[Last Call] Learn how to a build a cloud-first strategyRegister Now


Presentation Server 4 and Citrix Secure Gateway

Posted on 2006-04-10
Medium Priority
Last Modified: 2007-12-19
Id love your help.

Im getting a bit confused on what needs to be NATTED on our firewall.

We have 5 internal citrix servers. All 5 have applications that users external to our network need access to.


Q. On our firewall, do we need to assign a public IP address to each citrix server, and nat this to their internal IP address?
External users will be using the web ica client, and I intend to set up citirx secure gateway.

Q. Does our internal data collector require an external public ip address, and thus natted on our firewall?

Q. For every server that external ica clients require access to, do these citrix servers require a public IP address.

The reasons I ask this is because I believe the ALTADDR command needs to be run on every citrix server, if they need to provide applications to external ica clients.

Does this mean then that if you had 100 Citrix Servers, all advertising applications for external users to use, that ALL of them need a public IP address?

Sorry for the questions.

Question by:Simon336697

Assisted Solution

Avatar261 earned 600 total points
ID: 16415480

you dont need to NAT anything. Install Web Interface and betwenn them they do all the work for you. just make sure you have the correct ports open. i.e. 1494 for the ICA client.

This also means you dont need to use the ALRADDR command
LVL 18

Accepted Solution

mgcIT earned 1400 total points
ID: 16418525
Q1: No.  Only your Web Interface / Secure Gateway server needs a public IP Address.  Furthermore the only port you need to open on the firewall to this server is 443 (or whatever your SSL port is).

Q2. No.  The data collector is just one (or multiple) of your citrix PS 4.0 servers.  No public IP needed.

Q3: No... again you only need 1 public IP Address - the IP of your WI/SG (this of course is assuming you are using a single-hop deployment with the WI & SG installed on the same server).

Altaddr is not needed at all (not even for the WI/SG).

Featured Post

NEW Veeam Backup for Microsoft Office 365 1.5

With Office 365, it’s your data and your responsibility to protect it. NEW Veeam Backup for Microsoft Office 365 eliminates the risk of losing access to your Office 365 data.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

#Citrix #Citrix Netscaler #HTTP Compression #Load Balance
Several part series to implement Internet Explorer 11 Enterprise Mode
How to install and configure Citrix XenApp 6.5 - Part 1. In this video tutorial we have explained step by step installation of Citrix XenApp 6.5 Server on Windows Server 2008 R2 is explained in this video. We have explained the difference between…
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

831 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question