save_set from Tape to Disk -- Continuation
Replies
0
Views
140
gazonk.del
gazonk.del
bdeal4122
  • Locked
  • Question
Remote Access
Replies
2
Views
123
bdeal4122
bdeal4122
DreemaGurl
  • Locked
  • Question
Can't log on to Citrix through emote access portal
Replies
1
Views
273
ntinlin
ntinlin
damienenglish
  • Locked
  • Question
Citrix Replication Fault Detection
Replies
0
Views
112
damienenglish
damienenglish
SBTBILL
  • Locked
  • Question
How to get to files
Replies
1
Views
128
Provogeek
Provogeek

Part and Inventory Search

Sponsor

Back
Top