Okay....this is what I have done.
I have one Citrix server in our DMZ with the following.
Certificate Services installed - acting as a Standalone Root CA
This server only has one nic in it.
The web interface is also installed on this machine, along with Secure Gateway.
It has one public IP address natted to its internal, with port 443 (ssl) opened up on the firewall.
I have installed a certificate for the default web site to use, and using port 443.
I know this is not an ideal setup, as EVERYTHING is basically on the same box.........Secure Gateway and the WI.
In this configuration:
How can I get external clients to connect through https to the secure gateway and then route that through to the web interface?
In this configuration, do I have to open up more than port 443, or have multiple IP addresses assigned to this machine, and have the web interface on one ip on port 443, and the secure gateway on another ip on port 443?
Basically Im trying to do the following:
external clients connect by connecting to the web interface https://
then somehow secure gateway does its thing.
Both the WI and CSG are on the same box, and Im not sure how to get BOTH working as both are trying to use port 443.
At the moment, I can connect through to the web interface externally on https
:<fqdn> (port443), but as soon as I try and configure the CSG (which also tries to use the same port), it keels over.
The options in the CSG tool are as follows:
"Details of the server running the web interface"
Indirect. To access the web interface, users can enter the url of the secure gateway (guys, what is this url path?)
installed on this computer
Any help greatly appreciated.