Presentation Server 4 and Citrix Secure Gateway

Posted on 2006-04-10
Last Modified: 2007-12-19
Id love your help.

Im getting a bit confused on what needs to be NATTED on our firewall.

We have 5 internal citrix servers. All 5 have applications that users external to our network need access to.


Q. On our firewall, do we need to assign a public IP address to each citrix server, and nat this to their internal IP address?
External users will be using the web ica client, and I intend to set up citirx secure gateway.

Q. Does our internal data collector require an external public ip address, and thus natted on our firewall?

Q. For every server that external ica clients require access to, do these citrix servers require a public IP address.

The reasons I ask this is because I believe the ALTADDR command needs to be run on every citrix server, if they need to provide applications to external ica clients.

Does this mean then that if you had 100 Citrix Servers, all advertising applications for external users to use, that ALL of them need a public IP address?

Sorry for the questions.

Question by:Simon336697
    LVL 2

    Assisted Solution


    you dont need to NAT anything. Install Web Interface and betwenn them they do all the work for you. just make sure you have the correct ports open. i.e. 1494 for the ICA client.

    This also means you dont need to use the ALRADDR command
    LVL 18

    Accepted Solution

    Q1: No.  Only your Web Interface / Secure Gateway server needs a public IP Address.  Furthermore the only port you need to open on the firewall to this server is 443 (or whatever your SSL port is).

    Q2. No.  The data collector is just one (or multiple) of your citrix PS 4.0 servers.  No public IP needed.

    Q3: No... again you only need 1 public IP Address - the IP of your WI/SG (this of course is assuming you are using a single-hop deployment with the WI & SG installed on the same server).

    Altaddr is not needed at all (not even for the WI/SG).

    Featured Post

    How to improve team productivity

    Quip adds documents, spreadsheets, and tasklists to your Slack experience
    - Elevate ideas to Quip docs
    - Share Quip docs in Slack
    - Get notified of changes to your docs
    - Available on iOS/Android/Desktop/Web
    - Online/Offline

    Join & Write a Comment

    After several days of searching and hunting for limited documentation, I wanted to share this guide to hopefully save someone the hassle of trying to figure this out on their own. I have tested this on Xendesktop 7.1 and PS 4.5 running simultaneous…
    #SSL #TLS #Citrix #HTTPS #PKI #Compliance #Certificate #Encryption #StoreFront #Web Interface #Citrix XenApp
    How to install and configure Citrix XenApp 6.5 - Part 1. In this video tutorial we have explained step by step installation of Citrix XenApp 6.5 Server on Windows Server 2008 R2 is explained in this video. We have explained the difference between…
    This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

    746 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    14 Experts available now in Live!

    Get 1:1 Help Now